diff --git a/back/main.ts b/back/main.ts index 9074def..10655bb 100644 --- a/back/main.ts +++ b/back/main.ts @@ -4,6 +4,7 @@ import { ApolloServerPluginLandingPageLocalDefault, ApolloServerPluginLandingPag import { ApolloServerPluginDrainHttpServer } from '@apollo/server/plugin/drainHttpServer'; import { makeExecutableSchema } from '@graphql-tools/schema'; import { WebSocketServer } from 'ws'; +import { parse } from 'url'; import { useServer } from 'graphql-ws/lib/use/ws'; import express from 'express'; import http from 'http'; @@ -47,6 +48,8 @@ const typeDefs = gqlWrapper( importGraphQL('min.graphql'), importGraphQL('operators.graphql'), importGraphQL('whereabouts.graphql'), + importGraphQL('kubevirt.graphql'), + importGraphQL('networkaddonsoperator.graphql'), ); interface MyContext { @@ -54,13 +57,18 @@ interface MyContext { } export const app = express(); export const httpServer = http.createServer(app); -/*const wsServer = new WebSocketServer({ - server: httpServer, - path: '/subscriptions', +const wsServer = new WebSocketServer({ noServer: true }); +httpServer.on('upgrade', function upgrade(request, socket, head) { + const { pathname } = parse(request.url as string); + if (pathname === '/suscrptions') { + wsServer.handleUpgrade(request, socket, head, function done(ws) { + wsServer.emit('connection', ws, request); + }); + } }); const schema = makeExecutableSchema({ typeDefs, resolvers }); -const serverCleanup = useServer({ schema }, wsServer);*/ -const apolloPlugins = [ApolloServerPluginDrainHttpServer({ httpServer }),/*{ +const serverCleanup = useServer({ schema }, wsServer); +const apolloPlugins = [ApolloServerPluginDrainHttpServer({ httpServer }),{ async serverWillStart() { return { async drainServer() { @@ -68,7 +76,7 @@ const apolloPlugins = [ApolloServerPluginDrainHttpServer({ httpServer }),/*{ }, }; }, -}*/] +}] if (gramoConfig.enableGraphQLClient||process.env.NODE_ENV !== 'production') apolloPlugins.push(ApolloServerPluginLandingPageLocalDefault()); else diff --git a/back/pubsub/logpubsub.ts b/back/pubsub/logpubsub.ts new file mode 100644 index 0000000..62a6709 --- /dev/null +++ b/back/pubsub/logpubsub.ts @@ -0,0 +1,63 @@ +import {PubSubEngine} from 'graphql-subscriptions'; +import {PubSubAsyncIterator} from './pubsubAsyncIterator.js'; +type OnMessage = (message: T) => void; + +export interface LogPubSubOptions { + +} + + +export class LogPubSub implements PubSubEngine { + private readonly subscriptionMap: { [subId: number]: [string, OnMessage] }; + private readonly subsRefsMap: Map>; + private currentSubscriptionId: number; + + constructor(options:LogPubSubOptions) { + this.subscriptionMap = {}; + this.subsRefsMap = new Map>(); + this.currentSubscriptionId = 0; + console.log('LogPubSub.constructor', options) + } + + public async publish(trigger: string, payload: T): Promise { + //await this.redisPublisher.publish(trigger, this.serializer ? this.serializer(payload) : JSON.stringify(payload)); + console.log('TODO', 'publish', trigger, payload) + return Promise.resolve(); + } + public asyncIterator(triggers: string | string[], options?: object): AsyncIterator { + return new PubSubAsyncIterator(this, triggers, options); + } + + public subscribe(triggerName: string, onMessage: OnMessage, options?: Object): Promise { + //const [namespace, pod_name, name] = triggerName.split('|'); + const id = this.currentSubscriptionId++; + this.subscriptionMap[id] = [triggerName, onMessage]; + if (!this.subsRefsMap.has(triggerName)) { + this.subsRefsMap.set(triggerName, new Set()); + } + const refs = this.subsRefsMap.get(triggerName); + console.log('LogPubSub.subscribe', triggerName, options, id, this.subscriptionMap, this.subsRefsMap) + if (refs != undefined && refs.size > 0) { + refs.add(id); + return Promise.resolve(id); + } else { + return new Promise((resolve, reject) => { + console.log('TODO', 'Create the source for', triggerName, reject) + resolve(id); + }) + } + } + public unsubscribe(subId: number) { + const [triggerName = null] = this.subscriptionMap[subId] || []; + if (triggerName == null) throw new Error(`There is no subscription of id "${subId}"`); + const refs = this.subsRefsMap.get(triggerName); + if (!refs) throw new Error(`There is no subscription of id "${subId}"`); + if (refs.size === 1) { + console.log('TODO', 'Deleting stream source for', triggerName) + this.subsRefsMap.delete(triggerName); + } else { + refs.delete(subId); + } + delete this.subscriptionMap[subId]; + } +} \ No newline at end of file diff --git a/back/pubsub/pubsubAsyncIterator.ts b/back/pubsub/pubsubAsyncIterator.ts new file mode 100644 index 0000000..de08791 --- /dev/null +++ b/back/pubsub/pubsubAsyncIterator.ts @@ -0,0 +1,76 @@ +import {PubSubEngine} from 'graphql-subscriptions'; +export class PubSubAsyncIterator implements AsyncIterableIterator { + constructor(pubsub: PubSubEngine, eventNames: string | string[], options?: object) { + this.pubsub = pubsub; + this.options = options; + this.pullQueue = []; + this.pushQueue = []; + this.listening = true; + this.eventsArray = typeof eventNames === 'string' ? [eventNames] : eventNames; + } + + public async next() { + await this.subscribeAll(); + return this.listening ? this.pullValue() : this.return(); + } + public async return(): Promise<{ value: unknown, done: true }> { + await this.emptyQueue(); + return { value: undefined, done: true }; + } + public async throw(error): Promise { + await this.emptyQueue(); + return Promise.reject(error); + } + public [Symbol.asyncIterator]() { + return this; + } + private pullQueue: Array<(data: { value: unknown, done: boolean }) => void>; + private pushQueue: any[]; + private eventsArray: string[]; + private subscriptionIds: Promise | undefined; + private listening: boolean; + private pubsub: PubSubEngine; + private options: object|undefined; + private async pushValue(event) { + await this.subscribeAll(); + if (this.pullQueue.length !== 0) { + const current = this.pullQueue.shift(); + if (current!=undefined) + current({ value: event, done: false }); + } else { + this.pushQueue.push(event); + } + } + private pullValue(): Promise> { + return new Promise(resolve => { + if (this.pushQueue.length !== 0) { + resolve({ value: this.pushQueue.shift(), done: false }); + } else { + this.pullQueue.push(resolve); + } + }); + } + private async emptyQueue() { + if (this.listening) { + this.listening = false; + if (this.subscriptionIds) this.unsubscribeAll(await this.subscriptionIds); + this.pullQueue.forEach(resolve => resolve({ value: undefined, done: true })); + this.pullQueue.length = 0; + this.pushQueue.length = 0; + } + } + private subscribeAll() { + if (!this.subscriptionIds) { + this.subscriptionIds = Promise.all(this.eventsArray.map( + eventName => this.pubsub.subscribe(eventName, this.pushValue.bind(this), this.options||{}), + )); + } + return this.subscriptionIds; + } + + private unsubscribeAll(subscriptionIds: number[]) { + for (const subscriptionId of subscriptionIds) { + this.pubsub.unsubscribe(subscriptionId); + } + } +} diff --git a/data/cattle.json b/data/cattle.json index 4b84271..bbe6157 100644 --- a/data/cattle.json +++ b/data/cattle.json @@ -5,7 +5,6 @@ "alternatives": [], "name": "io.cattle.helm.v1.HelmChart", "definition": { - "type": "object", "properties": { "apiVersion": { "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", @@ -16,12 +15,49 @@ "type": "string" }, "spec": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "authPassCredentials": { + "type": "boolean" + }, + "authSecret": {}, + "backOffLimit": {}, + "bootstrap": { + "type": "boolean" + }, + "chart": {}, + "chartContent": {}, + "createNamespace": { + "type": "boolean" + }, + "dockerRegistrySecret": {}, + "failurePolicy": {}, + "helmVersion": {}, + "jobImage": {}, + "podSecurityContext": {}, + "repo": {}, + "repoCA": {}, + "repoCAConfigMap": {}, + "securityContext": {}, + "set": { + "additionalProperties": { + "x-kubernetes-int-or-string": true + } + }, + "targetNamespace": {}, + "timeout": {}, + "valuesContent": {}, + "version": {} + } }, "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "jobName": {} + } } }, + "type": "object", "x-kubernetes-group-version-kind": [ { "group": "helm.cattle.io", @@ -32,97 +68,7 @@ }, "crd": { "metadata": { - "name": "helmcharts.helm.cattle.io", - "uid": "847e2775-2708-487f-906b-d43dc1c1eea1", - "resourceVersion": "199", - "generation": 1, - "creationTimestamp": "2023-03-07T15:49:24Z", - "labels": { - "objectset.rio.cattle.io/hash": "29aa74e2abe5947484ef867c989a6921f51b1438" - }, - "annotations": { - "objectset.rio.cattle.io/applied": "H4sIAAAAAAAA/5RTTY/TMBD9K2jOblG73W0biQNahEBIK8RHL4jDxJk0Jo5teezuoir/HU2SLlukLXCLxzNv3nt+OQIGs6PIxjso5EAPiZwced5ueG78y8MCFLTGVVDAbebku0/EPkdNb6g2ziSZVdBRwgoTQnEEdM4nlAuWoy9/kE5MaR6Nn2tMyZIgG4EE9ey9v3cUZ/tD+zw19eKDcdWrC7wugzvsCApoyHa6wZh4Lp+/2/4JgANqQYFegY40CP9iOuKEXYDCZWsVWCzJXrSjQW6ggOUWcb2iJZZ0vV2tV5sV1Zubtd5utnizXS7q60W5WF1tZNtf6fcKOJCWtfvoc5iazwQOEqRjeuR3ZLtbQQMFweaI9mwFKGDj9tlifFqXVSESUzzQV9c6f+/eGrIVQ1GjZVLA2gdhe3eyrAIFhzF8DMW340nOkDjWDXVDmnwg9/rj+93V58dSiD5QTGbkfVL4MGtzSdFRIp6duMzySGZWT2xSzCS2JEyZ/3OsV5B+DiLGRwSpDP3V2CG4PuKepoHvZ5tQawqJqrs/HH9q9BAi7yoz/T5jegSVqt2jWVLt+18BAAD//32jWoG/AwAA", - "objectset.rio.cattle.io/id": "", - "objectset.rio.cattle.io/owner-gvk": "apiextensions.k8s.io/v1, Kind=CustomResourceDefinition", - "objectset.rio.cattle.io/owner-name": "helmcharts.helm.cattle.io", - "objectset.rio.cattle.io/owner-namespace": "" - }, - "managedFields": [ - { - "manager": "deploy@kydah-share", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:objectset.rio.cattle.io/applied": {}, - "f:objectset.rio.cattle.io/id": {}, - "f:objectset.rio.cattle.io/owner-gvk": {}, - "f:objectset.rio.cattle.io/owner-name": {}, - "f:objectset.rio.cattle.io/owner-namespace": {} - }, - "f:labels": { - ".": {}, - "f:objectset.rio.cattle.io/hash": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "k3s", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "helmcharts.helm.cattle.io" }, "spec": { "group": "helm.cattle.io", @@ -143,14 +89,375 @@ "type": "object", "properties": { "spec": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "authPassCredentials": { + "type": "boolean" + }, + "authSecret": { + "type": "object", + "properties": { + "name": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "backOffLimit": { + "type": "integer", + "nullable": true + }, + "bootstrap": { + "type": "boolean" + }, + "chart": { + "type": "string", + "nullable": true + }, + "chartContent": { + "type": "string", + "nullable": true + }, + "createNamespace": { + "type": "boolean" + }, + "dockerRegistrySecret": { + "type": "object", + "properties": { + "name": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "failurePolicy": { + "type": "string", + "nullable": true + }, + "helmVersion": { + "type": "string", + "nullable": true + }, + "jobImage": { + "type": "string", + "nullable": true + }, + "podSecurityContext": { + "type": "object", + "properties": { + "fsGroup": { + "type": "integer", + "nullable": true + }, + "fsGroupChangePolicy": { + "type": "string", + "nullable": true + }, + "runAsGroup": { + "type": "integer", + "nullable": true + }, + "runAsNonRoot": { + "type": "boolean", + "nullable": true + }, + "runAsUser": { + "type": "integer", + "nullable": true + }, + "seLinuxOptions": { + "type": "object", + "properties": { + "level": { + "type": "string", + "nullable": true + }, + "role": { + "type": "string", + "nullable": true + }, + "type": { + "type": "string", + "nullable": true + }, + "user": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "seccompProfile": { + "type": "object", + "properties": { + "localhostProfile": { + "type": "string", + "nullable": true + }, + "type": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "supplementalGroups": { + "type": "array", + "items": { + "type": "integer" + }, + "nullable": true + }, + "sysctls": { + "type": "array", + "items": { + "type": "object", + "properties": { + "name": { + "type": "string", + "nullable": true + }, + "value": { + "type": "string", + "nullable": true + } + } + }, + "nullable": true + }, + "windowsOptions": { + "type": "object", + "properties": { + "gmsaCredentialSpec": { + "type": "string", + "nullable": true + }, + "gmsaCredentialSpecName": { + "type": "string", + "nullable": true + }, + "hostProcess": { + "type": "boolean", + "nullable": true + }, + "runAsUserName": { + "type": "string", + "nullable": true + } + }, + "nullable": true + } + }, + "nullable": true + }, + "repo": { + "type": "string", + "nullable": true + }, + "repoCA": { + "type": "string", + "nullable": true + }, + "repoCAConfigMap": { + "type": "object", + "properties": { + "name": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "securityContext": { + "type": "object", + "properties": { + "allowPrivilegeEscalation": { + "type": "boolean", + "nullable": true + }, + "capabilities": { + "type": "object", + "properties": { + "add": { + "type": "array", + "items": { + "type": "string", + "nullable": true + }, + "nullable": true + }, + "drop": { + "type": "array", + "items": { + "type": "string", + "nullable": true + }, + "nullable": true + } + }, + "nullable": true + }, + "privileged": { + "type": "boolean", + "nullable": true + }, + "procMount": { + "type": "string", + "nullable": true + }, + "readOnlyRootFilesystem": { + "type": "boolean", + "nullable": true + }, + "runAsGroup": { + "type": "integer", + "nullable": true + }, + "runAsNonRoot": { + "type": "boolean", + "nullable": true + }, + "runAsUser": { + "type": "integer", + "nullable": true + }, + "seLinuxOptions": { + "type": "object", + "properties": { + "level": { + "type": "string", + "nullable": true + }, + "role": { + "type": "string", + "nullable": true + }, + "type": { + "type": "string", + "nullable": true + }, + "user": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "seccompProfile": { + "type": "object", + "properties": { + "localhostProfile": { + "type": "string", + "nullable": true + }, + "type": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "windowsOptions": { + "type": "object", + "properties": { + "gmsaCredentialSpec": { + "type": "string", + "nullable": true + }, + "gmsaCredentialSpecName": { + "type": "string", + "nullable": true + }, + "hostProcess": { + "type": "boolean", + "nullable": true + }, + "runAsUserName": { + "type": "string", + "nullable": true + } + }, + "nullable": true + } + }, + "nullable": true + }, + "set": { + "type": "object", + "additionalProperties": { + "x-kubernetes-int-or-string": true + }, + "nullable": true + }, + "targetNamespace": { + "type": "string", + "nullable": true + }, + "timeout": { + "type": "string", + "nullable": true + }, + "valuesContent": { + "type": "string", + "nullable": true + }, + "version": { + "type": "string", + "nullable": true + } + } }, "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "jobName": { + "type": "string", + "nullable": true + } + } } } } - } + }, + "additionalPrinterColumns": [ + { + "name": "Job", + "type": "string", + "jsonPath": ".status.jobName" + }, + { + "name": "Chart", + "type": "string", + "jsonPath": ".spec.chart" + }, + { + "name": "TargetNamespace", + "type": "string", + "jsonPath": ".spec.targetNamespace" + }, + { + "name": "Version", + "type": "string", + "jsonPath": ".spec.version" + }, + { + "name": "Repo", + "type": "string", + "jsonPath": ".spec.repo" + }, + { + "name": "HelmVersion", + "type": "string", + "jsonPath": ".spec.helmVersion" + }, + { + "name": "Bootstrap", + "type": "string", + "jsonPath": ".spec.bootstrap" + } + ] } ], "conversion": { @@ -158,22 +465,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "helmcharts", "singular": "helmchart", @@ -185,6 +477,43 @@ ] } }, + "additionalColumns": [ + { + "name": "Job", + "type": "string", + "jsonPath": ".status.jobName" + }, + { + "name": "Chart", + "type": "string", + "jsonPath": ".spec.chart" + }, + { + "name": "TargetNamespace", + "type": "string", + "jsonPath": ".spec.targetNamespace" + }, + { + "name": "Version", + "type": "string", + "jsonPath": ".spec.version" + }, + { + "name": "Repo", + "type": "string", + "jsonPath": ".spec.repo" + }, + { + "name": "HelmVersion", + "type": "string", + "jsonPath": ".spec.helmVersion" + }, + { + "name": "Bootstrap", + "type": "string", + "jsonPath": ".spec.bootstrap" + } + ], "short": "HelmChart", "apiGroup": "helm.cattle.io", "apiKind": "HelmChart", @@ -212,7 +541,6 @@ "alternatives": [], "name": "io.cattle.helm.v1.HelmChartConfig", "definition": { - "type": "object", "properties": { "apiVersion": { "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", @@ -223,12 +551,14 @@ "type": "string" }, "spec": { - "x-kubernetes-preserve-unknown-fields": true - }, - "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "failurePolicy": {}, + "valuesContent": {} + } } }, + "type": "object", "x-kubernetes-group-version-kind": [ { "group": "helm.cattle.io", @@ -239,97 +569,7 @@ }, "crd": { "metadata": { - "name": "helmchartconfigs.helm.cattle.io", - "uid": "5309c3cc-3577-4f51-ad7b-d4c8b44a807f", - "resourceVersion": "205", - "generation": 1, - "creationTimestamp": "2023-03-07T15:49:24Z", - "labels": { - "objectset.rio.cattle.io/hash": "2052208f1663688d05f513c2fa308fde31521d9d" - }, - "annotations": { - "objectset.rio.cattle.io/applied": "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", - "objectset.rio.cattle.io/id": "", - "objectset.rio.cattle.io/owner-gvk": "apiextensions.k8s.io/v1, Kind=CustomResourceDefinition", - "objectset.rio.cattle.io/owner-name": "helmchartconfigs.helm.cattle.io", - "objectset.rio.cattle.io/owner-namespace": "" - }, - "managedFields": [ - { - "manager": "deploy@kydah-share", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:objectset.rio.cattle.io/applied": {}, - "f:objectset.rio.cattle.io/id": {}, - "f:objectset.rio.cattle.io/owner-gvk": {}, - "f:objectset.rio.cattle.io/owner-name": {}, - "f:objectset.rio.cattle.io/owner-namespace": {} - }, - "f:labels": { - ".": {}, - "f:objectset.rio.cattle.io/hash": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "k3s", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "helmchartconfigs.helm.cattle.io" }, "spec": { "group": "helm.cattle.io", @@ -350,10 +590,17 @@ "type": "object", "properties": { "spec": { - "x-kubernetes-preserve-unknown-fields": true - }, - "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "failurePolicy": { + "type": "string", + "nullable": true + }, + "valuesContent": { + "type": "string", + "nullable": true + } + } } } } @@ -365,22 +612,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "helmchartconfigs", "singular": "helmchartconfig", @@ -397,8 +629,7 @@ "apiKind": "HelmChartConfig", "apiVersion": "v1", "readProperties": { - "spec": "spec", - "status": "status" + "spec": "spec" }, "writeProperties": { "spec": "spec" @@ -410,8 +641,7 @@ "simpleExcludes": [], "gqlDefs": { "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" + "spec": "JSONObject" }, "namespaced": true }, @@ -419,7 +649,6 @@ "alternatives": [], "name": "io.cattle.k3s.v1.Addon", "definition": { - "type": "object", "properties": { "apiVersion": { "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", @@ -430,12 +659,14 @@ "type": "string" }, "spec": { - "x-kubernetes-preserve-unknown-fields": true - }, - "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "checksum": {}, + "source": {} + } } }, + "type": "object", "x-kubernetes-group-version-kind": [ { "group": "k3s.cattle.io", @@ -446,97 +677,7 @@ }, "crd": { "metadata": { - "name": "addons.k3s.cattle.io", - "uid": "9e93a14f-f7ca-49b2-bd0b-24e2d9ee12a7", - "resourceVersion": "196", - "generation": 1, - "creationTimestamp": "2023-03-07T15:49:24Z", - "labels": { - "objectset.rio.cattle.io/hash": "76092cd54ba63fc73cd7b8728426e6e5e7033ede" - }, - "annotations": { - "objectset.rio.cattle.io/applied": "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", - "objectset.rio.cattle.io/id": "", - "objectset.rio.cattle.io/owner-gvk": "apiextensions.k8s.io/v1, Kind=CustomResourceDefinition", - "objectset.rio.cattle.io/owner-name": "addons.k3s.cattle.io", - "objectset.rio.cattle.io/owner-namespace": "" - }, - "managedFields": [ - { - "manager": "deploy@kydah-share", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:objectset.rio.cattle.io/applied": {}, - "f:objectset.rio.cattle.io/id": {}, - "f:objectset.rio.cattle.io/owner-gvk": {}, - "f:objectset.rio.cattle.io/owner-name": {}, - "f:objectset.rio.cattle.io/owner-namespace": {} - }, - "f:labels": { - ".": {}, - "f:objectset.rio.cattle.io/hash": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "k3s", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-03-07T15:49:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "addons.k3s.cattle.io" }, "spec": { "group": "k3s.cattle.io", @@ -557,14 +698,33 @@ "type": "object", "properties": { "spec": { - "x-kubernetes-preserve-unknown-fields": true - }, - "status": { - "x-kubernetes-preserve-unknown-fields": true + "type": "object", + "properties": { + "checksum": { + "type": "string", + "nullable": true + }, + "source": { + "type": "string", + "nullable": true + } + } } } } - } + }, + "additionalPrinterColumns": [ + { + "name": "Source", + "type": "string", + "jsonPath": ".spec.source" + }, + { + "name": "Checksum", + "type": "string", + "jsonPath": ".spec.checksum" + } + ] } ], "conversion": { @@ -572,22 +732,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-03-07T15:49:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "addons", "singular": "addon", @@ -599,10 +744,273 @@ ] } }, + "additionalColumns": [ + { + "name": "Source", + "type": "string", + "jsonPath": ".spec.source" + }, + { + "name": "Checksum", + "type": "string", + "jsonPath": ".spec.checksum" + } + ], "short": "Addon", "apiGroup": "k3s.cattle.io", "apiKind": "Addon", "apiVersion": "v1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "cattle", + "sub": "cattle", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.cattle.k3s.v1.ETCDSnapshotFile", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "properties": { + "location": {}, + "metadata": { + "additionalProperties": {} + }, + "nodeName": {}, + "s3": {}, + "snapshotName": {} + } + }, + "status": { + "type": "object", + "properties": { + "creationTime": {}, + "error": {}, + "readyToUse": {}, + "size": {} + } + } + }, + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "k3s.cattle.io", + "kind": "ETCDSnapshotFile", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "etcdsnapshotfiles.k3s.cattle.io" + }, + "spec": { + "group": "k3s.cattle.io", + "names": { + "plural": "etcdsnapshotfiles", + "singular": "etcdsnapshotfile", + "kind": "ETCDSnapshotFile", + "listKind": "ETCDSnapshotFileList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "type": "object", + "properties": { + "spec": { + "type": "object", + "properties": { + "location": { + "type": "string", + "nullable": true + }, + "metadata": { + "type": "object", + "additionalProperties": { + "type": "string", + "nullable": true + }, + "nullable": true + }, + "nodeName": { + "type": "string", + "nullable": true + }, + "s3": { + "type": "object", + "properties": { + "bucket": { + "type": "string", + "nullable": true + }, + "endpoint": { + "type": "string", + "nullable": true + }, + "endpointCA": { + "type": "string", + "nullable": true + }, + "insecure": { + "type": "boolean" + }, + "prefix": { + "type": "string", + "nullable": true + }, + "region": { + "type": "string", + "nullable": true + }, + "skipSSLVerify": { + "type": "boolean" + } + }, + "nullable": true + }, + "snapshotName": { + "type": "string", + "nullable": true + } + } + }, + "status": { + "type": "object", + "properties": { + "creationTime": { + "type": "string", + "nullable": true + }, + "error": { + "type": "object", + "properties": { + "message": { + "type": "string", + "nullable": true + }, + "time": { + "type": "string", + "nullable": true + } + }, + "nullable": true + }, + "readyToUse": { + "type": "boolean", + "nullable": true + }, + "size": { + "type": "string", + "nullable": true + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "SnapshotName", + "type": "string", + "jsonPath": ".spec.snapshotName" + }, + { + "name": "Node", + "type": "string", + "jsonPath": ".spec.nodeName" + }, + { + "name": "Location", + "type": "string", + "jsonPath": ".spec.location" + }, + { + "name": "Size", + "type": "string", + "jsonPath": ".status.size" + }, + { + "name": "CreationTime", + "type": "string", + "jsonPath": ".status.creationTime" + } + ] + } + ], + "conversion": { + "strategy": "None" + } + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "etcdsnapshotfiles", + "singular": "etcdsnapshotfile", + "kind": "ETCDSnapshotFile", + "listKind": "ETCDSnapshotFileList" + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "SnapshotName", + "type": "string", + "jsonPath": ".spec.snapshotName" + }, + { + "name": "Node", + "type": "string", + "jsonPath": ".spec.nodeName" + }, + { + "name": "Location", + "type": "string", + "jsonPath": ".spec.location" + }, + { + "name": "Size", + "type": "string", + "jsonPath": ".status.size" + }, + { + "name": "CreationTime", + "type": "string", + "jsonPath": ".status.creationTime" + } + ], + "short": "ETCDSnapshotFile", + "apiGroup": "k3s.cattle.io", + "apiKind": "ETCDSnapshotFile", + "apiVersion": "v1", "readProperties": { "spec": "spec", "status": "status" @@ -620,7 +1028,7 @@ "spec": "JSONObject", "status": "JSONObject" }, - "namespaced": true + "namespaced": false } ] } \ No newline at end of file diff --git a/data/certmanager.json b/data/certmanager.json index 0a11efa..49c77ce 100644 --- a/data/certmanager.json +++ b/data/certmanager.json @@ -1503,90 +1503,7 @@ }, "crd": { "metadata": { - "name": "challenges.acme.cert-manager.io", - "uid": "875341a6-57f0-4f42-b15f-06d3f07adb5a", - "resourceVersion": "127259344", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "challenges.acme.cert-manager.io" }, "spec": { "group": "acme.cert-manager.io", @@ -3132,27 +3049,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "challenges", "singular": "challenge", @@ -3407,90 +3307,7 @@ }, "crd": { "metadata": { - "name": "orders.acme.cert-manager.io", - "uid": "4df1166f-d37f-49a9-8a76-b50ea62522d2", - "resourceVersion": "127259376", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "orders.acme.cert-manager.io" }, "spec": { "group": "acme.cert-manager.io", @@ -3725,27 +3542,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "orders", "singular": "order", @@ -4354,92 +4154,7 @@ }, "crd": { "metadata": { - "name": "certificates.cert-manager.io", - "uid": "36a8bf6a-5703-4868-ad78-f410b9feb3ca", - "resourceVersion": "127259334", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "certificates.cert-manager.io" }, "spec": { "group": "cert-manager.io", @@ -5035,27 +4750,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "certificates", "singular": "certificate", @@ -5321,92 +5019,7 @@ }, "crd": { "metadata": { - "name": "certificaterequests.cert-manager.io", - "uid": "25a38943-dd5f-4e05-9de6-09f805b13251", - "resourceVersion": "127259316", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "certificaterequests.cert-manager.io" }, "spec": { "group": "cert-manager.io", @@ -5660,27 +5273,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "certificaterequests", "singular": "certificaterequest", @@ -7617,90 +7213,7 @@ }, "crd": { "metadata": { - "name": "clusterissuers.cert-manager.io", - "uid": "3fdbac1a-8412-493b-927a-1440e6b9eb4a", - "resourceVersion": "127259354", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clusterissuers.cert-manager.io" }, "spec": { "group": "cert-manager.io", @@ -9594,27 +9107,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusterissuers", "singular": "clusterissuer", @@ -11527,90 +11023,7 @@ }, "crd": { "metadata": { - "name": "issuers.cert-manager.io", - "uid": "fd0cd61b-13b7-44db-abb9-4689cb6cdeed", - "resourceVersion": "127259367", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "labels": { - "app": "cert-manager", - "app.kubernetes.io/instance": "cert-manager", - "app.kubernetes.io/name": "cert-manager", - "app.kubernetes.io/version": "v1.14.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "issuers.cert-manager.io" }, "spec": { "group": "cert-manager.io", @@ -13504,27 +12917,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "issuers", "singular": "issuer", diff --git a/data/cnpg.json b/data/cnpg.json index a578e89..45f2dcd 100644 --- a/data/cnpg.json +++ b/data/cnpg.json @@ -433,82 +433,7 @@ }, "crd": { "metadata": { - "name": "backups.postgresql.cnpg.io", - "uid": "8b4975b5-c555-4799-bd92-94140ace85b1", - "resourceVersion": "127259686", - "generation": 2, - "creationTimestamp": "2023-08-06T09:09:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-08-06T09:09:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "backups.postgresql.cnpg.io" }, "spec": { "group": "postgresql.cnpg.io", @@ -983,27 +908,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "backups", "singular": "backup", @@ -5460,82 +5368,7 @@ }, "crd": { "metadata": { - "name": "clusters.postgresql.cnpg.io", - "uid": "6a07376f-ed16-48e2-9d60-2b6af00487d7", - "resourceVersion": "127259688", - "generation": 2, - "creationTimestamp": "2023-08-06T09:09:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-08-06T09:09:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clusters.postgresql.cnpg.io" }, "spec": { "group": "postgresql.cnpg.io", @@ -10137,27 +9970,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusters", "singular": "cluster", @@ -16303,82 +16119,7 @@ }, "crd": { "metadata": { - "name": "poolers.postgresql.cnpg.io", - "uid": "6b88903d-323c-4efa-b70b-d0102ea11292", - "resourceVersion": "127259697", - "generation": 2, - "creationTimestamp": "2023-08-06T09:09:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-08-06T09:09:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "poolers.postgresql.cnpg.io" }, "spec": { "group": "postgresql.cnpg.io", @@ -22879,27 +22620,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "poolers", "singular": "pooler", @@ -23080,82 +22804,7 @@ }, "crd": { "metadata": { - "name": "scheduledbackups.postgresql.cnpg.io", - "uid": "2afea9af-778e-4319-bda1-eacb2e9c23c1", - "resourceVersion": "127259701", - "generation": 2, - "creationTimestamp": "2023-08-06T09:09:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-08-06T09:09:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "scheduledbackups.postgresql.cnpg.io" }, "spec": { "group": "postgresql.cnpg.io", @@ -23318,27 +22967,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-08-06T09:09:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "scheduledbackups", "singular": "scheduledbackup", diff --git a/data/fission.json b/data/fission.json index 2d9cfb4..bd89154 100644 --- a/data/fission.json +++ b/data/fission.json @@ -83,89 +83,7 @@ }, "crd": { "metadata": { - "name": "canaryconfigs.fission.io", - "uid": "6aa81b26-d7e5-4e89-abdc-ee6fadb4b097", - "resourceVersion": "144938552", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:16Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "canaryconfigs.fission.io" }, "spec": { "group": "fission.io", @@ -258,27 +176,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:16Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:16Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "canaryconfigs", "singular": "canaryconfig", @@ -14424,89 +14325,7 @@ }, "crd": { "metadata": { - "name": "environments.fission.io", - "uid": "f2397aa5-6329-49fc-b942-a98f867a5936", - "resourceVersion": "144938644", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:19Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "environments.fission.io" }, "spec": { "group": "fission.io", @@ -29583,27 +29402,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "environments", "singular": "environment", @@ -36224,91 +36026,7 @@ }, "crd": { "metadata": { - "name": "functions.fission.io", - "uid": "e641e7cc-66af-49d0-aac8-78534e8f5808", - "resourceVersion": "144938840", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:24Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "functions.fission.io" }, "spec": { "group": "fission.io", @@ -43408,27 +43126,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "functions", "singular": "function", @@ -43582,89 +43283,7 @@ }, "crd": { "metadata": { - "name": "httptriggers.fission.io", - "uid": "879749ad-c8bf-4a75-a056-41bbe95fdb15", - "resourceVersion": "144938859", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:25Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "httptriggers.fission.io" }, "spec": { "group": "fission.io", @@ -43800,27 +43419,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:25Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:25Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "httptriggers", "singular": "httptrigger", @@ -43932,89 +43534,7 @@ }, "crd": { "metadata": { - "name": "kuberneteswatchtriggers.fission.io", - "uid": "0da0f2c0-54bd-4f5b-84c7-027f63335698", - "resourceVersion": "144938946", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:28Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "kuberneteswatchtriggers.fission.io" }, "spec": { "group": "fission.io", @@ -44109,27 +43629,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:28Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:28Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "kuberneteswatchtriggers", "singular": "kuberneteswatchtrigger", @@ -50173,89 +49676,7 @@ }, "crd": { "metadata": { - "name": "messagequeuetriggers.fission.io", - "uid": "fb74c62c-4754-4cb4-9369-e2e7168a11f9", - "resourceVersion": "144938960", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:29Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:29Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:29Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "messagequeuetriggers.fission.io" }, "spec": { "group": "fission.io", @@ -56642,27 +56063,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:29Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:29Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "messagequeuetriggers", "singular": "messagequeuetrigger", @@ -56836,91 +56240,7 @@ }, "crd": { "metadata": { - "name": "packages.fission.io", - "uid": "46793157-499e-4ee6-995e-a3eaa859edcd", - "resourceVersion": "144939033", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:32Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:32Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:32Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "packages.fission.io" }, "spec": { "group": "fission.io", @@ -57078,27 +56398,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:32Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:32Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "packages", "singular": "package", @@ -57204,89 +56507,7 @@ }, "crd": { "metadata": { - "name": "timetriggers.fission.io", - "uid": "9fefa2a9-848d-4e71-a657-fb871decbdb4", - "resourceVersion": "144939078", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:35Z", - "labels": { - "group": "fission.io" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:35Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:35Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:group": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "timetriggers.fission.io" }, "spec": { "group": "fission.io", @@ -57370,27 +56591,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:35Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:35Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "timetriggers", "singular": "timetrigger", diff --git a/data/fluxcd.json b/data/fluxcd.json index a7ed095..5eeccf0 100644 --- a/data/fluxcd.json +++ b/data/fluxcd.json @@ -480,84 +480,7 @@ }, "crd": { "metadata": { - "name": "kustomizations.kustomize.toolkit.fluxcd.io", - "uid": "31c43b56-93bc-41ee-8f68-8152c772ed7a", - "resourceVersion": "127259432", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "kustomizations.kustomize.toolkit.fluxcd.io" }, "spec": { "group": "kustomize.toolkit.fluxcd.io", @@ -2247,27 +2170,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "kustomizations", "singular": "kustomization", @@ -2532,82 +2438,7 @@ }, "crd": { "metadata": { - "name": "receivers.notification.toolkit.fluxcd.io", - "uid": "50efb44f-db26-4fbc-b7c9-a896a2fe0d68", - "resourceVersion": "127259463", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "receivers.notification.toolkit.fluxcd.io" }, "spec": { "group": "notification.toolkit.fluxcd.io", @@ -3309,27 +3140,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "receivers", "singular": "receiver", @@ -3521,82 +3335,7 @@ }, "crd": { "metadata": { - "name": "alerts.notification.toolkit.fluxcd.io", - "uid": "7b8e6231-d3fe-489b-a375-d04636cbf981", - "resourceVersion": "127259318", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "alerts.notification.toolkit.fluxcd.io" }, "spec": { "group": "notification.toolkit.fluxcd.io", @@ -4203,27 +3942,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "alerts", "singular": "alert", @@ -4393,82 +4115,7 @@ }, "crd": { "metadata": { - "name": "providers.notification.toolkit.fluxcd.io", - "uid": "641e1029-15a4-4172-b771-8c4466056cca", - "resourceVersion": "127259449", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "providers.notification.toolkit.fluxcd.io" }, "spec": { "group": "notification.toolkit.fluxcd.io", @@ -5040,27 +4687,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "providers", "singular": "provider", @@ -5494,84 +5124,7 @@ }, "crd": { "metadata": { - "name": "gitrepositories.source.toolkit.fluxcd.io", - "uid": "0aa75049-17ba-4f71-8e41-fbcd4695888a", - "resourceVersion": "127259340", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "gitrepositories.source.toolkit.fluxcd.io" }, "spec": { "group": "source.toolkit.fluxcd.io", @@ -6817,27 +6370,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "gitrepositories", "singular": "gitrepository", @@ -7145,82 +6681,7 @@ }, "crd": { "metadata": { - "name": "buckets.source.toolkit.fluxcd.io", - "uid": "4a1057ad-d1c7-4e27-b873-73ca5bfc3e5c", - "resourceVersion": "127259332", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "buckets.source.toolkit.fluxcd.io" }, "spec": { "group": "source.toolkit.fluxcd.io", @@ -7759,27 +7220,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "buckets", "singular": "bucket", @@ -8141,84 +7585,7 @@ }, "crd": { "metadata": { - "name": "helmcharts.source.toolkit.fluxcd.io", - "uid": "e4e0c33a-4e91-4d55-b46c-ef4b93d0368d", - "resourceVersion": "127259348", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "helmcharts.source.toolkit.fluxcd.io" }, "spec": { "group": "source.toolkit.fluxcd.io", @@ -8856,27 +8223,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "helmcharts", "singular": "helmchart", @@ -9203,84 +8553,7 @@ }, "crd": { "metadata": { - "name": "helmrepositories.source.toolkit.fluxcd.io", - "uid": "13e24f2c-1b75-4d66-ac7c-b177674dcf54", - "resourceVersion": "127259369", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "helmrepositories.source.toolkit.fluxcd.io" }, "spec": { "group": "source.toolkit.fluxcd.io", @@ -9802,27 +9075,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "helmrepositories", "singular": "helmrepository", @@ -10218,84 +9474,7 @@ }, "crd": { "metadata": { - "name": "ocirepositories.source.toolkit.fluxcd.io", - "uid": "442372de-a2a6-4ca8-9960-f6c83d80a68b", - "resourceVersion": "127259442", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ocirepositories.source.toolkit.fluxcd.io" }, "spec": { "group": "source.toolkit.fluxcd.io", @@ -10676,27 +9855,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ocirepositories", "singular": "ocirepository", @@ -11046,82 +10208,7 @@ }, "crd": { "metadata": { - "name": "imageupdateautomations.image.toolkit.fluxcd.io", - "uid": "bdbe2ab8-f1b3-4573-afe6-4a46d9dbcf70", - "resourceVersion": "127259407", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "imageupdateautomations.image.toolkit.fluxcd.io" }, "spec": { "group": "image.toolkit.fluxcd.io", @@ -11440,27 +10527,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "imageupdateautomations", "singular": "imageupdateautomation", @@ -11688,82 +10758,7 @@ }, "crd": { "metadata": { - "name": "imagepolicies.image.toolkit.fluxcd.io", - "uid": "58960100-e845-409f-8c72-d3b1cc5fb12d", - "resourceVersion": "127259381", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "imagepolicies.image.toolkit.fluxcd.io" }, "spec": { "group": "image.toolkit.fluxcd.io", @@ -12170,27 +11165,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "imagepolicies", "singular": "imagepolicy", @@ -12463,82 +11441,7 @@ }, "crd": { "metadata": { - "name": "imagerepositories.image.toolkit.fluxcd.io", - "uid": "7b04c801-9b5a-49aa-b745-b059c874cdce", - "resourceVersion": "127259396", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "imagerepositories.image.toolkit.fluxcd.io" }, "spec": { "group": "image.toolkit.fluxcd.io", @@ -13021,27 +11924,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "imagerepositories", "singular": "imagerepository", @@ -14141,84 +13027,7 @@ }, "crd": { "metadata": { - "name": "helmreleases.helm.toolkit.fluxcd.io", - "uid": "b6b6f225-3b6e-46b1-a64c-6814853a4936", - "resourceVersion": "127259359", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "helmreleases.helm.toolkit.fluxcd.io" }, "spec": { "group": "helm.toolkit.fluxcd.io", @@ -16359,27 +15168,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "helmreleases", "singular": "helmrelease", diff --git a/data/k8s.json b/data/k8s.json index 4c5901d..17407af 100644 --- a/data/k8s.json +++ b/data/k8s.json @@ -77000,1785 +77000,6 @@ "ports": "[JSONObject]" }, "namespaced": true - }, - { - "alternatives": [], - "name": "io.k8s.storage.snapshot.v1.VolumeSnapshot", - "definition": { - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "spec": { - "description": "spec defines the desired characteristics of a snapshot requested by a user. More info: https://kubernetes.io/docs/concepts/storage/volume-snapshots#volumesnapshots Required.", - "type": "object", - "required": [ - "source" - ], - "properties": { - "source": { - "description": "source specifies where a snapshot will be created from. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "persistentVolumeClaimName": { - "description": "persistentVolumeClaimName specifies the name of the PersistentVolumeClaim object representing the volume from which a snapshot should be created. This PVC is assumed to be in the same namespace as the VolumeSnapshot object. This field should be set if the snapshot does not exists, and needs to be created. This field is immutable.", - "type": "string" - }, - "volumeSnapshotContentName": { - "description": "volumeSnapshotContentName specifies the name of a pre-existing VolumeSnapshotContent object representing an existing volume snapshot. This field should be set if the snapshot already exists and only needs a representation in Kubernetes. This field is immutable.", - "type": "string" - } - } - }, - "volumeSnapshotClassName": { - "description": "VolumeSnapshotClassName is the name of the VolumeSnapshotClass requested by the VolumeSnapshot. VolumeSnapshotClassName may be left nil to indicate that the default SnapshotClass should be used. A given cluster may have multiple default Volume SnapshotClasses: one default per CSI Driver. If a VolumeSnapshot does not specify a SnapshotClass, VolumeSnapshotSource will be checked to figure out what the associated CSI Driver is, and the default VolumeSnapshotClass associated with that CSI Driver will be used. If more than one VolumeSnapshotClass exist for a given CSI Driver and more than one have been marked as default, CreateSnapshot will fail and generate an event. Empty string is not allowed for this field.", - "type": "string" - } - } - }, - "status": { - "description": "status represents the current information of a snapshot. Consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "object", - "properties": { - "boundVolumeSnapshotContentName": { - "description": "boundVolumeSnapshotContentName is the name of the VolumeSnapshotContent object to which this VolumeSnapshot object intends to bind to. If not specified, it indicates that the VolumeSnapshot object has not been successfully bound to a VolumeSnapshotContent object yet. NOTE: To avoid possible security issues, consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "string" - }, - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it may indicate that the creation time of the snapshot is unknown.", - "type": "string", - "format": "date-time" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. This field could be helpful to upper level controllers(i.e., application controller) to decide whether they should continue on waiting for the snapshot to be created based on the type of error reported. The snapshot controller will keep retrying when an error occurs during the snapshot creation. Upon success, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if the snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the minimum size of volume required to create a volume from this snapshot. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "string", - "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", - "x-kubernetes-int-or-string": true - }, - "volumeGroupSnapshotName": { - "description": "VolumeGroupSnapshotName is the name of the VolumeGroupSnapshot of which this VolumeSnapshot is a part of.", - "type": "string" - } - } - } - }, - "description": "VolumeSnapshot is a user's request for either creating a point-in-time snapshot of a persistent volume, or binding to a pre-existing snapshot.", - "type": "object", - "required": [ - "spec" - ], - "x-kubernetes-group-version-kind": [ - { - "group": "snapshot.storage.k8s.io", - "kind": "VolumeSnapshot", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "volumesnapshots.snapshot.storage.k8s.io", - "uid": "4e22a9ae-a5e6-4a32-b081-51a6fafc9b49", - "resourceVersion": "144938826", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:24Z", - "annotations": { - "api-approved.kubernetes.io": "https://github.com/kubernetes-csi/external-snapshotter/pull/814", - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"KubernetesAPIApprovalPolicyConformant\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:api-approved.kubernetes.io": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] - }, - "spec": { - "group": "snapshot.storage.k8s.io", - "names": { - "plural": "volumesnapshots", - "singular": "volumesnapshot", - "shortNames": [ - "vs" - ], - "kind": "VolumeSnapshot", - "listKind": "VolumeSnapshotList" - }, - "scope": "Namespaced", - "versions": [ - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshot is a user's request for either creating a point-in-time snapshot of a persistent volume, or binding to a pre-existing snapshot.", - "type": "object", - "required": [ - "spec" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "metadata": { - "type": "object" - }, - "spec": { - "description": "spec defines the desired characteristics of a snapshot requested by a user. More info: https://kubernetes.io/docs/concepts/storage/volume-snapshots#volumesnapshots Required.", - "type": "object", - "required": [ - "source" - ], - "properties": { - "source": { - "description": "source specifies where a snapshot will be created from. This field is immutable after creation. Required.", - "type": "object", - "oneOf": [ - { - "required": [ - "persistentVolumeClaimName" - ] - }, - { - "required": [ - "volumeSnapshotContentName" - ] - } - ], - "properties": { - "persistentVolumeClaimName": { - "description": "persistentVolumeClaimName specifies the name of the PersistentVolumeClaim object representing the volume from which a snapshot should be created. This PVC is assumed to be in the same namespace as the VolumeSnapshot object. This field should be set if the snapshot does not exists, and needs to be created. This field is immutable.", - "type": "string" - }, - "volumeSnapshotContentName": { - "description": "volumeSnapshotContentName specifies the name of a pre-existing VolumeSnapshotContent object representing an existing volume snapshot. This field should be set if the snapshot already exists and only needs a representation in Kubernetes. This field is immutable.", - "type": "string" - } - } - }, - "volumeSnapshotClassName": { - "description": "VolumeSnapshotClassName is the name of the VolumeSnapshotClass requested by the VolumeSnapshot. VolumeSnapshotClassName may be left nil to indicate that the default SnapshotClass should be used. A given cluster may have multiple default Volume SnapshotClasses: one default per CSI Driver. If a VolumeSnapshot does not specify a SnapshotClass, VolumeSnapshotSource will be checked to figure out what the associated CSI Driver is, and the default VolumeSnapshotClass associated with that CSI Driver will be used. If more than one VolumeSnapshotClass exist for a given CSI Driver and more than one have been marked as default, CreateSnapshot will fail and generate an event. Empty string is not allowed for this field.", - "type": "string" - } - } - }, - "status": { - "description": "status represents the current information of a snapshot. Consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "object", - "properties": { - "boundVolumeSnapshotContentName": { - "description": "boundVolumeSnapshotContentName is the name of the VolumeSnapshotContent object to which this VolumeSnapshot object intends to bind to. If not specified, it indicates that the VolumeSnapshot object has not been successfully bound to a VolumeSnapshotContent object yet. NOTE: To avoid possible security issues, consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "string" - }, - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it may indicate that the creation time of the snapshot is unknown.", - "type": "string", - "format": "date-time" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. This field could be helpful to upper level controllers(i.e., application controller) to decide whether they should continue on waiting for the snapshot to be created based on the type of error reported. The snapshot controller will keep retrying when an error occurs during the snapshot creation. Upon success, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if the snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the minimum size of volume required to create a volume from this snapshot. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "string", - "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", - "x-kubernetes-int-or-string": true - }, - "volumeGroupSnapshotName": { - "description": "VolumeGroupSnapshotName is the name of the VolumeGroupSnapshot of which this VolumeSnapshot is a part of.", - "type": "string" - } - } - } - } - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "SourcePVC", - "type": "string", - "description": "If a new snapshot needs to be created, this contains the name of the source PVC from which this snapshot was (or will be) created.", - "jsonPath": ".spec.source.persistentVolumeClaimName" - }, - { - "name": "SourceSnapshotContent", - "type": "string", - "description": "If a snapshot already exists, this contains the name of the existing VolumeSnapshotContent object representing the existing snapshot.", - "jsonPath": ".spec.source.volumeSnapshotContentName" - }, - { - "name": "RestoreSize", - "type": "string", - "description": "Represents the minimum size of volume required to rehydrate from this snapshot.", - "jsonPath": ".status.restoreSize" - }, - { - "name": "SnapshotClass", - "type": "string", - "description": "The name of the VolumeSnapshotClass requested by the VolumeSnapshot.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "SnapshotContent", - "type": "string", - "description": "Name of the VolumeSnapshotContent object to which the VolumeSnapshot object intends to bind to. Please note that verification of binding actually requires checking both VolumeSnapshot and VolumeSnapshotContent to ensure both are pointing at each other. Binding MUST be verified prior to usage of this object.", - "jsonPath": ".status.boundVolumeSnapshotContentName" - }, - { - "name": "CreationTime", - "type": "date", - "description": "Timestamp when the point-in-time snapshot was taken by the underlying storage system.", - "jsonPath": ".status.creationTime" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - }, - { - "name": "v1beta1", - "served": false, - "storage": false, - "deprecated": true, - "deprecationWarning": "snapshot.storage.k8s.io/v1beta1 VolumeSnapshot is deprecated; use snapshot.storage.k8s.io/v1 VolumeSnapshot", - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshot is a user's request for either creating a point-in-time snapshot of a persistent volume, or binding to a pre-existing snapshot.", - "type": "object", - "required": [ - "spec" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "spec": { - "description": "spec defines the desired characteristics of a snapshot requested by a user. More info: https://kubernetes.io/docs/concepts/storage/volume-snapshots#volumesnapshots Required.", - "type": "object", - "required": [ - "source" - ], - "properties": { - "source": { - "description": "source specifies where a snapshot will be created from. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "persistentVolumeClaimName": { - "description": "persistentVolumeClaimName specifies the name of the PersistentVolumeClaim object representing the volume from which a snapshot should be created. This PVC is assumed to be in the same namespace as the VolumeSnapshot object. This field should be set if the snapshot does not exists, and needs to be created. This field is immutable.", - "type": "string" - }, - "volumeSnapshotContentName": { - "description": "volumeSnapshotContentName specifies the name of a pre-existing VolumeSnapshotContent object representing an existing volume snapshot. This field should be set if the snapshot already exists and only needs a representation in Kubernetes. This field is immutable.", - "type": "string" - } - } - }, - "volumeSnapshotClassName": { - "description": "VolumeSnapshotClassName is the name of the VolumeSnapshotClass requested by the VolumeSnapshot. VolumeSnapshotClassName may be left nil to indicate that the default SnapshotClass should be used. A given cluster may have multiple default Volume SnapshotClasses: one default per CSI Driver. If a VolumeSnapshot does not specify a SnapshotClass, VolumeSnapshotSource will be checked to figure out what the associated CSI Driver is, and the default VolumeSnapshotClass associated with that CSI Driver will be used. If more than one VolumeSnapshotClass exist for a given CSI Driver and more than one have been marked as default, CreateSnapshot will fail and generate an event. Empty string is not allowed for this field.", - "type": "string" - } - } - }, - "status": { - "description": "status represents the current information of a snapshot. Consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "object", - "properties": { - "boundVolumeSnapshotContentName": { - "description": "boundVolumeSnapshotContentName is the name of the VolumeSnapshotContent object to which this VolumeSnapshot object intends to bind to. If not specified, it indicates that the VolumeSnapshot object has not been successfully bound to a VolumeSnapshotContent object yet. NOTE: To avoid possible security issues, consumers must verify binding between VolumeSnapshot and VolumeSnapshotContent objects is successful (by validating that both VolumeSnapshot and VolumeSnapshotContent point at each other) before using this object.", - "type": "string" - }, - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it may indicate that the creation time of the snapshot is unknown.", - "type": "string", - "format": "date-time" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. This field could be helpful to upper level controllers(i.e., application controller) to decide whether they should continue on waiting for the snapshot to be created based on the type of error reported. The snapshot controller will keep retrying when an error occurs during the snapshot creation. Upon success, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if the snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the minimum size of volume required to create a volume from this snapshot. In dynamic snapshot creation case, this field will be filled in by the snapshot controller with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "string", - "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", - "x-kubernetes-int-or-string": true - } - } - } - } - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "SourcePVC", - "type": "string", - "description": "If a new snapshot needs to be created, this contains the name of the source PVC from which this snapshot was (or will be) created.", - "jsonPath": ".spec.source.persistentVolumeClaimName" - }, - { - "name": "SourceSnapshotContent", - "type": "string", - "description": "If a snapshot already exists, this contains the name of the existing VolumeSnapshotContent object representing the existing snapshot.", - "jsonPath": ".spec.source.volumeSnapshotContentName" - }, - { - "name": "RestoreSize", - "type": "string", - "description": "Represents the minimum size of volume required to rehydrate from this snapshot.", - "jsonPath": ".status.restoreSize" - }, - { - "name": "SnapshotClass", - "type": "string", - "description": "The name of the VolumeSnapshotClass requested by the VolumeSnapshot.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "SnapshotContent", - "type": "string", - "description": "Name of the VolumeSnapshotContent object to which the VolumeSnapshot object intends to bind to. Please note that verification of binding actually requires checking both VolumeSnapshot and VolumeSnapshotContent to ensure both are pointing at each other. Binding MUST be verified prior to usage of this object.", - "jsonPath": ".status.boundVolumeSnapshotContentName" - }, - { - "name": "CreationTime", - "type": "date", - "description": "Timestamp when the point-in-time snapshot was taken by the underlying storage system.", - "jsonPath": ".status.creationTime" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - } - ], - "conversion": { - "strategy": "None" - } - }, - "status": { - "conditions": [ - { - "type": "KubernetesAPIApprovalPolicyConformant", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "ApprovedAnnotation", - "message": "approved in https://github.com/kubernetes-csi/external-snapshotter/pull/814" - }, - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], - "acceptedNames": { - "plural": "volumesnapshots", - "singular": "volumesnapshot", - "shortNames": [ - "vs" - ], - "kind": "VolumeSnapshot", - "listKind": "VolumeSnapshotList" - }, - "storedVersions": [ - "v1" - ] - } - }, - "additionalColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "SourcePVC", - "type": "string", - "description": "If a new snapshot needs to be created, this contains the name of the source PVC from which this snapshot was (or will be) created.", - "jsonPath": ".spec.source.persistentVolumeClaimName" - }, - { - "name": "SourceSnapshotContent", - "type": "string", - "description": "If a snapshot already exists, this contains the name of the existing VolumeSnapshotContent object representing the existing snapshot.", - "jsonPath": ".spec.source.volumeSnapshotContentName" - }, - { - "name": "RestoreSize", - "type": "string", - "description": "Represents the minimum size of volume required to rehydrate from this snapshot.", - "jsonPath": ".status.restoreSize" - }, - { - "name": "SnapshotClass", - "type": "string", - "description": "The name of the VolumeSnapshotClass requested by the VolumeSnapshot.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "SnapshotContent", - "type": "string", - "description": "Name of the VolumeSnapshotContent object to which the VolumeSnapshot object intends to bind to. Please note that verification of binding actually requires checking both VolumeSnapshot and VolumeSnapshotContent to ensure both are pointing at each other. Binding MUST be verified prior to usage of this object.", - "jsonPath": ".status.boundVolumeSnapshotContentName" - }, - { - "name": "CreationTime", - "type": "date", - "description": "Timestamp when the point-in-time snapshot was taken by the underlying storage system.", - "jsonPath": ".status.creationTime" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ], - "short": "VolumeSnapshot", - "apiGroup": "snapshot.storage.k8s.io", - "apiKind": "VolumeSnapshot", - "apiVersion": "v1", - "readProperties": { - "spec": "spec", - "status": "status" - }, - "writeProperties": { - "spec": "spec" - }, - "group": "k8s", - "sub": "snapshot", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" - }, - "namespaced": true - }, - { - "alternatives": [], - "name": "io.k8s.storage.snapshot.v1.VolumeSnapshotClass", - "definition": { - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "deletionPolicy": { - "description": "deletionPolicy determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the storage driver that handles this VolumeSnapshotClass. Required.", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "parameters": { - "description": "parameters is a key-value map with storage driver specific parameters for creating snapshots. These values are opaque to Kubernetes.", - "type": "object", - "additionalProperties": { - "type": "string" - } - } - }, - "description": "VolumeSnapshotClass specifies parameters that a underlying storage system uses when creating a volume snapshot. A specific VolumeSnapshotClass is used by specifying its name in a VolumeSnapshot object. VolumeSnapshotClasses are non-namespaced", - "type": "object", - "required": [ - "deletionPolicy", - "driver" - ], - "x-kubernetes-group-version-kind": [ - { - "group": "snapshot.storage.k8s.io", - "kind": "VolumeSnapshotClass", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "volumesnapshotclasses.snapshot.storage.k8s.io", - "uid": "db27c76b-c220-4c82-9cb0-13f44c10838f", - "resourceVersion": "144938584", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:16Z", - "annotations": { - "api-approved.kubernetes.io": "https://github.com/kubernetes-csi/external-snapshotter/pull/814", - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:api-approved.kubernetes.io": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"KubernetesAPIApprovalPolicyConformant\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] - }, - "spec": { - "group": "snapshot.storage.k8s.io", - "names": { - "plural": "volumesnapshotclasses", - "singular": "volumesnapshotclass", - "shortNames": [ - "vsclass", - "vsclasses" - ], - "kind": "VolumeSnapshotClass", - "listKind": "VolumeSnapshotClassList" - }, - "scope": "Cluster", - "versions": [ - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshotClass specifies parameters that a underlying storage system uses when creating a volume snapshot. A specific VolumeSnapshotClass is used by specifying its name in a VolumeSnapshot object. VolumeSnapshotClasses are non-namespaced", - "type": "object", - "required": [ - "deletionPolicy", - "driver" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "deletionPolicy": { - "description": "deletionPolicy determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the storage driver that handles this VolumeSnapshotClass. Required.", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "metadata": { - "type": "object" - }, - "parameters": { - "description": "parameters is a key-value map with storage driver specific parameters for creating snapshots. These values are opaque to Kubernetes.", - "type": "object", - "additionalProperties": { - "type": "string" - } - } - } - } - }, - "subresources": {}, - "additionalPrinterColumns": [ - { - "name": "Driver", - "type": "string", - "jsonPath": ".driver" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".deletionPolicy" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - }, - { - "name": "v1beta1", - "served": false, - "storage": false, - "deprecated": true, - "deprecationWarning": "snapshot.storage.k8s.io/v1beta1 VolumeSnapshotClass is deprecated; use snapshot.storage.k8s.io/v1 VolumeSnapshotClass", - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshotClass specifies parameters that a underlying storage system uses when creating a volume snapshot. A specific VolumeSnapshotClass is used by specifying its name in a VolumeSnapshot object. VolumeSnapshotClasses are non-namespaced", - "type": "object", - "required": [ - "deletionPolicy", - "driver" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "deletionPolicy": { - "description": "deletionPolicy determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the storage driver that handles this VolumeSnapshotClass. Required.", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "parameters": { - "description": "parameters is a key-value map with storage driver specific parameters for creating snapshots. These values are opaque to Kubernetes.", - "type": "object", - "additionalProperties": { - "type": "string" - } - } - } - } - }, - "subresources": {}, - "additionalPrinterColumns": [ - { - "name": "Driver", - "type": "string", - "jsonPath": ".driver" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".deletionPolicy" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - } - ], - "conversion": { - "strategy": "None" - } - }, - "status": { - "conditions": [ - { - "type": "KubernetesAPIApprovalPolicyConformant", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:16Z", - "reason": "ApprovedAnnotation", - "message": "approved in https://github.com/kubernetes-csi/external-snapshotter/pull/814" - }, - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], - "acceptedNames": { - "plural": "volumesnapshotclasses", - "singular": "volumesnapshotclass", - "shortNames": [ - "vsclass", - "vsclasses" - ], - "kind": "VolumeSnapshotClass", - "listKind": "VolumeSnapshotClassList" - }, - "storedVersions": [ - "v1" - ] - } - }, - "additionalColumns": [ - { - "name": "Driver", - "type": "string", - "jsonPath": ".driver" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether a VolumeSnapshotContent created through the VolumeSnapshotClass should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".deletionPolicy" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ], - "short": "VolumeSnapshotClass", - "apiGroup": "snapshot.storage.k8s.io", - "apiKind": "VolumeSnapshotClass", - "apiVersion": "v1", - "readProperties": { - "deletionPolicy": "deletionPolicy", - "driver": "driver", - "parameters": "parameters" - }, - "writeProperties": { - "deletionPolicy": "deletionPolicy", - "driver": "driver", - "parameters": "parameters" - }, - "group": "k8s", - "sub": "snapshot", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "deletionPolicy": "String", - "driver": "String", - "metadata": "metadata!", - "parameters": "JSONObject" - }, - "namespaced": false - }, - { - "alternatives": [], - "name": "io.k8s.storage.snapshot.v1.VolumeSnapshotContent", - "definition": { - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "spec": { - "description": "spec defines properties of a VolumeSnapshotContent created by the underlying storage system. Required.", - "type": "object", - "required": [ - "deletionPolicy", - "driver", - "source", - "volumeSnapshotRef" - ], - "properties": { - "deletionPolicy": { - "description": "deletionPolicy determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. For dynamically provisioned snapshots, this field will automatically be filled in by the CSI snapshotter sidecar with the \"DeletionPolicy\" field defined in the corresponding VolumeSnapshotClass. For pre-existing snapshots, users MUST specify this field when creating the VolumeSnapshotContent object. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the CSI driver used to create the physical snapshot on the underlying storage system. This MUST be the same as the name returned by the CSI GetPluginName() call for that driver. Required.", - "type": "string" - }, - "source": { - "description": "source specifies whether the snapshot is (or should be) dynamically provisioned or already exists, and just requires a Kubernetes object representation. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "snapshotHandle": { - "description": "snapshotHandle specifies the CSI \"snapshot_id\" of a pre-existing snapshot on the underlying storage system for which a Kubernetes object representation was (or should be) created. This field is immutable.", - "type": "string" - }, - "volumeHandle": { - "description": "volumeHandle specifies the CSI \"volume_id\" of the volume from which a snapshot should be dynamically taken from. This field is immutable.", - "type": "string" - } - } - }, - "sourceVolumeMode": { - "description": "SourceVolumeMode is the mode of the volume whose snapshot is taken. Can be either “Filesystem” or “Block”. If not specified, it indicates the source volume's mode is unknown. This field is immutable. This field is an alpha field.", - "type": "string" - }, - "volumeSnapshotClassName": { - "description": "name of the VolumeSnapshotClass from which this snapshot was (or will be) created. Note that after provisioning, the VolumeSnapshotClass may be deleted or recreated with different set of values, and as such, should not be referenced post-snapshot creation.", - "type": "string" - }, - "volumeSnapshotRef": { - "description": "volumeSnapshotRef specifies the VolumeSnapshot object to which this VolumeSnapshotContent object is bound. VolumeSnapshot.Spec.VolumeSnapshotContentName field must reference to this VolumeSnapshotContent's name for the bidirectional binding to be valid. For a pre-existing VolumeSnapshotContent object, name and namespace of the VolumeSnapshot object MUST be provided for binding to happen. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent.", - "type": "string" - }, - "fieldPath": { - "description": "If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. TODO: this design is not final and this field is subject to change in the future.", - "type": "string" - }, - "kind": { - "description": "Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "name": { - "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", - "type": "string" - }, - "namespace": { - "description": "Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/", - "type": "string" - }, - "resourceVersion": { - "description": "Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency", - "type": "string" - }, - "uid": { - "description": "UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids", - "type": "string" - } - }, - "x-kubernetes-map-type": "atomic" - } - } - }, - "status": { - "description": "status represents the current information of a snapshot.", - "type": "object", - "properties": { - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it indicates the creation time is unknown. The format of this field is a Unix nanoseconds time encoded as an int64. On Unix, the command `date +%s%N` returns the current time in nanoseconds since 1970-01-01 00:00:00 UTC.", - "type": "integer", - "format": "int64" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. Upon success after retry, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if a snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the complete size of the snapshot in bytes. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "integer", - "format": "int64", - "minimum": 0 - }, - "snapshotHandle": { - "description": "snapshotHandle is the CSI \"snapshot_id\" of a snapshot on the underlying storage system. If not specified, it indicates that dynamic snapshot creation has either failed or it is still in progress.", - "type": "string" - }, - "volumeGroupSnapshotHandle": { - "description": "VolumeGroupSnapshotHandle is the CSI \"group_snapshot_id\" of a group snapshot on the underlying storage system.", - "type": "string" - } - } - } - }, - "description": "VolumeSnapshotContent represents the actual \"on-disk\" snapshot object in the underlying storage system", - "type": "object", - "required": [ - "spec" - ], - "x-kubernetes-group-version-kind": [ - { - "group": "snapshot.storage.k8s.io", - "kind": "VolumeSnapshotContent", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "volumesnapshotcontents.snapshot.storage.k8s.io", - "uid": "0eb62246-5c92-4f20-81a9-db9ba5461bcd", - "resourceVersion": "144938638", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:19Z", - "annotations": { - "api-approved.kubernetes.io": "https://github.com/kubernetes-csi/external-snapshotter/pull/955", - "controller-gen.kubebuilder.io/version": "v0.12.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"KubernetesAPIApprovalPolicyConformant\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:api-approved.kubernetes.io": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] - }, - "spec": { - "group": "snapshot.storage.k8s.io", - "names": { - "plural": "volumesnapshotcontents", - "singular": "volumesnapshotcontent", - "shortNames": [ - "vsc", - "vscs" - ], - "kind": "VolumeSnapshotContent", - "listKind": "VolumeSnapshotContentList" - }, - "scope": "Cluster", - "versions": [ - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshotContent represents the actual \"on-disk\" snapshot object in the underlying storage system", - "type": "object", - "required": [ - "spec" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "metadata": { - "type": "object" - }, - "spec": { - "description": "spec defines properties of a VolumeSnapshotContent created by the underlying storage system. Required.", - "type": "object", - "required": [ - "deletionPolicy", - "driver", - "source", - "volumeSnapshotRef" - ], - "properties": { - "deletionPolicy": { - "description": "deletionPolicy determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. For dynamically provisioned snapshots, this field will automatically be filled in by the CSI snapshotter sidecar with the \"DeletionPolicy\" field defined in the corresponding VolumeSnapshotClass. For pre-existing snapshots, users MUST specify this field when creating the VolumeSnapshotContent object. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the CSI driver used to create the physical snapshot on the underlying storage system. This MUST be the same as the name returned by the CSI GetPluginName() call for that driver. Required.", - "type": "string" - }, - "source": { - "description": "source specifies whether the snapshot is (or should be) dynamically provisioned or already exists, and just requires a Kubernetes object representation. This field is immutable after creation. Required.", - "type": "object", - "oneOf": [ - { - "required": [ - "snapshotHandle" - ] - }, - { - "required": [ - "volumeHandle" - ] - } - ], - "properties": { - "snapshotHandle": { - "description": "snapshotHandle specifies the CSI \"snapshot_id\" of a pre-existing snapshot on the underlying storage system for which a Kubernetes object representation was (or should be) created. This field is immutable.", - "type": "string" - }, - "volumeHandle": { - "description": "volumeHandle specifies the CSI \"volume_id\" of the volume from which a snapshot should be dynamically taken from. This field is immutable.", - "type": "string" - } - } - }, - "sourceVolumeMode": { - "description": "SourceVolumeMode is the mode of the volume whose snapshot is taken. Can be either “Filesystem” or “Block”. If not specified, it indicates the source volume's mode is unknown. This field is immutable. This field is an alpha field.", - "type": "string" - }, - "volumeSnapshotClassName": { - "description": "name of the VolumeSnapshotClass from which this snapshot was (or will be) created. Note that after provisioning, the VolumeSnapshotClass may be deleted or recreated with different set of values, and as such, should not be referenced post-snapshot creation.", - "type": "string" - }, - "volumeSnapshotRef": { - "description": "volumeSnapshotRef specifies the VolumeSnapshot object to which this VolumeSnapshotContent object is bound. VolumeSnapshot.Spec.VolumeSnapshotContentName field must reference to this VolumeSnapshotContent's name for the bidirectional binding to be valid. For a pre-existing VolumeSnapshotContent object, name and namespace of the VolumeSnapshot object MUST be provided for binding to happen. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent.", - "type": "string" - }, - "fieldPath": { - "description": "If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. TODO: this design is not final and this field is subject to change in the future.", - "type": "string" - }, - "kind": { - "description": "Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "name": { - "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", - "type": "string" - }, - "namespace": { - "description": "Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/", - "type": "string" - }, - "resourceVersion": { - "description": "Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency", - "type": "string" - }, - "uid": { - "description": "UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids", - "type": "string" - } - }, - "x-kubernetes-map-type": "atomic" - } - } - }, - "status": { - "description": "status represents the current information of a snapshot.", - "type": "object", - "properties": { - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it indicates the creation time is unknown. The format of this field is a Unix nanoseconds time encoded as an int64. On Unix, the command `date +%s%N` returns the current time in nanoseconds since 1970-01-01 00:00:00 UTC.", - "type": "integer", - "format": "int64" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. Upon success after retry, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if a snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the complete size of the snapshot in bytes. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "integer", - "format": "int64", - "minimum": 0 - }, - "snapshotHandle": { - "description": "snapshotHandle is the CSI \"snapshot_id\" of a snapshot on the underlying storage system. If not specified, it indicates that dynamic snapshot creation has either failed or it is still in progress.", - "type": "string" - }, - "volumeGroupSnapshotHandle": { - "description": "VolumeGroupSnapshotHandle is the CSI \"group_snapshot_id\" of a group snapshot on the underlying storage system.", - "type": "string" - } - } - } - } - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "RestoreSize", - "type": "integer", - "description": "Represents the complete size of the snapshot in bytes", - "jsonPath": ".status.restoreSize" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".spec.deletionPolicy" - }, - { - "name": "Driver", - "type": "string", - "description": "Name of the CSI driver used to create the physical snapshot on the underlying storage system.", - "jsonPath": ".spec.driver" - }, - { - "name": "VolumeSnapshotClass", - "type": "string", - "description": "Name of the VolumeSnapshotClass to which this snapshot belongs.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "VolumeSnapshot", - "type": "string", - "description": "Name of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.name" - }, - { - "name": "VolumeSnapshotNamespace", - "type": "string", - "description": "Namespace of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.namespace" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - }, - { - "name": "v1beta1", - "served": false, - "storage": false, - "deprecated": true, - "deprecationWarning": "snapshot.storage.k8s.io/v1beta1 VolumeSnapshotContent is deprecated; use snapshot.storage.k8s.io/v1 VolumeSnapshotContent", - "schema": { - "openAPIV3Schema": { - "description": "VolumeSnapshotContent represents the actual \"on-disk\" snapshot object in the underlying storage system", - "type": "object", - "required": [ - "spec" - ], - "properties": { - "apiVersion": { - "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", - "type": "string" - }, - "kind": { - "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "spec": { - "description": "spec defines properties of a VolumeSnapshotContent created by the underlying storage system. Required.", - "type": "object", - "required": [ - "deletionPolicy", - "driver", - "source", - "volumeSnapshotRef" - ], - "properties": { - "deletionPolicy": { - "description": "deletionPolicy determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted. Supported values are \"Retain\" and \"Delete\". \"Retain\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are kept. \"Delete\" means that the VolumeSnapshotContent and its physical snapshot on underlying storage system are deleted. For dynamically provisioned snapshots, this field will automatically be filled in by the CSI snapshotter sidecar with the \"DeletionPolicy\" field defined in the corresponding VolumeSnapshotClass. For pre-existing snapshots, users MUST specify this field when creating the VolumeSnapshotContent object. Required.", - "type": "string", - "enum": [ - "Delete", - "Retain" - ] - }, - "driver": { - "description": "driver is the name of the CSI driver used to create the physical snapshot on the underlying storage system. This MUST be the same as the name returned by the CSI GetPluginName() call for that driver. Required.", - "type": "string" - }, - "source": { - "description": "source specifies whether the snapshot is (or should be) dynamically provisioned or already exists, and just requires a Kubernetes object representation. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "snapshotHandle": { - "description": "snapshotHandle specifies the CSI \"snapshot_id\" of a pre-existing snapshot on the underlying storage system for which a Kubernetes object representation was (or should be) created. This field is immutable.", - "type": "string" - }, - "volumeHandle": { - "description": "volumeHandle specifies the CSI \"volume_id\" of the volume from which a snapshot should be dynamically taken from. This field is immutable.", - "type": "string" - } - } - }, - "volumeSnapshotClassName": { - "description": "name of the VolumeSnapshotClass from which this snapshot was (or will be) created. Note that after provisioning, the VolumeSnapshotClass may be deleted or recreated with different set of values, and as such, should not be referenced post-snapshot creation.", - "type": "string" - }, - "volumeSnapshotRef": { - "description": "volumeSnapshotRef specifies the VolumeSnapshot object to which this VolumeSnapshotContent object is bound. VolumeSnapshot.Spec.VolumeSnapshotContentName field must reference to this VolumeSnapshotContent's name for the bidirectional binding to be valid. For a pre-existing VolumeSnapshotContent object, name and namespace of the VolumeSnapshot object MUST be provided for binding to happen. This field is immutable after creation. Required.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent.", - "type": "string" - }, - "fieldPath": { - "description": "If referring to a piece of an object instead of an entire object, this string should contain a valid JSON/Go field access statement, such as desiredState.manifest.containers[2]. For example, if the object reference is to a container within a pod, this would take on a value like: \"spec.containers{name}\" (where \"name\" refers to the name of the container that triggered the event) or if no container name is specified \"spec.containers[2]\" (container with index 2 in this pod). This syntax is chosen only to have some well-defined way of referencing a part of an object. TODO: this design is not final and this field is subject to change in the future.", - "type": "string" - }, - "kind": { - "description": "Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", - "type": "string" - }, - "name": { - "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", - "type": "string" - }, - "namespace": { - "description": "Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/", - "type": "string" - }, - "resourceVersion": { - "description": "Specific resourceVersion to which this reference is made, if any. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency", - "type": "string" - }, - "uid": { - "description": "UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids", - "type": "string" - } - } - } - } - }, - "status": { - "description": "status represents the current information of a snapshot.", - "type": "object", - "properties": { - "creationTime": { - "description": "creationTime is the timestamp when the point-in-time snapshot is taken by the underlying storage system. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"creation_time\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"creation_time\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. If not specified, it indicates the creation time is unknown. The format of this field is a Unix nanoseconds time encoded as an int64. On Unix, the command `date +%s%N` returns the current time in nanoseconds since 1970-01-01 00:00:00 UTC.", - "type": "integer", - "format": "int64" - }, - "error": { - "description": "error is the last observed error during snapshot creation, if any. Upon success after retry, this error field will be cleared.", - "type": "object", - "properties": { - "message": { - "description": "message is a string detailing the encountered error during snapshot creation if specified. NOTE: message may be logged, and it should not contain sensitive information.", - "type": "string" - }, - "time": { - "description": "time is the timestamp when the error was encountered.", - "type": "string", - "format": "date-time" - } - } - }, - "readyToUse": { - "description": "readyToUse indicates if a snapshot is ready to be used to restore a volume. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"ready_to_use\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"ready_to_use\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it, otherwise, this field will be set to \"True\". If not specified, it means the readiness of a snapshot is unknown.", - "type": "boolean" - }, - "restoreSize": { - "description": "restoreSize represents the complete size of the snapshot in bytes. In dynamic snapshot creation case, this field will be filled in by the CSI snapshotter sidecar with the \"size_bytes\" value returned from CSI \"CreateSnapshot\" gRPC call. For a pre-existing snapshot, this field will be filled with the \"size_bytes\" value returned from the CSI \"ListSnapshots\" gRPC call if the driver supports it. When restoring a volume from this snapshot, the size of the volume MUST NOT be smaller than the restoreSize if it is specified, otherwise the restoration will fail. If not specified, it indicates that the size is unknown.", - "type": "integer", - "format": "int64", - "minimum": 0 - }, - "snapshotHandle": { - "description": "snapshotHandle is the CSI \"snapshot_id\" of a snapshot on the underlying storage system. If not specified, it indicates that dynamic snapshot creation has either failed or it is still in progress.", - "type": "string" - } - } - } - } - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "RestoreSize", - "type": "integer", - "description": "Represents the complete size of the snapshot in bytes", - "jsonPath": ".status.restoreSize" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".spec.deletionPolicy" - }, - { - "name": "Driver", - "type": "string", - "description": "Name of the CSI driver used to create the physical snapshot on the underlying storage system.", - "jsonPath": ".spec.driver" - }, - { - "name": "VolumeSnapshotClass", - "type": "string", - "description": "Name of the VolumeSnapshotClass to which this snapshot belongs.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "VolumeSnapshot", - "type": "string", - "description": "Name of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.name" - }, - { - "name": "VolumeSnapshotNamespace", - "type": "string", - "description": "Namespace of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.namespace" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ] - } - ], - "conversion": { - "strategy": "None" - } - }, - "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - }, - { - "type": "KubernetesAPIApprovalPolicyConformant", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "ApprovedAnnotation", - "message": "approved in https://github.com/kubernetes-csi/external-snapshotter/pull/955" - } - ], - "acceptedNames": { - "plural": "volumesnapshotcontents", - "singular": "volumesnapshotcontent", - "shortNames": [ - "vsc", - "vscs" - ], - "kind": "VolumeSnapshotContent", - "listKind": "VolumeSnapshotContentList" - }, - "storedVersions": [ - "v1" - ] - } - }, - "additionalColumns": [ - { - "name": "ReadyToUse", - "type": "boolean", - "description": "Indicates if the snapshot is ready to be used to restore a volume.", - "jsonPath": ".status.readyToUse" - }, - { - "name": "RestoreSize", - "type": "integer", - "description": "Represents the complete size of the snapshot in bytes", - "jsonPath": ".status.restoreSize" - }, - { - "name": "DeletionPolicy", - "type": "string", - "description": "Determines whether this VolumeSnapshotContent and its physical snapshot on the underlying storage system should be deleted when its bound VolumeSnapshot is deleted.", - "jsonPath": ".spec.deletionPolicy" - }, - { - "name": "Driver", - "type": "string", - "description": "Name of the CSI driver used to create the physical snapshot on the underlying storage system.", - "jsonPath": ".spec.driver" - }, - { - "name": "VolumeSnapshotClass", - "type": "string", - "description": "Name of the VolumeSnapshotClass to which this snapshot belongs.", - "jsonPath": ".spec.volumeSnapshotClassName" - }, - { - "name": "VolumeSnapshot", - "type": "string", - "description": "Name of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.name" - }, - { - "name": "VolumeSnapshotNamespace", - "type": "string", - "description": "Namespace of the VolumeSnapshot object to which this VolumeSnapshotContent object is bound.", - "jsonPath": ".spec.volumeSnapshotRef.namespace" - }, - { - "name": "Age", - "type": "date", - "jsonPath": ".metadata.creationTimestamp" - } - ], - "short": "VolumeSnapshotContent", - "apiGroup": "snapshot.storage.k8s.io", - "apiKind": "VolumeSnapshotContent", - "apiVersion": "v1", - "readProperties": { - "spec": "spec", - "status": "status" - }, - "writeProperties": { - "spec": "spec" - }, - "group": "k8s", - "sub": "snapshot", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" - }, - "namespaced": false } ] } \ No newline at end of file diff --git a/data/k8up.json b/data/k8up.json index 351593a..7d62b3e 100644 --- a/data/k8up.json +++ b/data/k8up.json @@ -709,82 +709,7 @@ }, "crd": { "metadata": { - "name": "archives.k8up.io", - "uid": "2111f6a3-15fc-4a80-b440-e60ef120d4ec", - "resourceVersion": "127259319", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:07Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "archives.k8up.io" }, "spec": { "group": "k8up.io", @@ -1541,27 +1466,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "archives", "singular": "archive", @@ -2248,82 +2156,7 @@ }, "crd": { "metadata": { - "name": "backups.k8up.io", - "uid": "1dbfdb80-962e-4d0b-ac0b-d608366e7730", - "resourceVersion": "127259333", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "backups.k8up.io" }, "spec": { "group": "k8up.io", @@ -3011,27 +2844,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "backups", "singular": "backup", @@ -3713,82 +3529,7 @@ }, "crd": { "metadata": { - "name": "checks.k8up.io", - "uid": "f37e9a51-ce2e-4971-836a-f684190f29ab", - "resourceVersion": "127259343", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "checks.k8up.io" }, "spec": { "group": "k8up.io", @@ -4459,27 +4200,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "checks", "singular": "check", @@ -10048,82 +9772,7 @@ }, "crd": { "metadata": { - "name": "prebackuppods.k8up.io", - "uid": "709aa490-f874-49ce-b6ce-0ebb690f3de6", - "resourceVersion": "127259357", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:09Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "prebackuppods.k8up.io" }, "spec": { "group": "k8up.io", @@ -16015,27 +15664,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "prebackuppods", "singular": "prebackuppod", @@ -16730,82 +16362,7 @@ }, "crd": { "metadata": { - "name": "prunes.k8up.io", - "uid": "1a4673be-ed78-4815-8001-4c3f5dcede08", - "resourceVersion": "127259368", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:09Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:09Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:09Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "prunes.k8up.io" }, "spec": { "group": "k8up.io", @@ -17516,27 +17073,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:09Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:09Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "prunes", "singular": "prune", @@ -18298,82 +17838,7 @@ }, "crd": { "metadata": { - "name": "restores.k8up.io", - "uid": "f083827c-5f68-4a76-86ff-ef4565dfc4e1", - "resourceVersion": "127259380", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "restores.k8up.io" }, "spec": { "group": "k8up.io", @@ -19130,27 +18595,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "restores", "singular": "restore", @@ -22713,82 +22161,7 @@ }, "crd": { "metadata": { - "name": "schedules.k8up.io", - "uid": "c68e113f-cba0-48cb-9c46-417b10f527e2", - "resourceVersion": "127259398", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "schedules.k8up.io" }, "spec": { "group": "k8up.io", @@ -26407,27 +25780,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "schedules", "singular": "schedule", @@ -26514,82 +25870,7 @@ }, "crd": { "metadata": { - "name": "snapshots.k8up.io", - "uid": "6ccc48d1-294f-4fb0-9008-0a1744549a38", - "resourceVersion": "127259405", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.10.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "snapshots.k8up.io" }, "spec": { "group": "k8up.io", @@ -26675,27 +25956,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "snapshots", "singular": "snapshot", diff --git a/data/kubevirt.json b/data/kubevirt.json new file mode 100644 index 0000000..22939d2 --- /dev/null +++ b/data/kubevirt.json @@ -0,0 +1,76029 @@ +{ + "name": "kubevirt", + "objects": [ + { + "alternatives": [], + "name": "io.kubevirt.v1.KubeVirt", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "properties": { + "certificateRotateStrategy": { + "type": "object", + "properties": { + "selfSigned": { + "type": "object", + "properties": { + "ca": { + "description": "CA configuration CA certs are kept in the CA bundle as long as they are valid", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + }, + "caOverlapInterval": { + "description": "Deprecated. Use CA.Duration and CA.RenewBefore instead", + "type": "string" + }, + "caRotateInterval": { + "description": "Deprecated. Use CA.Duration instead", + "type": "string" + }, + "certRotateInterval": { + "description": "Deprecated. Use Server.Duration instead", + "type": "string" + }, + "server": { + "description": "Server configuration Certs are rotated and discarded", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + } + } + } + } + }, + "configuration": { + "description": "holds kubevirt configurations. same as the virt-configMap", + "type": "object", + "properties": { + "additionalGuestMemoryOverheadRatio": { + "description": "AdditionalGuestMemoryOverheadRatio can be used to increase the virtualization infrastructure overhead. This is useful, since the calculation of this overhead is not accurate and cannot be entirely known in advance. The ratio that is being set determines by which factor to increase the overhead calculated by Kubevirt. A higher ratio means that the VMs would be less compromised by node pressures, but would mean that fewer VMs could be scheduled to a node. If not set, the default is 1.", + "type": "string" + }, + "apiConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "architectureConfiguration": { + "type": "object", + "properties": { + "amd64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "arm64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "ppc64le": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + } + } + }, + "autoCPULimitNamespaceLabelSelector": { + "description": "When set, AutoCPULimitNamespaceLabelSelector will set a CPU limit on virt-launcher for VMIs running inside namespaces that match the label selector. The CPU limit will equal the number of requested vCPUs. This setting does not apply to VMIs with dedicated CPUs.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "controllerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "cpuModel": { + "type": "string" + }, + "cpuRequest": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "defaultRuntimeClass": { + "type": "string" + }, + "developerConfiguration": { + "description": "DeveloperConfiguration holds developer options", + "type": "object", + "properties": { + "cpuAllocationRatio": { + "description": "For each requested virtual CPU, CPUAllocationRatio defines how much physical CPU to request per VMI from the hosting node. The value is in fraction of a CPU thread (or core on non-hyperthreaded nodes). For example, a value of 1 means 1 physical CPU thread per VMI CPU thread. A value of 100 would be 1% of a physical thread allocated for each requested VMI thread. This option has no effect on VMIs that request dedicated CPUs. More information at: https://kubevirt.io/user-guide/operations/node_overcommit/#node-cpu-allocation-ratio Defaults to 10", + "type": "integer" + }, + "diskVerification": { + "description": "DiskVerification holds container disks verification limits", + "type": "object", + "required": [ + "memoryLimit" + ], + "properties": { + "memoryLimit": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "featureGates": { + "description": "FeatureGates is the list of experimental features to enable. Defaults to none", + "type": "array", + "items": { + "type": "string" + } + }, + "logVerbosity": { + "description": "LogVerbosity sets log verbosity level of various components", + "type": "object", + "properties": { + "nodeVerbosity": { + "description": "NodeVerbosity represents a map of nodes with a specific verbosity level", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "virtAPI": { + "type": "integer" + }, + "virtController": { + "type": "integer" + }, + "virtHandler": { + "type": "integer" + }, + "virtLauncher": { + "type": "integer" + }, + "virtOperator": { + "type": "integer" + } + } + }, + "memoryOvercommit": { + "description": "MemoryOvercommit is the percentage of memory we want to give VMIs compared to the amount given to its parent pod (virt-launcher). For example, a value of 102 means the VMI will \"see\" 2% more memory than its parent pod. Values under 100 are effectively \"undercommits\". Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 100", + "type": "integer" + }, + "minimumClusterTSCFrequency": { + "description": "Allow overriding the automatically determined minimum TSC frequency of the cluster and fixate the minimum to this frequency.", + "type": "integer", + "format": "int64" + }, + "minimumReservePVCBytes": { + "description": "MinimumReservePVCBytes is the amount of space, in bytes, to leave unused on disks. Defaults to 131072 (128KiB)", + "type": "integer", + "format": "int64" + }, + "nodeSelectors": { + "description": "NodeSelectors allows restricting VMI creation to nodes that match a set of labels. Defaults to none", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "pvcTolerateLessSpaceUpToPercent": { + "description": "LessPVCSpaceToleration determines how much smaller, in percentage, disk PVCs are allowed to be compared to the requested size (to account for various overheads). Defaults to 10", + "type": "integer" + }, + "useEmulation": { + "description": "UseEmulation can be set to true to allow fallback to software emulation in case hardware-assisted emulation is not available. Defaults to false", + "type": "boolean" + } + } + }, + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + } + }, + "evictionStrategy": { + "description": "EvictionStrategy defines at the cluster level if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain. If the VirtualMachineInstance specific field is set it overrides the cluster level one.", + "type": "string" + }, + "handlerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "ksmConfiguration": { + "description": "KSMConfiguration holds the information regarding the enabling the KSM in the nodes (if available).", + "type": "object", + "properties": { + "nodeLabelSelector": { + "description": "NodeLabelSelector is a selector that filters in which nodes the KSM will be enabled. Empty NodeLabelSelector will enable ksm for every node.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + }, + "liveUpdateConfiguration": { + "description": "LiveUpdateConfiguration holds defaults for live update features", + "type": "object", + "properties": { + "maxCpuSockets": { + "description": "MaxCpuSockets holds the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + } + } + }, + "machineType": { + "description": "Deprecated. Use architectureConfiguration instead.", + "type": "string" + }, + "mediatedDevicesConfiguration": { + "description": "MediatedDevicesConfiguration holds information about MDEV types to be defined, if available", + "type": "object", + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeMediatedDeviceTypes": { + "type": "array", + "items": { + "description": "NodeMediatedDeviceTypesConfig holds information about MDEV types to be defined in a specific node that matches the NodeSelector field.", + "type": "object", + "required": [ + "nodeSelector" + ], + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "memBalloonStatsPeriod": { + "type": "integer", + "format": "int32" + }, + "migrations": { + "description": "MigrationConfiguration holds migration options. Can be overridden for specific groups of VMs though migration policies. Visit https://kubevirt.io/user-guide/operations/migration_policies/ for more information.", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "minCPUModel": { + "type": "string" + }, + "network": { + "description": "NetworkConfiguration holds network options", + "type": "object", + "properties": { + "defaultNetworkInterface": { + "type": "string" + }, + "permitBridgeInterfaceOnPodNetwork": { + "type": "boolean" + }, + "permitSlirpInterface": { + "type": "boolean" + } + } + }, + "obsoleteCPUModels": { + "type": "object", + "additionalProperties": { + "type": "boolean" + } + }, + "ovmfPath": { + "type": "string" + }, + "permittedHostDevices": { + "description": "PermittedHostDevices holds information about devices allowed for passthrough", + "type": "object", + "properties": { + "mediatedDevices": { + "type": "array", + "items": { + "description": "MediatedHostDevice represents a host mediated device allowed for passthrough", + "type": "object", + "required": [ + "mdevNameSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "type": "boolean" + }, + "mdevNameSelector": { + "type": "string" + }, + "resourceName": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pciHostDevices": { + "type": "array", + "items": { + "description": "PciHostDevice represents a host PCI device allowed for passthrough", + "type": "object", + "required": [ + "pciVendorSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "description": "If true, KubeVirt will leave the allocation and monitoring to an external device plugin", + "type": "boolean" + }, + "pciVendorSelector": { + "description": "The vendor_id:product_id tuple of the PCI device", + "type": "string" + }, + "resourceName": { + "description": "The name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_nameThe name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_name", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "seccompConfiguration": { + "description": "SeccompConfiguration holds Seccomp configuration for Kubevirt components", + "type": "object", + "properties": { + "virtualMachineInstanceProfile": { + "description": "VirtualMachineInstanceProfile defines what profile should be used with virt-launcher. Defaults to none", + "type": "object", + "properties": { + "customProfile": { + "description": "CustomProfile allows to request arbitrary profile for virt-launcher", + "type": "object", + "properties": { + "localhostProfile": { + "type": "string" + }, + "runtimeDefaultProfile": { + "type": "boolean" + } + } + } + } + } + } + }, + "selinuxLauncherType": { + "type": "string" + }, + "smbios": { + "type": "object", + "properties": { + "family": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "product": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "supportContainerResources": { + "description": "SupportContainerResources specifies the resource requirements for various types of supporting containers such as container disks/virtiofs/sidecars and hotplug attachment pods. If omitted a sensible default will be supplied.", + "type": "array", + "items": { + "description": "SupportContainerResources are used to specify the cpu/memory request and limits for the containers that support various features of Virtual Machines. These containers are usually idle and don't require a lot of memory or cpu.", + "type": "object", + "required": [ + "resources", + "type" + ], + "properties": { + "resources": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "supportedGuestAgentVersions": { + "description": "deprecated", + "type": "array", + "items": { + "type": "string" + } + }, + "tlsConfiguration": { + "description": "TLSConfiguration holds TLS options", + "type": "object", + "properties": { + "ciphers": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "minTLSVersion": { + "description": "MinTLSVersion is a way to specify the minimum protocol version that is acceptable for TLS connections. Protocol versions are based on the following most common TLS configurations: \n https://ssl-config.mozilla.org/ \n Note that SSLv3.0 is not a supported protocol version due to well known vulnerabilities such as POODLE: https://en.wikipedia.org/wiki/POODLE", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + } + }, + "virtualMachineInstancesPerNode": { + "type": "integer" + }, + "virtualMachineOptions": { + "description": "VirtualMachineOptions holds the cluster level information regarding the virtual machine.", + "type": "object", + "properties": { + "disableFreePageReporting": { + "description": "DisableFreePageReporting disable the free page reporting of memory balloon device https://libvirt.org/formatdomain.html#memory-balloon-device. This will have effect only if AutoattachMemBalloon is not false and the vmi is not requesting any high performance feature (dedicatedCPU/realtime/hugePages), in which free page reporting is always disabled.", + "type": "object" + } + } + }, + "vmStateStorageClass": { + "description": "VMStateStorageClass is the name of the storage class to use for the PVCs created to preserve VM state, like TPM. The storage class must support RWX in filesystem mode.", + "type": "string" + }, + "webhookConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + } + } + }, + "customizeComponents": { + "type": "object", + "properties": { + "flags": { + "description": "Configure the value used for deployment and daemonset resources", + "type": "object", + "properties": { + "api": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "controller": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "handler": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "patches": { + "type": "array", + "items": { + "type": "object", + "required": [ + "patch", + "resourceName", + "resourceType", + "type" + ], + "properties": { + "patch": { + "type": "string" + }, + "resourceName": { + "type": "string", + "minLength": 1 + }, + "resourceType": { + "type": "string", + "minLength": 1 + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "imagePullPolicy": { + "description": "The ImagePullPolicy to use.", + "type": "string" + }, + "imagePullSecrets": { + "description": "The imagePullSecrets to pull the container images from Defaults to none", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "imageRegistry": { + "description": "The image registry to pull the container images from Defaults to the same registry the operator's container image is pulled from.", + "type": "string" + }, + "imageTag": { + "description": "The image tag to use for the continer images installed. Defaults to the same tag as the operator's container image.", + "type": "string" + }, + "infra": { + "description": "selectors and tolerations that should apply to KubeVirt infrastructure components", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + }, + "monitorAccount": { + "description": "The name of the Prometheus service account that needs read-access to KubeVirt endpoints Defaults to prometheus-k8s", + "type": "string" + }, + "monitorNamespace": { + "description": "The namespace Prometheus is deployed in Defaults to openshift-monitor", + "type": "string" + }, + "productComponent": { + "description": "Designate the apps.kubevirt.io/component label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductComponent is not specified, the component label default value is kubevirt.", + "type": "string" + }, + "productName": { + "description": "Designate the apps.kubevirt.io/part-of label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductName is not specified, the part-of label will be omitted.", + "type": "string" + }, + "productVersion": { + "description": "Designate the apps.kubevirt.io/version label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductVersion is not specified, KubeVirt's version will be used.", + "type": "string" + }, + "serviceMonitorNamespace": { + "description": "The namespace the service monitor will be deployed When ServiceMonitorNamespace is set, then we'll install the service monitor object in that namespace otherwise we will use the monitoring namespace.", + "type": "string" + }, + "uninstallStrategy": { + "description": "Specifies if kubevirt can be deleted if workloads are still present. This is mainly a precaution to avoid accidental data loss", + "type": "string" + }, + "workloadUpdateStrategy": { + "description": "WorkloadUpdateStrategy defines at the cluster level how to handle automated workload updates", + "type": "object", + "properties": { + "batchEvictionInterval": { + "description": "BatchEvictionInterval Represents the interval to wait before issuing the next batch of shutdowns \n Defaults to 1 minute", + "type": "string" + }, + "batchEvictionSize": { + "description": "BatchEvictionSize Represents the number of VMIs that can be forced updated per the BatchShutdownInteral interval \n Defaults to 10", + "type": "integer" + }, + "workloadUpdateMethods": { + "description": "WorkloadUpdateMethods defines the methods that can be used to disrupt workloads during automated workload updates. When multiple methods are present, the least disruptive method takes precedence over more disruptive methods. For example if both LiveMigrate and Shutdown methods are listed, only VMs which are not live migratable will be restarted/shutdown \n An empty list defaults to no automated workload updating", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "workloads": { + "description": "selectors and tolerations that should apply to KubeVirt workloads", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + } + } + }, + "status": { + "description": "KubeVirtStatus represents information pertaining to a KubeVirt deployment.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "KubeVirtCondition represents a condition of a KubeVirt deployment", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "generations": { + "type": "array", + "items": { + "description": "GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.", + "type": "object", + "required": [ + "group", + "lastGeneration", + "name", + "resource" + ], + "properties": { + "group": { + "description": "group is the group of the thing you're tracking", + "type": "string" + }, + "hash": { + "description": "hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps", + "type": "string" + }, + "lastGeneration": { + "description": "lastGeneration is the last generation of the workload controller involved", + "type": "integer", + "format": "int64" + }, + "name": { + "description": "name is the name of the thing you're tracking", + "type": "string" + }, + "namespace": { + "description": "namespace is where the thing you're tracking is", + "type": "string" + }, + "resource": { + "description": "resource is the resource type of the thing you're tracking", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "observedDeploymentConfig": { + "type": "string" + }, + "observedDeploymentID": { + "type": "string" + }, + "observedGeneration": { + "type": "integer", + "format": "int64" + }, + "observedKubeVirtRegistry": { + "type": "string" + }, + "observedKubeVirtVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "outdatedVirtualMachineInstanceWorkloads": { + "type": "integer" + }, + "phase": { + "description": "KubeVirtPhase is a label for the phase of a KubeVirt deployment at the current time.", + "type": "string" + }, + "targetDeploymentConfig": { + "type": "string" + }, + "targetDeploymentID": { + "type": "string" + }, + "targetKubeVirtRegistry": { + "type": "string" + }, + "targetKubeVirtVersion": { + "type": "string" + } + } + } + }, + "description": "KubeVirt represents the object deploying all KubeVirt resources", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "KubeVirt", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "kubevirts.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "kubevirts", + "singular": "kubevirt", + "shortNames": [ + "kv", + "kvs" + ], + "kind": "KubeVirt", + "listKind": "KubeVirtList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "KubeVirt represents the object deploying all KubeVirt resources", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "properties": { + "certificateRotateStrategy": { + "type": "object", + "properties": { + "selfSigned": { + "type": "object", + "properties": { + "ca": { + "description": "CA configuration CA certs are kept in the CA bundle as long as they are valid", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + }, + "caOverlapInterval": { + "description": "Deprecated. Use CA.Duration and CA.RenewBefore instead", + "type": "string" + }, + "caRotateInterval": { + "description": "Deprecated. Use CA.Duration instead", + "type": "string" + }, + "certRotateInterval": { + "description": "Deprecated. Use Server.Duration instead", + "type": "string" + }, + "server": { + "description": "Server configuration Certs are rotated and discarded", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + } + } + } + } + }, + "configuration": { + "description": "holds kubevirt configurations. same as the virt-configMap", + "type": "object", + "properties": { + "additionalGuestMemoryOverheadRatio": { + "description": "AdditionalGuestMemoryOverheadRatio can be used to increase the virtualization infrastructure overhead. This is useful, since the calculation of this overhead is not accurate and cannot be entirely known in advance. The ratio that is being set determines by which factor to increase the overhead calculated by Kubevirt. A higher ratio means that the VMs would be less compromised by node pressures, but would mean that fewer VMs could be scheduled to a node. If not set, the default is 1.", + "type": "string" + }, + "apiConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "architectureConfiguration": { + "type": "object", + "properties": { + "amd64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "arm64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "ppc64le": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + } + } + }, + "autoCPULimitNamespaceLabelSelector": { + "description": "When set, AutoCPULimitNamespaceLabelSelector will set a CPU limit on virt-launcher for VMIs running inside namespaces that match the label selector. The CPU limit will equal the number of requested vCPUs. This setting does not apply to VMIs with dedicated CPUs.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "controllerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "cpuModel": { + "type": "string" + }, + "cpuRequest": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "defaultRuntimeClass": { + "type": "string" + }, + "developerConfiguration": { + "description": "DeveloperConfiguration holds developer options", + "type": "object", + "properties": { + "cpuAllocationRatio": { + "description": "For each requested virtual CPU, CPUAllocationRatio defines how much physical CPU to request per VMI from the hosting node. The value is in fraction of a CPU thread (or core on non-hyperthreaded nodes). For example, a value of 1 means 1 physical CPU thread per VMI CPU thread. A value of 100 would be 1% of a physical thread allocated for each requested VMI thread. This option has no effect on VMIs that request dedicated CPUs. More information at: https://kubevirt.io/user-guide/operations/node_overcommit/#node-cpu-allocation-ratio Defaults to 10", + "type": "integer" + }, + "diskVerification": { + "description": "DiskVerification holds container disks verification limits", + "type": "object", + "required": [ + "memoryLimit" + ], + "properties": { + "memoryLimit": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "featureGates": { + "description": "FeatureGates is the list of experimental features to enable. Defaults to none", + "type": "array", + "items": { + "type": "string" + } + }, + "logVerbosity": { + "description": "LogVerbosity sets log verbosity level of various components", + "type": "object", + "properties": { + "nodeVerbosity": { + "description": "NodeVerbosity represents a map of nodes with a specific verbosity level", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "virtAPI": { + "type": "integer" + }, + "virtController": { + "type": "integer" + }, + "virtHandler": { + "type": "integer" + }, + "virtLauncher": { + "type": "integer" + }, + "virtOperator": { + "type": "integer" + } + } + }, + "memoryOvercommit": { + "description": "MemoryOvercommit is the percentage of memory we want to give VMIs compared to the amount given to its parent pod (virt-launcher). For example, a value of 102 means the VMI will \"see\" 2% more memory than its parent pod. Values under 100 are effectively \"undercommits\". Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 100", + "type": "integer" + }, + "minimumClusterTSCFrequency": { + "description": "Allow overriding the automatically determined minimum TSC frequency of the cluster and fixate the minimum to this frequency.", + "type": "integer", + "format": "int64" + }, + "minimumReservePVCBytes": { + "description": "MinimumReservePVCBytes is the amount of space, in bytes, to leave unused on disks. Defaults to 131072 (128KiB)", + "type": "integer", + "format": "int64" + }, + "nodeSelectors": { + "description": "NodeSelectors allows restricting VMI creation to nodes that match a set of labels. Defaults to none", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "pvcTolerateLessSpaceUpToPercent": { + "description": "LessPVCSpaceToleration determines how much smaller, in percentage, disk PVCs are allowed to be compared to the requested size (to account for various overheads). Defaults to 10", + "type": "integer" + }, + "useEmulation": { + "description": "UseEmulation can be set to true to allow fallback to software emulation in case hardware-assisted emulation is not available. Defaults to false", + "type": "boolean" + } + } + }, + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + } + }, + "evictionStrategy": { + "description": "EvictionStrategy defines at the cluster level if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain. If the VirtualMachineInstance specific field is set it overrides the cluster level one.", + "type": "string" + }, + "handlerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "ksmConfiguration": { + "description": "KSMConfiguration holds the information regarding the enabling the KSM in the nodes (if available).", + "type": "object", + "properties": { + "nodeLabelSelector": { + "description": "NodeLabelSelector is a selector that filters in which nodes the KSM will be enabled. Empty NodeLabelSelector will enable ksm for every node.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + }, + "liveUpdateConfiguration": { + "description": "LiveUpdateConfiguration holds defaults for live update features", + "type": "object", + "properties": { + "maxCpuSockets": { + "description": "MaxCpuSockets holds the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + } + } + }, + "machineType": { + "description": "Deprecated. Use architectureConfiguration instead.", + "type": "string" + }, + "mediatedDevicesConfiguration": { + "description": "MediatedDevicesConfiguration holds information about MDEV types to be defined, if available", + "type": "object", + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeMediatedDeviceTypes": { + "type": "array", + "items": { + "description": "NodeMediatedDeviceTypesConfig holds information about MDEV types to be defined in a specific node that matches the NodeSelector field.", + "type": "object", + "required": [ + "nodeSelector" + ], + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "memBalloonStatsPeriod": { + "type": "integer", + "format": "int32" + }, + "migrations": { + "description": "MigrationConfiguration holds migration options. Can be overridden for specific groups of VMs though migration policies. Visit https://kubevirt.io/user-guide/operations/migration_policies/ for more information.", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "minCPUModel": { + "type": "string" + }, + "network": { + "description": "NetworkConfiguration holds network options", + "type": "object", + "properties": { + "defaultNetworkInterface": { + "type": "string" + }, + "permitBridgeInterfaceOnPodNetwork": { + "type": "boolean" + }, + "permitSlirpInterface": { + "type": "boolean" + } + } + }, + "obsoleteCPUModels": { + "type": "object", + "additionalProperties": { + "type": "boolean" + } + }, + "ovmfPath": { + "type": "string" + }, + "permittedHostDevices": { + "description": "PermittedHostDevices holds information about devices allowed for passthrough", + "type": "object", + "properties": { + "mediatedDevices": { + "type": "array", + "items": { + "description": "MediatedHostDevice represents a host mediated device allowed for passthrough", + "type": "object", + "required": [ + "mdevNameSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "type": "boolean" + }, + "mdevNameSelector": { + "type": "string" + }, + "resourceName": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pciHostDevices": { + "type": "array", + "items": { + "description": "PciHostDevice represents a host PCI device allowed for passthrough", + "type": "object", + "required": [ + "pciVendorSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "description": "If true, KubeVirt will leave the allocation and monitoring to an external device plugin", + "type": "boolean" + }, + "pciVendorSelector": { + "description": "The vendor_id:product_id tuple of the PCI device", + "type": "string" + }, + "resourceName": { + "description": "The name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_nameThe name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_name", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "seccompConfiguration": { + "description": "SeccompConfiguration holds Seccomp configuration for Kubevirt components", + "type": "object", + "properties": { + "virtualMachineInstanceProfile": { + "description": "VirtualMachineInstanceProfile defines what profile should be used with virt-launcher. Defaults to none", + "type": "object", + "properties": { + "customProfile": { + "description": "CustomProfile allows to request arbitrary profile for virt-launcher", + "type": "object", + "properties": { + "localhostProfile": { + "type": "string" + }, + "runtimeDefaultProfile": { + "type": "boolean" + } + } + } + } + } + } + }, + "selinuxLauncherType": { + "type": "string" + }, + "smbios": { + "type": "object", + "properties": { + "family": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "product": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "supportContainerResources": { + "description": "SupportContainerResources specifies the resource requirements for various types of supporting containers such as container disks/virtiofs/sidecars and hotplug attachment pods. If omitted a sensible default will be supplied.", + "type": "array", + "items": { + "description": "SupportContainerResources are used to specify the cpu/memory request and limits for the containers that support various features of Virtual Machines. These containers are usually idle and don't require a lot of memory or cpu.", + "type": "object", + "required": [ + "resources", + "type" + ], + "properties": { + "resources": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "supportedGuestAgentVersions": { + "description": "deprecated", + "type": "array", + "items": { + "type": "string" + } + }, + "tlsConfiguration": { + "description": "TLSConfiguration holds TLS options", + "type": "object", + "properties": { + "ciphers": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "minTLSVersion": { + "description": "MinTLSVersion is a way to specify the minimum protocol version that is acceptable for TLS connections. Protocol versions are based on the following most common TLS configurations: \n https://ssl-config.mozilla.org/ \n Note that SSLv3.0 is not a supported protocol version due to well known vulnerabilities such as POODLE: https://en.wikipedia.org/wiki/POODLE", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + } + }, + "virtualMachineInstancesPerNode": { + "type": "integer" + }, + "virtualMachineOptions": { + "description": "VirtualMachineOptions holds the cluster level information regarding the virtual machine.", + "type": "object", + "properties": { + "disableFreePageReporting": { + "description": "DisableFreePageReporting disable the free page reporting of memory balloon device https://libvirt.org/formatdomain.html#memory-balloon-device. This will have effect only if AutoattachMemBalloon is not false and the vmi is not requesting any high performance feature (dedicatedCPU/realtime/hugePages), in which free page reporting is always disabled.", + "type": "object" + } + } + }, + "vmStateStorageClass": { + "description": "VMStateStorageClass is the name of the storage class to use for the PVCs created to preserve VM state, like TPM. The storage class must support RWX in filesystem mode.", + "type": "string" + }, + "webhookConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + } + } + }, + "customizeComponents": { + "type": "object", + "properties": { + "flags": { + "description": "Configure the value used for deployment and daemonset resources", + "type": "object", + "properties": { + "api": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "controller": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "handler": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "patches": { + "type": "array", + "items": { + "type": "object", + "required": [ + "patch", + "resourceName", + "resourceType", + "type" + ], + "properties": { + "patch": { + "type": "string" + }, + "resourceName": { + "type": "string", + "minLength": 1 + }, + "resourceType": { + "type": "string", + "minLength": 1 + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "imagePullPolicy": { + "description": "The ImagePullPolicy to use.", + "type": "string" + }, + "imagePullSecrets": { + "description": "The imagePullSecrets to pull the container images from Defaults to none", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "imageRegistry": { + "description": "The image registry to pull the container images from Defaults to the same registry the operator's container image is pulled from.", + "type": "string" + }, + "imageTag": { + "description": "The image tag to use for the continer images installed. Defaults to the same tag as the operator's container image.", + "type": "string" + }, + "infra": { + "description": "selectors and tolerations that should apply to KubeVirt infrastructure components", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + }, + "monitorAccount": { + "description": "The name of the Prometheus service account that needs read-access to KubeVirt endpoints Defaults to prometheus-k8s", + "type": "string" + }, + "monitorNamespace": { + "description": "The namespace Prometheus is deployed in Defaults to openshift-monitor", + "type": "string" + }, + "productComponent": { + "description": "Designate the apps.kubevirt.io/component label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductComponent is not specified, the component label default value is kubevirt.", + "type": "string" + }, + "productName": { + "description": "Designate the apps.kubevirt.io/part-of label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductName is not specified, the part-of label will be omitted.", + "type": "string" + }, + "productVersion": { + "description": "Designate the apps.kubevirt.io/version label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductVersion is not specified, KubeVirt's version will be used.", + "type": "string" + }, + "serviceMonitorNamespace": { + "description": "The namespace the service monitor will be deployed When ServiceMonitorNamespace is set, then we'll install the service monitor object in that namespace otherwise we will use the monitoring namespace.", + "type": "string" + }, + "uninstallStrategy": { + "description": "Specifies if kubevirt can be deleted if workloads are still present. This is mainly a precaution to avoid accidental data loss", + "type": "string" + }, + "workloadUpdateStrategy": { + "description": "WorkloadUpdateStrategy defines at the cluster level how to handle automated workload updates", + "type": "object", + "properties": { + "batchEvictionInterval": { + "description": "BatchEvictionInterval Represents the interval to wait before issuing the next batch of shutdowns \n Defaults to 1 minute", + "type": "string" + }, + "batchEvictionSize": { + "description": "BatchEvictionSize Represents the number of VMIs that can be forced updated per the BatchShutdownInteral interval \n Defaults to 10", + "type": "integer" + }, + "workloadUpdateMethods": { + "description": "WorkloadUpdateMethods defines the methods that can be used to disrupt workloads during automated workload updates. When multiple methods are present, the least disruptive method takes precedence over more disruptive methods. For example if both LiveMigrate and Shutdown methods are listed, only VMs which are not live migratable will be restarted/shutdown \n An empty list defaults to no automated workload updating", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "workloads": { + "description": "selectors and tolerations that should apply to KubeVirt workloads", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + } + } + }, + "status": { + "description": "KubeVirtStatus represents information pertaining to a KubeVirt deployment.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "KubeVirtCondition represents a condition of a KubeVirt deployment", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "generations": { + "type": "array", + "items": { + "description": "GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.", + "type": "object", + "required": [ + "group", + "lastGeneration", + "name", + "resource" + ], + "properties": { + "group": { + "description": "group is the group of the thing you're tracking", + "type": "string" + }, + "hash": { + "description": "hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps", + "type": "string" + }, + "lastGeneration": { + "description": "lastGeneration is the last generation of the workload controller involved", + "type": "integer", + "format": "int64" + }, + "name": { + "description": "name is the name of the thing you're tracking", + "type": "string" + }, + "namespace": { + "description": "namespace is where the thing you're tracking is", + "type": "string" + }, + "resource": { + "description": "resource is the resource type of the thing you're tracking", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "observedDeploymentConfig": { + "type": "string" + }, + "observedDeploymentID": { + "type": "string" + }, + "observedGeneration": { + "type": "integer", + "format": "int64" + }, + "observedKubeVirtRegistry": { + "type": "string" + }, + "observedKubeVirtVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "outdatedVirtualMachineInstanceWorkloads": { + "type": "integer" + }, + "phase": { + "description": "KubeVirtPhase is a label for the phase of a KubeVirt deployment at the current time.", + "type": "string" + }, + "targetDeploymentConfig": { + "type": "string" + }, + "targetDeploymentID": { + "type": "string" + }, + "targetKubeVirtRegistry": { + "type": "string" + }, + "targetKubeVirtVersion": { + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ] + }, + { + "name": "v1alpha3", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 is now deprecated and will be removed in a future release.", + "schema": { + "openAPIV3Schema": { + "description": "KubeVirt represents the object deploying all KubeVirt resources", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "properties": { + "certificateRotateStrategy": { + "type": "object", + "properties": { + "selfSigned": { + "type": "object", + "properties": { + "ca": { + "description": "CA configuration CA certs are kept in the CA bundle as long as they are valid", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + }, + "caOverlapInterval": { + "description": "Deprecated. Use CA.Duration and CA.RenewBefore instead", + "type": "string" + }, + "caRotateInterval": { + "description": "Deprecated. Use CA.Duration instead", + "type": "string" + }, + "certRotateInterval": { + "description": "Deprecated. Use Server.Duration instead", + "type": "string" + }, + "server": { + "description": "Server configuration Certs are rotated and discarded", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's \"notAfter\" time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + } + } + } + } + }, + "configuration": { + "description": "holds kubevirt configurations. same as the virt-configMap", + "type": "object", + "properties": { + "additionalGuestMemoryOverheadRatio": { + "description": "AdditionalGuestMemoryOverheadRatio can be used to increase the virtualization infrastructure overhead. This is useful, since the calculation of this overhead is not accurate and cannot be entirely known in advance. The ratio that is being set determines by which factor to increase the overhead calculated by Kubevirt. A higher ratio means that the VMs would be less compromised by node pressures, but would mean that fewer VMs could be scheduled to a node. If not set, the default is 1.", + "type": "string" + }, + "apiConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "architectureConfiguration": { + "type": "object", + "properties": { + "amd64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "arm64": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "ppc64le": { + "type": "object", + "properties": { + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "machineType": { + "type": "string" + }, + "ovmfPath": { + "type": "string" + } + } + } + } + }, + "autoCPULimitNamespaceLabelSelector": { + "description": "When set, AutoCPULimitNamespaceLabelSelector will set a CPU limit on virt-launcher for VMIs running inside namespaces that match the label selector. The CPU limit will equal the number of requested vCPUs. This setting does not apply to VMIs with dedicated CPUs.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "controllerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "cpuModel": { + "type": "string" + }, + "cpuRequest": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "defaultRuntimeClass": { + "type": "string" + }, + "developerConfiguration": { + "description": "DeveloperConfiguration holds developer options", + "type": "object", + "properties": { + "cpuAllocationRatio": { + "description": "For each requested virtual CPU, CPUAllocationRatio defines how much physical CPU to request per VMI from the hosting node. The value is in fraction of a CPU thread (or core on non-hyperthreaded nodes). For example, a value of 1 means 1 physical CPU thread per VMI CPU thread. A value of 100 would be 1% of a physical thread allocated for each requested VMI thread. This option has no effect on VMIs that request dedicated CPUs. More information at: https://kubevirt.io/user-guide/operations/node_overcommit/#node-cpu-allocation-ratio Defaults to 10", + "type": "integer" + }, + "diskVerification": { + "description": "DiskVerification holds container disks verification limits", + "type": "object", + "required": [ + "memoryLimit" + ], + "properties": { + "memoryLimit": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "featureGates": { + "description": "FeatureGates is the list of experimental features to enable. Defaults to none", + "type": "array", + "items": { + "type": "string" + } + }, + "logVerbosity": { + "description": "LogVerbosity sets log verbosity level of various components", + "type": "object", + "properties": { + "nodeVerbosity": { + "description": "NodeVerbosity represents a map of nodes with a specific verbosity level", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "virtAPI": { + "type": "integer" + }, + "virtController": { + "type": "integer" + }, + "virtHandler": { + "type": "integer" + }, + "virtLauncher": { + "type": "integer" + }, + "virtOperator": { + "type": "integer" + } + } + }, + "memoryOvercommit": { + "description": "MemoryOvercommit is the percentage of memory we want to give VMIs compared to the amount given to its parent pod (virt-launcher). For example, a value of 102 means the VMI will \"see\" 2% more memory than its parent pod. Values under 100 are effectively \"undercommits\". Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 100", + "type": "integer" + }, + "minimumClusterTSCFrequency": { + "description": "Allow overriding the automatically determined minimum TSC frequency of the cluster and fixate the minimum to this frequency.", + "type": "integer", + "format": "int64" + }, + "minimumReservePVCBytes": { + "description": "MinimumReservePVCBytes is the amount of space, in bytes, to leave unused on disks. Defaults to 131072 (128KiB)", + "type": "integer", + "format": "int64" + }, + "nodeSelectors": { + "description": "NodeSelectors allows restricting VMI creation to nodes that match a set of labels. Defaults to none", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "pvcTolerateLessSpaceUpToPercent": { + "description": "LessPVCSpaceToleration determines how much smaller, in percentage, disk PVCs are allowed to be compared to the requested size (to account for various overheads). Defaults to 10", + "type": "integer" + }, + "useEmulation": { + "description": "UseEmulation can be set to true to allow fallback to software emulation in case hardware-assisted emulation is not available. Defaults to false", + "type": "boolean" + } + } + }, + "emulatedMachines": { + "type": "array", + "items": { + "type": "string" + } + }, + "evictionStrategy": { + "description": "EvictionStrategy defines at the cluster level if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain. If the VirtualMachineInstance specific field is set it overrides the cluster level one.", + "type": "string" + }, + "handlerConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + }, + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "ksmConfiguration": { + "description": "KSMConfiguration holds the information regarding the enabling the KSM in the nodes (if available).", + "type": "object", + "properties": { + "nodeLabelSelector": { + "description": "NodeLabelSelector is a selector that filters in which nodes the KSM will be enabled. Empty NodeLabelSelector will enable ksm for every node.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + }, + "liveUpdateConfiguration": { + "description": "LiveUpdateConfiguration holds defaults for live update features", + "type": "object", + "properties": { + "maxCpuSockets": { + "description": "MaxCpuSockets holds the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + } + } + }, + "machineType": { + "description": "Deprecated. Use architectureConfiguration instead.", + "type": "string" + }, + "mediatedDevicesConfiguration": { + "description": "MediatedDevicesConfiguration holds information about MDEV types to be defined, if available", + "type": "object", + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeMediatedDeviceTypes": { + "type": "array", + "items": { + "description": "NodeMediatedDeviceTypesConfig holds information about MDEV types to be defined in a specific node that matches the NodeSelector field.", + "type": "object", + "required": [ + "nodeSelector" + ], + "properties": { + "mediatedDeviceTypes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "mediatedDevicesTypes": { + "description": "Deprecated. Use mediatedDeviceTypes instead.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "memBalloonStatsPeriod": { + "type": "integer", + "format": "int32" + }, + "migrations": { + "description": "MigrationConfiguration holds migration options. Can be overridden for specific groups of VMs though migration policies. Visit https://kubevirt.io/user-guide/operations/migration_policies/ for more information.", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "minCPUModel": { + "type": "string" + }, + "network": { + "description": "NetworkConfiguration holds network options", + "type": "object", + "properties": { + "defaultNetworkInterface": { + "type": "string" + }, + "permitBridgeInterfaceOnPodNetwork": { + "type": "boolean" + }, + "permitSlirpInterface": { + "type": "boolean" + } + } + }, + "obsoleteCPUModels": { + "type": "object", + "additionalProperties": { + "type": "boolean" + } + }, + "ovmfPath": { + "type": "string" + }, + "permittedHostDevices": { + "description": "PermittedHostDevices holds information about devices allowed for passthrough", + "type": "object", + "properties": { + "mediatedDevices": { + "type": "array", + "items": { + "description": "MediatedHostDevice represents a host mediated device allowed for passthrough", + "type": "object", + "required": [ + "mdevNameSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "type": "boolean" + }, + "mdevNameSelector": { + "type": "string" + }, + "resourceName": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pciHostDevices": { + "type": "array", + "items": { + "description": "PciHostDevice represents a host PCI device allowed for passthrough", + "type": "object", + "required": [ + "pciVendorSelector", + "resourceName" + ], + "properties": { + "externalResourceProvider": { + "description": "If true, KubeVirt will leave the allocation and monitoring to an external device plugin", + "type": "boolean" + }, + "pciVendorSelector": { + "description": "The vendor_id:product_id tuple of the PCI device", + "type": "string" + }, + "resourceName": { + "description": "The name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_nameThe name of the resource that is representing the device. Exposed by a device plugin and requested by VMs. Typically of the form vendor.com/product_name", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "seccompConfiguration": { + "description": "SeccompConfiguration holds Seccomp configuration for Kubevirt components", + "type": "object", + "properties": { + "virtualMachineInstanceProfile": { + "description": "VirtualMachineInstanceProfile defines what profile should be used with virt-launcher. Defaults to none", + "type": "object", + "properties": { + "customProfile": { + "description": "CustomProfile allows to request arbitrary profile for virt-launcher", + "type": "object", + "properties": { + "localhostProfile": { + "type": "string" + }, + "runtimeDefaultProfile": { + "type": "boolean" + } + } + } + } + } + } + }, + "selinuxLauncherType": { + "type": "string" + }, + "smbios": { + "type": "object", + "properties": { + "family": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "product": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "supportContainerResources": { + "description": "SupportContainerResources specifies the resource requirements for various types of supporting containers such as container disks/virtiofs/sidecars and hotplug attachment pods. If omitted a sensible default will be supplied.", + "type": "array", + "items": { + "description": "SupportContainerResources are used to specify the cpu/memory request and limits for the containers that support various features of Virtual Machines. These containers are usually idle and don't require a lot of memory or cpu.", + "type": "object", + "required": [ + "resources", + "type" + ], + "properties": { + "resources": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "supportedGuestAgentVersions": { + "description": "deprecated", + "type": "array", + "items": { + "type": "string" + } + }, + "tlsConfiguration": { + "description": "TLSConfiguration holds TLS options", + "type": "object", + "properties": { + "ciphers": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "minTLSVersion": { + "description": "MinTLSVersion is a way to specify the minimum protocol version that is acceptable for TLS connections. Protocol versions are based on the following most common TLS configurations: \n https://ssl-config.mozilla.org/ \n Note that SSLv3.0 is not a supported protocol version due to well known vulnerabilities such as POODLE: https://en.wikipedia.org/wiki/POODLE", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + } + }, + "virtualMachineInstancesPerNode": { + "type": "integer" + }, + "virtualMachineOptions": { + "description": "VirtualMachineOptions holds the cluster level information regarding the virtual machine.", + "type": "object", + "properties": { + "disableFreePageReporting": { + "description": "DisableFreePageReporting disable the free page reporting of memory balloon device https://libvirt.org/formatdomain.html#memory-balloon-device. This will have effect only if AutoattachMemBalloon is not false and the vmi is not requesting any high performance feature (dedicatedCPU/realtime/hugePages), in which free page reporting is always disabled.", + "type": "object" + } + } + }, + "vmStateStorageClass": { + "description": "VMStateStorageClass is the name of the storage class to use for the PVCs created to preserve VM state, like TPM. The storage class must support RWX in filesystem mode.", + "type": "string" + }, + "webhookConfiguration": { + "description": "ReloadableComponentConfiguration holds all generic k8s configuration options which can be reloaded by components without requiring a restart.", + "type": "object", + "properties": { + "restClient": { + "description": "RestClient can be used to tune certain aspects of the k8s client in use.", + "type": "object", + "properties": { + "rateLimiter": { + "description": "RateLimiter allows selecting and configuring different rate limiters for the k8s client.", + "type": "object", + "properties": { + "tokenBucketRateLimiter": { + "type": "object", + "required": [ + "burst", + "qps" + ], + "properties": { + "burst": { + "description": "Maximum burst for throttle. If it's zero, the component default will be used", + "type": "integer" + }, + "qps": { + "description": "QPS indicates the maximum QPS to the apiserver from this client. If it's zero, the component default will be used", + "type": "number" + } + } + } + } + } + } + } + } + } + } + }, + "customizeComponents": { + "type": "object", + "properties": { + "flags": { + "description": "Configure the value used for deployment and daemonset resources", + "type": "object", + "properties": { + "api": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "controller": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "handler": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "patches": { + "type": "array", + "items": { + "type": "object", + "required": [ + "patch", + "resourceName", + "resourceType", + "type" + ], + "properties": { + "patch": { + "type": "string" + }, + "resourceName": { + "type": "string", + "minLength": 1 + }, + "resourceType": { + "type": "string", + "minLength": 1 + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "imagePullPolicy": { + "description": "The ImagePullPolicy to use.", + "type": "string" + }, + "imagePullSecrets": { + "description": "The imagePullSecrets to pull the container images from Defaults to none", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "imageRegistry": { + "description": "The image registry to pull the container images from Defaults to the same registry the operator's container image is pulled from.", + "type": "string" + }, + "imageTag": { + "description": "The image tag to use for the continer images installed. Defaults to the same tag as the operator's container image.", + "type": "string" + }, + "infra": { + "description": "selectors and tolerations that should apply to KubeVirt infrastructure components", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + }, + "monitorAccount": { + "description": "The name of the Prometheus service account that needs read-access to KubeVirt endpoints Defaults to prometheus-k8s", + "type": "string" + }, + "monitorNamespace": { + "description": "The namespace Prometheus is deployed in Defaults to openshift-monitor", + "type": "string" + }, + "productComponent": { + "description": "Designate the apps.kubevirt.io/component label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductComponent is not specified, the component label default value is kubevirt.", + "type": "string" + }, + "productName": { + "description": "Designate the apps.kubevirt.io/part-of label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductName is not specified, the part-of label will be omitted.", + "type": "string" + }, + "productVersion": { + "description": "Designate the apps.kubevirt.io/version label for KubeVirt components. Useful if KubeVirt is included as part of a product. If ProductVersion is not specified, KubeVirt's version will be used.", + "type": "string" + }, + "serviceMonitorNamespace": { + "description": "The namespace the service monitor will be deployed When ServiceMonitorNamespace is set, then we'll install the service monitor object in that namespace otherwise we will use the monitoring namespace.", + "type": "string" + }, + "uninstallStrategy": { + "description": "Specifies if kubevirt can be deleted if workloads are still present. This is mainly a precaution to avoid accidental data loss", + "type": "string" + }, + "workloadUpdateStrategy": { + "description": "WorkloadUpdateStrategy defines at the cluster level how to handle automated workload updates", + "type": "object", + "properties": { + "batchEvictionInterval": { + "description": "BatchEvictionInterval Represents the interval to wait before issuing the next batch of shutdowns \n Defaults to 1 minute", + "type": "string" + }, + "batchEvictionSize": { + "description": "BatchEvictionSize Represents the number of VMIs that can be forced updated per the BatchShutdownInteral interval \n Defaults to 10", + "type": "integer" + }, + "workloadUpdateMethods": { + "description": "WorkloadUpdateMethods defines the methods that can be used to disrupt workloads during automated workload updates. When multiple methods are present, the least disruptive method takes precedence over more disruptive methods. For example if both LiveMigrate and Shutdown methods are listed, only VMs which are not live migratable will be restarted/shutdown \n An empty list defaults to no automated workload updating", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "workloads": { + "description": "selectors and tolerations that should apply to KubeVirt workloads", + "type": "object", + "properties": { + "nodePlacement": { + "description": "nodePlacement describes scheduling configuration for specific KubeVirt components", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "replicas": { + "description": "replicas indicates how many replicas should be created for each KubeVirt infrastructure component (like virt-api or virt-controller). Defaults to 2. WARNING: this is an advanced feature that prevents auto-scaling for core kubevirt components. Please use with caution!", + "type": "integer" + } + } + } + } + }, + "status": { + "description": "KubeVirtStatus represents information pertaining to a KubeVirt deployment.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "KubeVirtCondition represents a condition of a KubeVirt deployment", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "defaultArchitecture": { + "type": "string" + }, + "generations": { + "type": "array", + "items": { + "description": "GenerationStatus keeps track of the generation for a given resource so that decisions about forced updates can be made.", + "type": "object", + "required": [ + "group", + "lastGeneration", + "name", + "resource" + ], + "properties": { + "group": { + "description": "group is the group of the thing you're tracking", + "type": "string" + }, + "hash": { + "description": "hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps", + "type": "string" + }, + "lastGeneration": { + "description": "lastGeneration is the last generation of the workload controller involved", + "type": "integer", + "format": "int64" + }, + "name": { + "description": "name is the name of the thing you're tracking", + "type": "string" + }, + "namespace": { + "description": "namespace is where the thing you're tracking is", + "type": "string" + }, + "resource": { + "description": "resource is the resource type of the thing you're tracking", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "observedDeploymentConfig": { + "type": "string" + }, + "observedDeploymentID": { + "type": "string" + }, + "observedGeneration": { + "type": "integer", + "format": "int64" + }, + "observedKubeVirtRegistry": { + "type": "string" + }, + "observedKubeVirtVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "outdatedVirtualMachineInstanceWorkloads": { + "type": "integer" + }, + "phase": { + "description": "KubeVirtPhase is a label for the phase of a KubeVirt deployment at the current time.", + "type": "string" + }, + "targetDeploymentConfig": { + "type": "string" + }, + "targetDeploymentID": { + "type": "string" + }, + "targetKubeVirtRegistry": { + "type": "string" + }, + "targetKubeVirtVersion": { + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "kubevirts", + "singular": "kubevirt", + "shortNames": [ + "kv", + "kvs" + ], + "kind": "KubeVirt", + "listKind": "KubeVirtList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ], + "short": "KubeVirt", + "apiGroup": "kubevirt.io", + "apiKind": "KubeVirt", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.v1.VirtualMachine", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "Spec contains the specification of VirtualMachineInstance created", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "required": [ + "spec" + ] + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status holds the current state of the controller and brief information about its associated VirtualMachineInstance", + "type": "object", + "properties": { + "conditions": { + "description": "Hold the state information of the VirtualMachine and its VirtualMachineInstance", + "type": "array", + "items": { + "description": "VirtualMachineCondition represents the state of VirtualMachine", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "created": { + "description": "Created indicates if the virtual machine is created in the cluster", + "type": "boolean" + }, + "desiredGeneration": { + "description": "DesiredGeneration is the generation which is desired for the VMI. This will be used in comparisons with ObservedGeneration to understand when the VMI is out of sync. This will be changed at the same time as ObservedGeneration to remove errors which could occur if Generation is updated through an Update() before ObservedGeneration in Status.", + "type": "integer", + "format": "int64" + }, + "interfaceRequests": { + "description": "InterfaceRequests indicates a list of interfaces added to the VMI template and hot-plugged on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addInterfaceOptions": { + "description": "AddInterfaceOptions when set indicates a network interface should be added. The details within this field specify how to add the interface", + "type": "object", + "required": [ + "name", + "networkAttachmentDefinitionName" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + }, + "networkAttachmentDefinitionName": { + "description": "NetworkAttachmentDefinitionName references a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "removeInterfaceOptions": { + "description": "RemoveInterfaceOptions when set indicates a network interface should be removed. The details within this field specify how to remove the interface", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "memoryDumpRequest": { + "description": "MemoryDumpRequest tracks memory dump request phase and info of getting a memory dump to the given pvc", + "required": [ + "claimName", + "phase" + ] + }, + "observedGeneration": { + "description": "ObservedGeneration is the generation observed by the vmi when started.", + "type": "integer", + "format": "int64" + }, + "printableStatus": { + "description": "PrintableStatus is a human readable, high-level representation of the status of the virtual machine", + "type": "string" + }, + "ready": { + "description": "Ready indicates if the virtual machine is running and ready", + "type": "boolean" + }, + "restoreInProgress": { + "description": "RestoreInProgress is the name of the VirtualMachineRestore currently executing", + "type": "string" + }, + "snapshotInProgress": { + "description": "SnapshotInProgress is the name of the VirtualMachineSnapshot currently executing", + "type": "string" + }, + "startFailure": { + "description": "StartFailure tracks consecutive VMI startup failures for the purposes of crash loop backoffs" + }, + "stateChangeRequests": { + "description": "StateChangeRequests indicates a list of actions that should be taken on a VMI e.g. stop a specific VMI then start a new one.", + "type": "array", + "items": { + "type": "object", + "required": [ + "action" + ], + "properties": { + "action": { + "description": "Indicates the type of action that is requested. e.g. Start or Stop", + "type": "string" + }, + "data": { + "description": "Provides additional data in order to perform the Action", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "uid": { + "description": "Indicates the UUID of an existing Virtual Machine Instance that this change request applies to -- if applicable", + "type": "string" + } + } + } + }, + "volumeRequests": { + "description": "VolumeRequests indicates a list of volumes add or remove from the VMI template and hotplug on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addVolumeOptions": { + "description": "AddVolumeOptions when set indicates a volume should be added. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "disk", + "name", + "volumeSource" + ], + "properties": { + "disk": { + "description": "Disk represents the hotplug disk that will be plugged into the running VMI", + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + }, + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that will be used to map the disk to the corresponding volume. This overrides any name set inside the Disk struct itself.", + "type": "string" + }, + "volumeSource": { + "description": "VolumeSource represents the source of the volume to map to the disk.", + "type": "object", + "properties": { + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + } + } + }, + "removeVolumeOptions": { + "description": "RemoveVolumeOptions when set indicates a volume should be removed. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that maps to both the disk and volume that should be removed", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumeSnapshotStatuses": { + "description": "VolumeSnapshotStatuses indicates a list of statuses whether snapshotting is supported by each volume.", + "type": "array", + "items": { + "type": "object", + "required": [ + "enabled", + "name" + ], + "properties": { + "enabled": { + "description": "True if the volume supports snapshotting", + "type": "boolean" + }, + "name": { + "description": "Volume name", + "type": "string" + }, + "reason": { + "description": "Empty if snapshotting is enabled, contains reason otherwise", + "type": "string" + } + } + } + } + } + } + }, + "description": "VirtualMachine handles the VirtualMachines that are not running or are in a stopped state The VirtualMachine contains the template to create the VirtualMachineInstance. It also mirrors the running state of the created VirtualMachineInstance in its status.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "VirtualMachine", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachines.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "virtualmachines", + "singular": "virtualmachine", + "shortNames": [ + "vm", + "vms" + ], + "kind": "VirtualMachine", + "listKind": "VirtualMachineList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachine handles the VirtualMachines that are not running or are in a stopped state The VirtualMachine contains the template to create the VirtualMachineInstance. It also mirrors the running state of the created VirtualMachineInstance in its status.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Spec contains the specification of VirtualMachineInstance created", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "DataVolumeSpec contains the DataVolume specification.", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeTemplateDummyStatus is here simply for backwards compatibility with a previous API.", + "type": "object", + "nullable": true + } + }, + "nullable": true + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status holds the current state of the controller and brief information about its associated VirtualMachineInstance", + "type": "object", + "properties": { + "conditions": { + "description": "Hold the state information of the VirtualMachine and its VirtualMachineInstance", + "type": "array", + "items": { + "description": "VirtualMachineCondition represents the state of VirtualMachine", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "created": { + "description": "Created indicates if the virtual machine is created in the cluster", + "type": "boolean" + }, + "desiredGeneration": { + "description": "DesiredGeneration is the generation which is desired for the VMI. This will be used in comparisons with ObservedGeneration to understand when the VMI is out of sync. This will be changed at the same time as ObservedGeneration to remove errors which could occur if Generation is updated through an Update() before ObservedGeneration in Status.", + "type": "integer", + "format": "int64" + }, + "interfaceRequests": { + "description": "InterfaceRequests indicates a list of interfaces added to the VMI template and hot-plugged on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addInterfaceOptions": { + "description": "AddInterfaceOptions when set indicates a network interface should be added. The details within this field specify how to add the interface", + "type": "object", + "required": [ + "name", + "networkAttachmentDefinitionName" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + }, + "networkAttachmentDefinitionName": { + "description": "NetworkAttachmentDefinitionName references a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "removeInterfaceOptions": { + "description": "RemoveInterfaceOptions when set indicates a network interface should be removed. The details within this field specify how to remove the interface", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "memoryDumpRequest": { + "description": "MemoryDumpRequest tracks memory dump request phase and info of getting a memory dump to the given pvc", + "type": "object", + "required": [ + "claimName", + "phase" + ], + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc that will contain the memory dump", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp represents the time the memory dump was completed", + "type": "string", + "format": "date-time" + }, + "fileName": { + "description": "FileName represents the name of the output file", + "type": "string" + }, + "message": { + "description": "Message is a detailed message about failure of the memory dump", + "type": "string" + }, + "phase": { + "description": "Phase represents the memory dump phase", + "type": "string" + }, + "remove": { + "description": "Remove represents request of dissociating the memory dump pvc", + "type": "boolean" + }, + "startTimestamp": { + "description": "StartTimestamp represents the time the memory dump started", + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "observedGeneration": { + "description": "ObservedGeneration is the generation observed by the vmi when started.", + "type": "integer", + "format": "int64" + }, + "printableStatus": { + "description": "PrintableStatus is a human readable, high-level representation of the status of the virtual machine", + "type": "string" + }, + "ready": { + "description": "Ready indicates if the virtual machine is running and ready", + "type": "boolean" + }, + "restoreInProgress": { + "description": "RestoreInProgress is the name of the VirtualMachineRestore currently executing", + "type": "string" + }, + "snapshotInProgress": { + "description": "SnapshotInProgress is the name of the VirtualMachineSnapshot currently executing", + "type": "string" + }, + "startFailure": { + "description": "StartFailure tracks consecutive VMI startup failures for the purposes of crash loop backoffs", + "type": "object", + "properties": { + "consecutiveFailCount": { + "type": "integer" + }, + "lastFailedVMIUID": { + "description": "UID is a type that holds unique ID values, including UUIDs. Because we don't ONLY use UUIDs, this is an alias to string. Being a type captures intent and helps make sure that UIDs and names do not get conflated.", + "type": "string" + }, + "retryAfterTimestamp": { + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "stateChangeRequests": { + "description": "StateChangeRequests indicates a list of actions that should be taken on a VMI e.g. stop a specific VMI then start a new one.", + "type": "array", + "items": { + "type": "object", + "required": [ + "action" + ], + "properties": { + "action": { + "description": "Indicates the type of action that is requested. e.g. Start or Stop", + "type": "string" + }, + "data": { + "description": "Provides additional data in order to perform the Action", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "uid": { + "description": "Indicates the UUID of an existing Virtual Machine Instance that this change request applies to -- if applicable", + "type": "string" + } + } + } + }, + "volumeRequests": { + "description": "VolumeRequests indicates a list of volumes add or remove from the VMI template and hotplug on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addVolumeOptions": { + "description": "AddVolumeOptions when set indicates a volume should be added. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "disk", + "name", + "volumeSource" + ], + "properties": { + "disk": { + "description": "Disk represents the hotplug disk that will be plugged into the running VMI", + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + }, + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that will be used to map the disk to the corresponding volume. This overrides any name set inside the Disk struct itself.", + "type": "string" + }, + "volumeSource": { + "description": "VolumeSource represents the source of the volume to map to the disk.", + "type": "object", + "properties": { + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + } + } + }, + "removeVolumeOptions": { + "description": "RemoveVolumeOptions when set indicates a volume should be removed. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that maps to both the disk and volume that should be removed", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumeSnapshotStatuses": { + "description": "VolumeSnapshotStatuses indicates a list of statuses whether snapshotting is supported by each volume.", + "type": "array", + "items": { + "type": "object", + "required": [ + "enabled", + "name" + ], + "properties": { + "enabled": { + "description": "True if the volume supports snapshotting", + "type": "boolean" + }, + "name": { + "description": "Volume name", + "type": "string" + }, + "reason": { + "description": "Empty if snapshotting is enabled, contains reason otherwise", + "type": "string" + } + } + } + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Status", + "type": "string", + "description": "Human Readable Status", + "jsonPath": ".status.printableStatus" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + } + ] + }, + { + "name": "v1alpha3", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 is now deprecated and will be removed in a future release.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachine handles the VirtualMachines that are not running or are in a stopped state The VirtualMachine contains the template to create the VirtualMachineInstance. It also mirrors the running state of the created VirtualMachineInstance in its status.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Spec contains the specification of VirtualMachineInstance created", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "DataVolumeSpec contains the DataVolume specification.", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeTemplateDummyStatus is here simply for backwards compatibility with a previous API.", + "type": "object", + "nullable": true + } + }, + "nullable": true + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status holds the current state of the controller and brief information about its associated VirtualMachineInstance", + "type": "object", + "properties": { + "conditions": { + "description": "Hold the state information of the VirtualMachine and its VirtualMachineInstance", + "type": "array", + "items": { + "description": "VirtualMachineCondition represents the state of VirtualMachine", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "created": { + "description": "Created indicates if the virtual machine is created in the cluster", + "type": "boolean" + }, + "desiredGeneration": { + "description": "DesiredGeneration is the generation which is desired for the VMI. This will be used in comparisons with ObservedGeneration to understand when the VMI is out of sync. This will be changed at the same time as ObservedGeneration to remove errors which could occur if Generation is updated through an Update() before ObservedGeneration in Status.", + "type": "integer", + "format": "int64" + }, + "interfaceRequests": { + "description": "InterfaceRequests indicates a list of interfaces added to the VMI template and hot-plugged on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addInterfaceOptions": { + "description": "AddInterfaceOptions when set indicates a network interface should be added. The details within this field specify how to add the interface", + "type": "object", + "required": [ + "name", + "networkAttachmentDefinitionName" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + }, + "networkAttachmentDefinitionName": { + "description": "NetworkAttachmentDefinitionName references a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "removeInterfaceOptions": { + "description": "RemoveInterfaceOptions when set indicates a network interface should be removed. The details within this field specify how to remove the interface", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "memoryDumpRequest": { + "description": "MemoryDumpRequest tracks memory dump request phase and info of getting a memory dump to the given pvc", + "type": "object", + "required": [ + "claimName", + "phase" + ], + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc that will contain the memory dump", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp represents the time the memory dump was completed", + "type": "string", + "format": "date-time" + }, + "fileName": { + "description": "FileName represents the name of the output file", + "type": "string" + }, + "message": { + "description": "Message is a detailed message about failure of the memory dump", + "type": "string" + }, + "phase": { + "description": "Phase represents the memory dump phase", + "type": "string" + }, + "remove": { + "description": "Remove represents request of dissociating the memory dump pvc", + "type": "boolean" + }, + "startTimestamp": { + "description": "StartTimestamp represents the time the memory dump started", + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "observedGeneration": { + "description": "ObservedGeneration is the generation observed by the vmi when started.", + "type": "integer", + "format": "int64" + }, + "printableStatus": { + "description": "PrintableStatus is a human readable, high-level representation of the status of the virtual machine", + "type": "string" + }, + "ready": { + "description": "Ready indicates if the virtual machine is running and ready", + "type": "boolean" + }, + "restoreInProgress": { + "description": "RestoreInProgress is the name of the VirtualMachineRestore currently executing", + "type": "string" + }, + "snapshotInProgress": { + "description": "SnapshotInProgress is the name of the VirtualMachineSnapshot currently executing", + "type": "string" + }, + "startFailure": { + "description": "StartFailure tracks consecutive VMI startup failures for the purposes of crash loop backoffs", + "type": "object", + "properties": { + "consecutiveFailCount": { + "type": "integer" + }, + "lastFailedVMIUID": { + "description": "UID is a type that holds unique ID values, including UUIDs. Because we don't ONLY use UUIDs, this is an alias to string. Being a type captures intent and helps make sure that UIDs and names do not get conflated.", + "type": "string" + }, + "retryAfterTimestamp": { + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "stateChangeRequests": { + "description": "StateChangeRequests indicates a list of actions that should be taken on a VMI e.g. stop a specific VMI then start a new one.", + "type": "array", + "items": { + "type": "object", + "required": [ + "action" + ], + "properties": { + "action": { + "description": "Indicates the type of action that is requested. e.g. Start or Stop", + "type": "string" + }, + "data": { + "description": "Provides additional data in order to perform the Action", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "uid": { + "description": "Indicates the UUID of an existing Virtual Machine Instance that this change request applies to -- if applicable", + "type": "string" + } + } + } + }, + "volumeRequests": { + "description": "VolumeRequests indicates a list of volumes add or remove from the VMI template and hotplug on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addVolumeOptions": { + "description": "AddVolumeOptions when set indicates a volume should be added. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "disk", + "name", + "volumeSource" + ], + "properties": { + "disk": { + "description": "Disk represents the hotplug disk that will be plugged into the running VMI", + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + }, + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that will be used to map the disk to the corresponding volume. This overrides any name set inside the Disk struct itself.", + "type": "string" + }, + "volumeSource": { + "description": "VolumeSource represents the source of the volume to map to the disk.", + "type": "object", + "properties": { + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + } + } + }, + "removeVolumeOptions": { + "description": "RemoveVolumeOptions when set indicates a volume should be removed. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that maps to both the disk and volume that should be removed", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumeSnapshotStatuses": { + "description": "VolumeSnapshotStatuses indicates a list of statuses whether snapshotting is supported by each volume.", + "type": "array", + "items": { + "type": "object", + "required": [ + "enabled", + "name" + ], + "properties": { + "enabled": { + "description": "True if the volume supports snapshotting", + "type": "boolean" + }, + "name": { + "description": "Volume name", + "type": "string" + }, + "reason": { + "description": "Empty if snapshotting is enabled, contains reason otherwise", + "type": "string" + } + } + } + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Status", + "type": "string", + "description": "Human Readable Status", + "jsonPath": ".status.printableStatus" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachines", + "singular": "virtualmachine", + "shortNames": [ + "vm", + "vms" + ], + "kind": "VirtualMachine", + "listKind": "VirtualMachineList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Status", + "type": "string", + "description": "Human Readable Status", + "jsonPath": ".status.printableStatus" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + } + ], + "short": "VirtualMachine", + "apiGroup": "kubevirt.io", + "apiKind": "VirtualMachine", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.v1.VirtualMachineInstance", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users.", + "type": "object", + "properties": { + "VSOCKCID": { + "description": "VSOCKCID is used to track the allocated VSOCK CID in the VM.", + "type": "integer", + "format": "int32" + }, + "activePods": { + "description": "ActivePods is a mapping of pod UID to node name. It is possible for multiple pods to be running for a single VMI during migration.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "conditions": { + "description": "Conditions are specific points in VirtualMachineInstance's pod runtime.", + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "currentCPUTopology": { + "description": "CurrentCPUTopology specifies the current CPU topology used by the VM workload. Current topology may differ from the desired topology in the spec while CPU hotplug takes place.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "evacuationNodeName": { + "description": "EvacuationNodeName is used to track the eviction process of a VMI. It stores the name of the node that we want to evacuate. It is meant to be used by KubeVirt core components only and can't be set or modified by users.", + "type": "string" + }, + "fsFreezeStatus": { + "description": "FSFreezeStatus is the state of the fs of the guest it can be either frozen or thawed", + "type": "string" + }, + "guestOSInfo": { + "description": "Guest OS Information", + "type": "object", + "properties": { + "id": { + "description": "Guest OS Id", + "type": "string" + }, + "kernelRelease": { + "description": "Guest OS Kernel Release", + "type": "string" + }, + "kernelVersion": { + "description": "Kernel version of the Guest OS", + "type": "string" + }, + "machine": { + "description": "Machine type of the Guest OS", + "type": "string" + }, + "name": { + "description": "Name of the Guest OS", + "type": "string" + }, + "prettyName": { + "description": "Guest OS Pretty Name", + "type": "string" + }, + "version": { + "description": "Guest OS Version", + "type": "string" + }, + "versionId": { + "description": "Version ID of the Guest OS", + "type": "string" + } + } + }, + "interfaces": { + "description": "Interfaces represent the details of available network interfaces.", + "type": "array", + "items": { + "type": "object", + "properties": { + "infoSource": { + "description": "Specifies the origin of the interface data collected. values: domain, guest-agent, multus-status.", + "type": "string" + }, + "interfaceName": { + "description": "The interface name inside the Virtual Machine", + "type": "string" + }, + "ipAddress": { + "description": "IP address of a Virtual Machine interface. It is always the first item of IPs", + "type": "string" + }, + "ipAddresses": { + "description": "List of all IP addresses of a Virtual Machine interface", + "type": "array", + "items": { + "type": "string" + } + }, + "mac": { + "description": "Hardware address of a Virtual Machine interface", + "type": "string" + }, + "name": { + "description": "Name of the interface, corresponds to name of the network assigned to the interface", + "type": "string" + }, + "queueCount": { + "description": "Specifies how many queues are allocated by MultiQueue", + "type": "integer", + "format": "int32" + } + } + } + }, + "launcherContainerImageVersion": { + "description": "LauncherContainerImageVersion indicates what container image is currently active for the vmi.", + "type": "string" + }, + "machine": { + "description": "Machine shows the final resulting qemu machine type. This can be different than the machine type selected in the spec, due to qemus machine type alias mechanism.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "migrationMethod": { + "description": "Represents the method using which the vmi can be migrated: live migration or block migration", + "type": "string" + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "format": "date-time" + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "format": "date-time" + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "migrationTransport": { + "description": "This represents the migration transport", + "type": "string" + }, + "nodeName": { + "description": "NodeName is the name where the VirtualMachineInstance is currently running.", + "type": "string" + }, + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstancePhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "qosClass": { + "description": "The Quality of Service (QOS) classification assigned to the virtual machine instance based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md", + "type": "string" + }, + "reason": { + "description": "A brief CamelCase message indicating details about why the VMI is in this state. e.g. 'NodeUnresponsive'", + "type": "string" + }, + "runtimeUser": { + "description": "RuntimeUser is used to determine what user will be used in launcher", + "type": "integer", + "format": "int64" + }, + "selinuxContext": { + "description": "SELinuxContext is the actual SELinux context of the virt-launcher pod", + "type": "string" + }, + "topologyHints": { + "type": "object", + "properties": { + "tscFrequency": { + "type": "integer", + "format": "int64" + } + } + }, + "virtualMachineRevisionName": { + "description": "VirtualMachineRevisionName is used to get the vm revision of the vmi when doing an online vm snapshot", + "type": "string" + }, + "volumeStatus": { + "description": "VolumeStatus contains the statuses of all the volumes", + "type": "array", + "items": { + "description": "VolumeStatus represents information about the status of volumes attached to the VirtualMachineInstance.", + "type": "object", + "required": [ + "name", + "target" + ], + "properties": { + "hotplugVolume": { + "description": "If the volume is hotplug, this will contain the hotplug status.", + "type": "object", + "properties": { + "attachPodName": { + "description": "AttachPodName is the name of the pod used to attach the volume to the node.", + "type": "string" + }, + "attachPodUID": { + "description": "AttachPodUID is the UID of the pod used to attach the volume to the node.", + "type": "string" + } + } + }, + "memoryDumpVolume": { + "description": "If the volume is memorydump volume, this will contain the memorydump info.", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc the memory was dumped to", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp is the time when the memory dump completed", + "type": "string", + "format": "date-time" + }, + "startTimestamp": { + "description": "StartTimestamp is the time when the memory dump started", + "type": "string", + "format": "date-time" + }, + "targetFileName": { + "description": "TargetFileName is the name of the memory dump output", + "type": "string" + } + } + }, + "message": { + "description": "Message is a detailed message about the current hotplug volume phase", + "type": "string" + }, + "name": { + "description": "Name is the name of the volume", + "type": "string" + }, + "persistentVolumeClaimInfo": { + "description": "PersistentVolumeClaimInfo is information about the PVC that handler requires during start flow", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "capacity": { + "description": "Capacity represents the capacity set on the corresponding PVC status", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "filesystemOverhead": { + "description": "Percentage of filesystem's size to be reserved when resizing the PVC", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "preallocated": { + "description": "Preallocated indicates if the PVC's storage is preallocated or not", + "type": "boolean" + }, + "requests": { + "description": "Requests represents the resources requested by the corresponding PVC spec", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + }, + "phase": { + "description": "Phase is the phase", + "type": "string" + }, + "reason": { + "description": "Reason is a brief description of why we are in the current hotplug volume phase", + "type": "string" + }, + "size": { + "description": "Represents the size of the volume", + "type": "integer", + "format": "int64" + }, + "target": { + "description": "Target is the target name used when adding the volume to the VM, eg: vda", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "VirtualMachineInstance", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineinstances.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "virtualmachineinstances", + "singular": "virtualmachineinstance", + "shortNames": [ + "vmi", + "vmis" + ], + "kind": "VirtualMachineInstance", + "listKind": "VirtualMachineInstanceList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users.", + "type": "object", + "properties": { + "VSOCKCID": { + "description": "VSOCKCID is used to track the allocated VSOCK CID in the VM.", + "type": "integer", + "format": "int32" + }, + "activePods": { + "description": "ActivePods is a mapping of pod UID to node name. It is possible for multiple pods to be running for a single VMI during migration.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "conditions": { + "description": "Conditions are specific points in VirtualMachineInstance's pod runtime.", + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "currentCPUTopology": { + "description": "CurrentCPUTopology specifies the current CPU topology used by the VM workload. Current topology may differ from the desired topology in the spec while CPU hotplug takes place.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "evacuationNodeName": { + "description": "EvacuationNodeName is used to track the eviction process of a VMI. It stores the name of the node that we want to evacuate. It is meant to be used by KubeVirt core components only and can't be set or modified by users.", + "type": "string" + }, + "fsFreezeStatus": { + "description": "FSFreezeStatus is the state of the fs of the guest it can be either frozen or thawed", + "type": "string" + }, + "guestOSInfo": { + "description": "Guest OS Information", + "type": "object", + "properties": { + "id": { + "description": "Guest OS Id", + "type": "string" + }, + "kernelRelease": { + "description": "Guest OS Kernel Release", + "type": "string" + }, + "kernelVersion": { + "description": "Kernel version of the Guest OS", + "type": "string" + }, + "machine": { + "description": "Machine type of the Guest OS", + "type": "string" + }, + "name": { + "description": "Name of the Guest OS", + "type": "string" + }, + "prettyName": { + "description": "Guest OS Pretty Name", + "type": "string" + }, + "version": { + "description": "Guest OS Version", + "type": "string" + }, + "versionId": { + "description": "Version ID of the Guest OS", + "type": "string" + } + } + }, + "interfaces": { + "description": "Interfaces represent the details of available network interfaces.", + "type": "array", + "items": { + "type": "object", + "properties": { + "infoSource": { + "description": "Specifies the origin of the interface data collected. values: domain, guest-agent, multus-status.", + "type": "string" + }, + "interfaceName": { + "description": "The interface name inside the Virtual Machine", + "type": "string" + }, + "ipAddress": { + "description": "IP address of a Virtual Machine interface. It is always the first item of IPs", + "type": "string" + }, + "ipAddresses": { + "description": "List of all IP addresses of a Virtual Machine interface", + "type": "array", + "items": { + "type": "string" + } + }, + "mac": { + "description": "Hardware address of a Virtual Machine interface", + "type": "string" + }, + "name": { + "description": "Name of the interface, corresponds to name of the network assigned to the interface", + "type": "string" + }, + "queueCount": { + "description": "Specifies how many queues are allocated by MultiQueue", + "type": "integer", + "format": "int32" + } + } + } + }, + "launcherContainerImageVersion": { + "description": "LauncherContainerImageVersion indicates what container image is currently active for the vmi.", + "type": "string" + }, + "machine": { + "description": "Machine shows the final resulting qemu machine type. This can be different than the machine type selected in the spec, due to qemus machine type alias mechanism.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "migrationMethod": { + "description": "Represents the method using which the vmi can be migrated: live migration or block migration", + "type": "string" + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "type": "string", + "format": "date-time", + "nullable": true + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "type": "string", + "format": "date-time", + "nullable": true + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "migrationTransport": { + "description": "This represents the migration transport", + "type": "string" + }, + "nodeName": { + "description": "NodeName is the name where the VirtualMachineInstance is currently running.", + "type": "string" + }, + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstancePhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "qosClass": { + "description": "The Quality of Service (QOS) classification assigned to the virtual machine instance based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md", + "type": "string" + }, + "reason": { + "description": "A brief CamelCase message indicating details about why the VMI is in this state. e.g. 'NodeUnresponsive'", + "type": "string" + }, + "runtimeUser": { + "description": "RuntimeUser is used to determine what user will be used in launcher", + "type": "integer", + "format": "int64" + }, + "selinuxContext": { + "description": "SELinuxContext is the actual SELinux context of the virt-launcher pod", + "type": "string" + }, + "topologyHints": { + "type": "object", + "properties": { + "tscFrequency": { + "type": "integer", + "format": "int64" + } + } + }, + "virtualMachineRevisionName": { + "description": "VirtualMachineRevisionName is used to get the vm revision of the vmi when doing an online vm snapshot", + "type": "string" + }, + "volumeStatus": { + "description": "VolumeStatus contains the statuses of all the volumes", + "type": "array", + "items": { + "description": "VolumeStatus represents information about the status of volumes attached to the VirtualMachineInstance.", + "type": "object", + "required": [ + "name", + "target" + ], + "properties": { + "hotplugVolume": { + "description": "If the volume is hotplug, this will contain the hotplug status.", + "type": "object", + "properties": { + "attachPodName": { + "description": "AttachPodName is the name of the pod used to attach the volume to the node.", + "type": "string" + }, + "attachPodUID": { + "description": "AttachPodUID is the UID of the pod used to attach the volume to the node.", + "type": "string" + } + } + }, + "memoryDumpVolume": { + "description": "If the volume is memorydump volume, this will contain the memorydump info.", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc the memory was dumped to", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp is the time when the memory dump completed", + "type": "string", + "format": "date-time" + }, + "startTimestamp": { + "description": "StartTimestamp is the time when the memory dump started", + "type": "string", + "format": "date-time" + }, + "targetFileName": { + "description": "TargetFileName is the name of the memory dump output", + "type": "string" + } + } + }, + "message": { + "description": "Message is a detailed message about the current hotplug volume phase", + "type": "string" + }, + "name": { + "description": "Name is the name of the volume", + "type": "string" + }, + "persistentVolumeClaimInfo": { + "description": "PersistentVolumeClaimInfo is information about the PVC that handler requires during start flow", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "capacity": { + "description": "Capacity represents the capacity set on the corresponding PVC status", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "filesystemOverhead": { + "description": "Percentage of filesystem's size to be reserved when resizing the PVC", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "preallocated": { + "description": "Preallocated indicates if the PVC's storage is preallocated or not", + "type": "boolean" + }, + "requests": { + "description": "Requests represents the resources requested by the corresponding PVC spec", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + }, + "phase": { + "description": "Phase is the phase", + "type": "string" + }, + "reason": { + "description": "Reason is a brief description of why we are in the current hotplug volume phase", + "type": "string" + }, + "size": { + "description": "Represents the size of the volume", + "type": "integer", + "format": "int64" + }, + "target": { + "description": "Target is the target name used when adding the volume to the VM, eg: vda", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "IP", + "type": "string", + "jsonPath": ".status.interfaces[0].ipAddress" + }, + { + "name": "NodeName", + "type": "string", + "jsonPath": ".status.nodeName" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + }, + { + "name": "Live-Migratable", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='LiveMigratable')].status" + }, + { + "name": "Paused", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='Paused')].status" + } + ] + }, + { + "name": "v1alpha3", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 is now deprecated and will be removed in a future release.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users.", + "type": "object", + "properties": { + "VSOCKCID": { + "description": "VSOCKCID is used to track the allocated VSOCK CID in the VM.", + "type": "integer", + "format": "int32" + }, + "activePods": { + "description": "ActivePods is a mapping of pod UID to node name. It is possible for multiple pods to be running for a single VMI during migration.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "conditions": { + "description": "Conditions are specific points in VirtualMachineInstance's pod runtime.", + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "currentCPUTopology": { + "description": "CurrentCPUTopology specifies the current CPU topology used by the VM workload. Current topology may differ from the desired topology in the spec while CPU hotplug takes place.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "evacuationNodeName": { + "description": "EvacuationNodeName is used to track the eviction process of a VMI. It stores the name of the node that we want to evacuate. It is meant to be used by KubeVirt core components only and can't be set or modified by users.", + "type": "string" + }, + "fsFreezeStatus": { + "description": "FSFreezeStatus is the state of the fs of the guest it can be either frozen or thawed", + "type": "string" + }, + "guestOSInfo": { + "description": "Guest OS Information", + "type": "object", + "properties": { + "id": { + "description": "Guest OS Id", + "type": "string" + }, + "kernelRelease": { + "description": "Guest OS Kernel Release", + "type": "string" + }, + "kernelVersion": { + "description": "Kernel version of the Guest OS", + "type": "string" + }, + "machine": { + "description": "Machine type of the Guest OS", + "type": "string" + }, + "name": { + "description": "Name of the Guest OS", + "type": "string" + }, + "prettyName": { + "description": "Guest OS Pretty Name", + "type": "string" + }, + "version": { + "description": "Guest OS Version", + "type": "string" + }, + "versionId": { + "description": "Version ID of the Guest OS", + "type": "string" + } + } + }, + "interfaces": { + "description": "Interfaces represent the details of available network interfaces.", + "type": "array", + "items": { + "type": "object", + "properties": { + "infoSource": { + "description": "Specifies the origin of the interface data collected. values: domain, guest-agent, multus-status.", + "type": "string" + }, + "interfaceName": { + "description": "The interface name inside the Virtual Machine", + "type": "string" + }, + "ipAddress": { + "description": "IP address of a Virtual Machine interface. It is always the first item of IPs", + "type": "string" + }, + "ipAddresses": { + "description": "List of all IP addresses of a Virtual Machine interface", + "type": "array", + "items": { + "type": "string" + } + }, + "mac": { + "description": "Hardware address of a Virtual Machine interface", + "type": "string" + }, + "name": { + "description": "Name of the interface, corresponds to name of the network assigned to the interface", + "type": "string" + }, + "queueCount": { + "description": "Specifies how many queues are allocated by MultiQueue", + "type": "integer", + "format": "int32" + } + } + } + }, + "launcherContainerImageVersion": { + "description": "LauncherContainerImageVersion indicates what container image is currently active for the vmi.", + "type": "string" + }, + "machine": { + "description": "Machine shows the final resulting qemu machine type. This can be different than the machine type selected in the spec, due to qemus machine type alias mechanism.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "migrationMethod": { + "description": "Represents the method using which the vmi can be migrated: live migration or block migration", + "type": "string" + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "type": "string", + "format": "date-time", + "nullable": true + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "type": "string", + "format": "date-time", + "nullable": true + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "migrationTransport": { + "description": "This represents the migration transport", + "type": "string" + }, + "nodeName": { + "description": "NodeName is the name where the VirtualMachineInstance is currently running.", + "type": "string" + }, + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstancePhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstance in kubernetes world. It is not the VirtualMachineInstance status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "qosClass": { + "description": "The Quality of Service (QOS) classification assigned to the virtual machine instance based on resource requirements See PodQOSClass type for available QOS classes More info: https://git.k8s.io/community/contributors/design-proposals/node/resource-qos.md", + "type": "string" + }, + "reason": { + "description": "A brief CamelCase message indicating details about why the VMI is in this state. e.g. 'NodeUnresponsive'", + "type": "string" + }, + "runtimeUser": { + "description": "RuntimeUser is used to determine what user will be used in launcher", + "type": "integer", + "format": "int64" + }, + "selinuxContext": { + "description": "SELinuxContext is the actual SELinux context of the virt-launcher pod", + "type": "string" + }, + "topologyHints": { + "type": "object", + "properties": { + "tscFrequency": { + "type": "integer", + "format": "int64" + } + } + }, + "virtualMachineRevisionName": { + "description": "VirtualMachineRevisionName is used to get the vm revision of the vmi when doing an online vm snapshot", + "type": "string" + }, + "volumeStatus": { + "description": "VolumeStatus contains the statuses of all the volumes", + "type": "array", + "items": { + "description": "VolumeStatus represents information about the status of volumes attached to the VirtualMachineInstance.", + "type": "object", + "required": [ + "name", + "target" + ], + "properties": { + "hotplugVolume": { + "description": "If the volume is hotplug, this will contain the hotplug status.", + "type": "object", + "properties": { + "attachPodName": { + "description": "AttachPodName is the name of the pod used to attach the volume to the node.", + "type": "string" + }, + "attachPodUID": { + "description": "AttachPodUID is the UID of the pod used to attach the volume to the node.", + "type": "string" + } + } + }, + "memoryDumpVolume": { + "description": "If the volume is memorydump volume, this will contain the memorydump info.", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc the memory was dumped to", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp is the time when the memory dump completed", + "type": "string", + "format": "date-time" + }, + "startTimestamp": { + "description": "StartTimestamp is the time when the memory dump started", + "type": "string", + "format": "date-time" + }, + "targetFileName": { + "description": "TargetFileName is the name of the memory dump output", + "type": "string" + } + } + }, + "message": { + "description": "Message is a detailed message about the current hotplug volume phase", + "type": "string" + }, + "name": { + "description": "Name is the name of the volume", + "type": "string" + }, + "persistentVolumeClaimInfo": { + "description": "PersistentVolumeClaimInfo is information about the PVC that handler requires during start flow", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "capacity": { + "description": "Capacity represents the capacity set on the corresponding PVC status", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "filesystemOverhead": { + "description": "Percentage of filesystem's size to be reserved when resizing the PVC", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "preallocated": { + "description": "Preallocated indicates if the PVC's storage is preallocated or not", + "type": "boolean" + }, + "requests": { + "description": "Requests represents the resources requested by the corresponding PVC spec", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + }, + "phase": { + "description": "Phase is the phase", + "type": "string" + }, + "reason": { + "description": "Reason is a brief description of why we are in the current hotplug volume phase", + "type": "string" + }, + "size": { + "description": "Represents the size of the volume", + "type": "integer", + "format": "int64" + }, + "target": { + "description": "Target is the target name used when adding the volume to the VM, eg: vda", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "IP", + "type": "string", + "jsonPath": ".status.interfaces[0].ipAddress" + }, + { + "name": "NodeName", + "type": "string", + "jsonPath": ".status.nodeName" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + }, + { + "name": "Live-Migratable", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='LiveMigratable')].status" + }, + { + "name": "Paused", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='Paused')].status" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineinstances", + "singular": "virtualmachineinstance", + "shortNames": [ + "vmi", + "vmis" + ], + "kind": "VirtualMachineInstance", + "listKind": "VirtualMachineInstanceList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "IP", + "type": "string", + "jsonPath": ".status.interfaces[0].ipAddress" + }, + { + "name": "NodeName", + "type": "string", + "jsonPath": ".status.nodeName" + }, + { + "name": "Ready", + "type": "string", + "jsonPath": ".status.conditions[?(@.type=='Ready')].status" + }, + { + "name": "Live-Migratable", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='LiveMigratable')].status" + }, + { + "name": "Paused", + "type": "string", + "priority": 1, + "jsonPath": ".status.conditions[?(@.type=='Paused')].status" + } + ], + "short": "VirtualMachineInstance", + "apiGroup": "kubevirt.io", + "apiKind": "VirtualMachineInstance", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.v1.VirtualMachineInstanceMigration", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "properties": { + "vmiName": { + "description": "The name of the VMI to perform the migration on. VMI must exist in the migration objects namespace", + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineInstanceMigration reprents information pertaining to a VMI's migration.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "format": "date-time" + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "format": "date-time" + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "phase": { + "description": "VirtualMachineInstanceMigrationPhase is a label for the condition of a VirtualMachineInstanceMigration at the current time.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstanceMigrationPhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstanceMigrationPhase in kubernetes world. It is not the VirtualMachineInstanceMigrationPhase status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "description": "VirtualMachineInstanceMigration represents the object tracking a VMI's migration to another host in the cluster", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "VirtualMachineInstanceMigration", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineinstancemigrations.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "virtualmachineinstancemigrations", + "singular": "virtualmachineinstancemigration", + "shortNames": [ + "vmim", + "vmims" + ], + "kind": "VirtualMachineInstanceMigration", + "listKind": "VirtualMachineInstanceMigrationList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstanceMigration represents the object tracking a VMI's migration to another host in the cluster", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "properties": { + "vmiName": { + "description": "The name of the VMI to perform the migration on. VMI must exist in the migration objects namespace", + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineInstanceMigration reprents information pertaining to a VMI's migration.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "type": "string", + "format": "date-time", + "nullable": true + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "type": "string", + "format": "date-time", + "nullable": true + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "phase": { + "description": "VirtualMachineInstanceMigrationPhase is a label for the condition of a VirtualMachineInstanceMigration at the current time.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstanceMigrationPhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstanceMigrationPhase in kubernetes world. It is not the VirtualMachineInstanceMigrationPhase status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Phase", + "type": "string", + "description": "The current phase of VM instance migration", + "jsonPath": ".status.phase" + }, + { + "name": "VMI", + "type": "string", + "description": "The name of the VMI to perform the migration on", + "jsonPath": ".spec.vmiName" + } + ] + }, + { + "name": "v1alpha3", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 is now deprecated and will be removed in a future release.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstanceMigration represents the object tracking a VMI's migration to another host in the cluster", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "properties": { + "vmiName": { + "description": "The name of the VMI to perform the migration on. VMI must exist in the migration objects namespace", + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineInstanceMigration reprents information pertaining to a VMI's migration.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "migrationState": { + "description": "Represents the status of a live migration", + "type": "object", + "properties": { + "abortRequested": { + "description": "Indicates that the migration has been requested to abort", + "type": "boolean" + }, + "abortStatus": { + "description": "Indicates the final status of the live migration abortion", + "type": "string" + }, + "completed": { + "description": "Indicates the migration completed", + "type": "boolean" + }, + "endTimestamp": { + "description": "The time the migration action ended", + "type": "string", + "format": "date-time", + "nullable": true + }, + "failed": { + "description": "Indicates that the migration failed", + "type": "boolean" + }, + "migrationConfiguration": { + "description": "Migration configurations to apply", + "type": "object", + "properties": { + "allowAutoConverge": { + "description": "AllowAutoConverge allows the platform to compromise performance/availability of VMIs to guarantee successful VMI live migrations. Defaults to false", + "type": "boolean" + }, + "allowPostCopy": { + "description": "AllowPostCopy enables post-copy live migrations. Such migrations allow even the busiest VMIs to successfully live-migrate. However, events like a network failure can cause a VMI crash. If set to true, migrations will still start in pre-copy, but switch to post-copy when CompletionTimeoutPerGiB triggers. Defaults to false", + "type": "boolean" + }, + "bandwidthPerMigration": { + "description": "BandwidthPerMigration limits the amount of network bandwidth live migrations are allowed to use. The value is in quantity per second. Defaults to 0 (no limit)", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "description": "CompletionTimeoutPerGiB is the maximum number of seconds per GiB a migration is allowed to take. If a live-migration takes longer to migrate than this value multiplied by the size of the VMI, the migration will be cancelled, unless AllowPostCopy is true. Defaults to 800", + "type": "integer", + "format": "int64" + }, + "disableTLS": { + "description": "When set to true, DisableTLS will disable the additional layer of live migration encryption provided by KubeVirt. This is usually a bad idea. Defaults to false", + "type": "boolean" + }, + "matchSELinuxLevelOnMigration": { + "description": "By default, the SELinux level of target virt-launcher pods is forced to the level of the source virt-launcher. When set to true, MatchSELinuxLevelOnMigration lets the CRI auto-assign a random level to the target. That will ensure the target virt-launcher doesn't share categories with another pod on the node. However, migrations will fail when using RWX volumes that don't automatically deal with SELinux levels.", + "type": "boolean" + }, + "network": { + "description": "Network is the name of the CNI network to use for live migrations. By default, migrations go through the pod network.", + "type": "string" + }, + "nodeDrainTaintKey": { + "description": "NodeDrainTaintKey defines the taint key that indicates a node should be drained. Note: this option relies on the deprecated node taint feature. Default: kubevirt.io/drain", + "type": "string" + }, + "parallelMigrationsPerCluster": { + "description": "ParallelMigrationsPerCluster is the total number of concurrent live migrations allowed cluster-wide. Defaults to 5", + "type": "integer", + "format": "int32" + }, + "parallelOutboundMigrationsPerNode": { + "description": "ParallelOutboundMigrationsPerNode is the maximum number of concurrent outgoing live migrations allowed per node. Defaults to 2", + "type": "integer", + "format": "int32" + }, + "progressTimeout": { + "description": "ProgressTimeout is the maximum number of seconds a live migration is allowed to make no progress. Hitting this timeout means a migration transferred 0 data for that many seconds. The migration is then considered stuck and therefore cancelled. Defaults to 150", + "type": "integer", + "format": "int64" + }, + "unsafeMigrationOverride": { + "description": "UnsafeMigrationOverride allows live migrations to occur even if the compatibility check indicates the migration will be unsafe to the guest. Defaults to false", + "type": "boolean" + } + } + }, + "migrationPolicyName": { + "description": "Name of the migration policy. If string is empty, no policy is matched", + "type": "string" + }, + "migrationUid": { + "description": "The VirtualMachineInstanceMigration object associated with this migration", + "type": "string" + }, + "mode": { + "description": "Lets us know if the vmi is currently running pre or post copy migration", + "type": "string" + }, + "sourceNode": { + "description": "The source node that the VMI originated on", + "type": "string" + }, + "startTimestamp": { + "description": "The time the migration action began", + "type": "string", + "format": "date-time", + "nullable": true + }, + "targetAttachmentPodUID": { + "description": "The UID of the target attachment pod for hotplug volumes", + "type": "string" + }, + "targetCPUSet": { + "description": "If the VMI requires dedicated CPUs, this field will hold the dedicated CPU set on the target node", + "type": "array", + "items": { + "type": "integer" + }, + "x-kubernetes-list-type": "atomic" + }, + "targetDirectMigrationNodePorts": { + "description": "The list of ports opened for live migration on the destination node", + "type": "object", + "additionalProperties": { + "type": "integer" + } + }, + "targetNode": { + "description": "The target node that the VMI is moving to", + "type": "string" + }, + "targetNodeAddress": { + "description": "The address of the target node to use for the migration", + "type": "string" + }, + "targetNodeDomainDetected": { + "description": "The Target Node has seen the Domain Start Event", + "type": "boolean" + }, + "targetNodeDomainReadyTimestamp": { + "description": "The timestamp at which the target node detects the domain is active", + "type": "string", + "format": "date-time" + }, + "targetNodeTopology": { + "description": "If the VMI requires dedicated CPUs, this field will hold the numa topology on the target node", + "type": "string" + }, + "targetPod": { + "description": "The target pod that the VMI is moving to", + "type": "string" + } + } + }, + "phase": { + "description": "VirtualMachineInstanceMigrationPhase is a label for the condition of a VirtualMachineInstanceMigration at the current time.", + "type": "string" + }, + "phaseTransitionTimestamps": { + "description": "PhaseTransitionTimestamp is the timestamp of when the last phase change occurred", + "type": "array", + "items": { + "description": "VirtualMachineInstanceMigrationPhaseTransitionTimestamp gives a timestamp in relation to when a phase is set on a vmi", + "type": "object", + "properties": { + "phase": { + "description": "Phase is the status of the VirtualMachineInstanceMigrationPhase in kubernetes world. It is not the VirtualMachineInstanceMigrationPhase status, but partially correlates to it.", + "type": "string" + }, + "phaseTransitionTimestamp": { + "description": "PhaseTransitionTimestamp is the timestamp of when the phase change occurred", + "type": "string", + "format": "date-time" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Phase", + "type": "string", + "description": "The current phase of VM instance migration", + "jsonPath": ".status.phase" + }, + { + "name": "VMI", + "type": "string", + "description": "The name of the VMI to perform the migration on", + "jsonPath": ".spec.vmiName" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineinstancemigrations", + "singular": "virtualmachineinstancemigration", + "shortNames": [ + "vmim", + "vmims" + ], + "kind": "VirtualMachineInstanceMigration", + "listKind": "VirtualMachineInstanceMigrationList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Phase", + "type": "string", + "description": "The current phase of VM instance migration", + "jsonPath": ".status.phase" + }, + { + "name": "VMI", + "type": "string", + "description": "The name of the VMI to perform the migration on", + "jsonPath": ".spec.vmiName" + } + ], + "short": "VirtualMachineInstanceMigration", + "apiGroup": "kubevirt.io", + "apiKind": "VirtualMachineInstanceMigration", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.v1.VirtualMachineInstancePreset", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector" + ], + "properties": { + "domain": { + "description": "Domain is the same object type as contained in VirtualMachineInstanceSpec", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "selector": { + "description": "Selector is a label query over a set of VMIs. Required.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + } + }, + "description": "Deprecated for removal in v2, please use VirtualMachineInstanceType and VirtualMachinePreference instead. \n VirtualMachineInstancePreset defines a VMI spec.domain to be applied to all VMIs that match the provided label selector More info: https://kubevirt.io/user-guide/virtual_machines/presets/#overrides", + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "VirtualMachineInstancePreset", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineinstancepresets.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "virtualmachineinstancepresets", + "singular": "virtualmachineinstancepreset", + "shortNames": [ + "vmipreset", + "vmipresets" + ], + "kind": "VirtualMachineInstancePreset", + "listKind": "VirtualMachineInstancePresetList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1 VirtualMachineInstancePresets is now deprecated and will be removed in v2.", + "schema": { + "openAPIV3Schema": { + "description": "Deprecated for removal in v2, please use VirtualMachineInstanceType and VirtualMachinePreference instead. \n VirtualMachineInstancePreset defines a VMI spec.domain to be applied to all VMIs that match the provided label selector More info: https://kubevirt.io/user-guide/virtual_machines/presets/#overrides", + "type": "object", + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector" + ], + "properties": { + "domain": { + "description": "Domain is the same object type as contained in VirtualMachineInstanceSpec", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "selector": { + "description": "Selector is a label query over a set of VMIs. Required.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + } + } + } + } + }, + { + "name": "v1alpha3", + "served": true, + "storage": true, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 VirtualMachineInstancePresets is now deprecated and will be removed in v2.", + "schema": { + "openAPIV3Schema": { + "description": "Deprecated for removal in v2, please use VirtualMachineInstanceType and VirtualMachinePreference instead. \n VirtualMachineInstancePreset defines a VMI spec.domain to be applied to all VMIs that match the provided label selector More info: https://kubevirt.io/user-guide/virtual_machines/presets/#overrides", + "type": "object", + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector" + ], + "properties": { + "domain": { + "description": "Domain is the same object type as contained in VirtualMachineInstanceSpec", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "selector": { + "description": "Selector is a label query over a set of VMIs. Required.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineinstancepresets", + "singular": "virtualmachineinstancepreset", + "shortNames": [ + "vmipreset", + "vmipresets" + ], + "kind": "VirtualMachineInstancePreset", + "listKind": "VirtualMachineInstancePresetList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha3" + ] + } + }, + "short": "VirtualMachineInstancePreset", + "apiGroup": "kubevirt.io", + "apiKind": "VirtualMachineInstancePreset", + "apiVersion": "v1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.v1.VirtualMachineInstanceReplicaSet", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector", + "template" + ], + "properties": { + "paused": { + "description": "Indicates that the replica set is paused.", + "type": "boolean" + }, + "replicas": { + "description": "Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.", + "type": "integer", + "format": "int32" + }, + "selector": { + "description": "Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "template": { + "description": "Template describes the pods that will be created.", + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users." + } + }, + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "kubevirt.io", + "kind": "VirtualMachineInstanceReplicaSet", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineinstancereplicasets.kubevirt.io" + }, + "spec": { + "group": "kubevirt.io", + "names": { + "plural": "virtualmachineinstancereplicasets", + "singular": "virtualmachineinstancereplicaset", + "shortNames": [ + "vmirs", + "vmirss" + ], + "kind": "VirtualMachineInstanceReplicaSet", + "listKind": "VirtualMachineInstanceReplicaSetList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector", + "template" + ], + "properties": { + "paused": { + "description": "Indicates that the replica set is paused.", + "type": "boolean" + }, + "replicas": { + "description": "Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.", + "type": "integer", + "format": "int32" + }, + "selector": { + "description": "Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "template": { + "description": "Template describes the pods that will be created.", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "labelSelector": { + "description": "Canonical form of the label selector for HPA which consumes it through the scale subresource.", + "type": "string" + }, + "readyReplicas": { + "description": "The number of ready replicas for this replica set.", + "type": "integer", + "format": "int32" + }, + "replicas": { + "description": "Total number of non-terminated pods targeted by this deployment (their labels match the selector).", + "type": "integer", + "format": "int32" + } + }, + "nullable": true + } + } + } + }, + "subresources": { + "status": {}, + "scale": { + "specReplicasPath": ".spec.replicas", + "statusReplicasPath": ".status.replicas", + "labelSelectorPath": ".status.labelSelector" + } + }, + "additionalPrinterColumns": [ + { + "name": "Desired", + "type": "integer", + "description": "Number of desired VirtualMachineInstances", + "jsonPath": ".spec.replicas" + }, + { + "name": "Current", + "type": "integer", + "description": "Number of managed and not final or deleted VirtualMachineInstances", + "jsonPath": ".status.replicas" + }, + { + "name": "Ready", + "type": "integer", + "description": "Number of managed VirtualMachineInstances which are ready to receive traffic", + "jsonPath": ".status.readyReplicas" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ] + }, + { + "name": "v1alpha3", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "kubevirt.io/v1alpha3 is now deprecated and will be removed in a future release.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstance is *the* VirtualMachineInstance Definition. It represents a virtual machine in the runtime environment of kubernetes.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "selector", + "template" + ], + "properties": { + "paused": { + "description": "Indicates that the replica set is paused.", + "type": "boolean" + }, + "replicas": { + "description": "Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.", + "type": "integer", + "format": "int32" + }, + "selector": { + "description": "Label selector for pods. Existing ReplicaSets whose pods are selected by this will be the ones affected by this deployment.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "template": { + "description": "Template describes the pods that will be created.", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status is the high level overview of how the VirtualMachineInstance is doing. It contains information available to controllers and users.", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "labelSelector": { + "description": "Canonical form of the label selector for HPA which consumes it through the scale subresource.", + "type": "string" + }, + "readyReplicas": { + "description": "The number of ready replicas for this replica set.", + "type": "integer", + "format": "int32" + }, + "replicas": { + "description": "Total number of non-terminated pods targeted by this deployment (their labels match the selector).", + "type": "integer", + "format": "int32" + } + }, + "nullable": true + } + } + } + }, + "subresources": { + "status": {}, + "scale": { + "specReplicasPath": ".spec.replicas", + "statusReplicasPath": ".status.replicas", + "labelSelectorPath": ".status.labelSelector" + } + }, + "additionalPrinterColumns": [ + { + "name": "Desired", + "type": "integer", + "description": "Number of desired VirtualMachineInstances", + "jsonPath": ".spec.replicas" + }, + { + "name": "Current", + "type": "integer", + "description": "Number of managed and not final or deleted VirtualMachineInstances", + "jsonPath": ".status.replicas" + }, + { + "name": "Ready", + "type": "integer", + "description": "Number of managed VirtualMachineInstances which are ready to receive traffic", + "jsonPath": ".status.readyReplicas" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineinstancereplicasets", + "singular": "virtualmachineinstancereplicaset", + "shortNames": [ + "vmirs", + "vmirss" + ], + "kind": "VirtualMachineInstanceReplicaSet", + "listKind": "VirtualMachineInstanceReplicaSetList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Desired", + "type": "integer", + "description": "Number of desired VirtualMachineInstances", + "jsonPath": ".spec.replicas" + }, + { + "name": "Current", + "type": "integer", + "description": "Number of managed and not final or deleted VirtualMachineInstances", + "jsonPath": ".status.replicas" + }, + { + "name": "Ready", + "type": "integer", + "description": "Number of managed VirtualMachineInstances which are ready to receive traffic", + "jsonPath": ".status.readyReplicas" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ], + "short": "VirtualMachineInstanceReplicaSet", + "apiGroup": "kubevirt.io", + "apiKind": "VirtualMachineInstanceReplicaSet", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.clone.v1alpha1.VirtualMachineClone", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "required": [ + "source" + ], + "properties": { + "annotationFilters": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "labelFilters": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "newMacAddresses": { + "description": "NewMacAddresses manually sets that target interfaces' mac addresses. The key is the interface name and the value is the new mac address. If this field is not specified, a new MAC address will be generated automatically, as for any interface that is not included in this map.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "newSMBiosSerial": { + "description": "NewSMBiosSerial manually sets that target's SMbios serial. If this field is not specified, a new serial will be generated automatically.", + "type": "string" + }, + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "target": { + "description": "If the target is not provided, a random name would be generated for the target. The target's name can be viewed by inspecting status \"TargetName\" field below.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + } + } + }, + "status": { + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "creationTime": { + "format": "date-time" + }, + "phase": { + "type": "string" + }, + "restoreName": {}, + "snapshotName": {}, + "targetName": {} + } + } + }, + "description": "VirtualMachineClone is a CRD that clones one VM into another.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "clone.kubevirt.io", + "kind": "VirtualMachineClone", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineclones.clone.kubevirt.io" + }, + "spec": { + "group": "clone.kubevirt.io", + "names": { + "plural": "virtualmachineclones", + "singular": "virtualmachineclone", + "shortNames": [ + "vmclone", + "vmclones" + ], + "kind": "VirtualMachineClone", + "listKind": "VirtualMachineCloneList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClone is a CRD that clones one VM into another.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "required": [ + "source" + ], + "properties": { + "annotationFilters": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "labelFilters": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "newMacAddresses": { + "description": "NewMacAddresses manually sets that target interfaces' mac addresses. The key is the interface name and the value is the new mac address. If this field is not specified, a new MAC address will be generated automatically, as for any interface that is not included in this map.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "newSMBiosSerial": { + "description": "NewSMBiosSerial manually sets that target's SMbios serial. If this field is not specified, a new serial will be generated automatically.", + "type": "string" + }, + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "target": { + "description": "If the target is not provided, a random name would be generated for the target. The target's name can be viewed by inspecting status \"TargetName\" field below.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + } + } + }, + "status": { + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "creationTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "phase": { + "type": "string" + }, + "restoreName": { + "type": "string", + "nullable": true + }, + "snapshotName": { + "type": "string", + "nullable": true + }, + "targetName": { + "type": "string", + "nullable": true + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "SourceVirtualMachine", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "TargetVirtualMachine", + "type": "string", + "jsonPath": ".spec.target.name" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineclones", + "singular": "virtualmachineclone", + "shortNames": [ + "vmclone", + "vmclones" + ], + "kind": "VirtualMachineClone", + "listKind": "VirtualMachineCloneList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "SourceVirtualMachine", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "TargetVirtualMachine", + "type": "string", + "jsonPath": ".spec.target.name" + } + ], + "short": "VirtualMachineClone", + "apiGroup": "clone.kubevirt.io", + "apiKind": "VirtualMachineClone", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.export.v1alpha1.VirtualMachineExport", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineExportSpec is the spec for a VirtualMachineExport resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "tokenSecretRef": { + "description": "TokenSecretRef is the name of the custom-defined secret that contains the token used by the export server pod", + "type": "string" + }, + "ttlDuration": { + "description": "ttlDuration limits the lifetime of an export If this field is set, after this duration has passed from counting from CreationTimestamp, the export is eligible to be automatically deleted. If this field is omitted, a reasonable default is applied.", + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineExportStatus is the status for a VirtualMachineExport resource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "links": { + "description": "VirtualMachineExportLinks contains the links that point the exported VM resources", + "type": "object", + "properties": { + "external": { + "description": "VirtualMachineExportLink contains a list of volumes available for export, as well as the URLs to obtain these volumes", + "type": "object", + "required": [ + "cert" + ], + "properties": { + "cert": { + "description": "Cert is the public CA certificate base64 encoded", + "type": "string" + }, + "manifests": { + "description": "Manifests is a list of available manifests for the export", + "type": "array", + "items": { + "description": "VirtualMachineExportManifest contains the type and URL of the exported manifest", + "type": "object", + "required": [ + "type", + "url" + ], + "properties": { + "type": { + "description": "Type is the type of manifest returned", + "type": "string" + }, + "url": { + "description": "Url is the url of the endpoint that returns the manifest", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "Volumes is a list of available volumes to export", + "type": "array", + "items": { + "description": "VirtualMachineExportVolume contains the name and available formats for the exported volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "formats": { + "type": "array", + "items": { + "description": "VirtualMachineExportVolumeFormat contains the format type and URL to get the volume in that format", + "type": "object", + "required": [ + "format", + "url" + ], + "properties": { + "format": { + "description": "Format is the format of the image at the specified URL", + "type": "string" + }, + "url": { + "description": "Url is the url that contains the volume in the format specified", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "format" + ], + "x-kubernetes-list-type": "map" + }, + "name": { + "description": "Name is the name of the exported volume", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + } + } + }, + "internal": { + "description": "VirtualMachineExportLink contains a list of volumes available for export, as well as the URLs to obtain these volumes", + "type": "object", + "required": [ + "cert" + ], + "properties": { + "cert": { + "description": "Cert is the public CA certificate base64 encoded", + "type": "string" + }, + "manifests": { + "description": "Manifests is a list of available manifests for the export", + "type": "array", + "items": { + "description": "VirtualMachineExportManifest contains the type and URL of the exported manifest", + "type": "object", + "required": [ + "type", + "url" + ], + "properties": { + "type": { + "description": "Type is the type of manifest returned", + "type": "string" + }, + "url": { + "description": "Url is the url of the endpoint that returns the manifest", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "Volumes is a list of available volumes to export", + "type": "array", + "items": { + "description": "VirtualMachineExportVolume contains the name and available formats for the exported volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "formats": { + "type": "array", + "items": { + "description": "VirtualMachineExportVolumeFormat contains the format type and URL to get the volume in that format", + "type": "object", + "required": [ + "format", + "url" + ], + "properties": { + "format": { + "description": "Format is the format of the image at the specified URL", + "type": "string" + }, + "url": { + "description": "Url is the url that contains the volume in the format specified", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "format" + ], + "x-kubernetes-list-type": "map" + }, + "name": { + "description": "Name is the name of the exported volume", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + } + } + } + } + }, + "phase": { + "description": "VirtualMachineExportPhase is the current phase of the VirtualMachineExport", + "type": "string" + }, + "serviceName": { + "description": "ServiceName is the name of the service created associated with the Virtual Machine export. It will be used to create the internal URLs for downloading the images", + "type": "string" + }, + "tokenSecretRef": { + "description": "TokenSecretRef is the name of the secret that contains the token used by the export server pod", + "type": "string" + }, + "ttlExpirationTime": { + "description": "The time at which the VM Export will be completely removed according to specified TTL Formula is CreationTimestamp + TTL", + "type": "string", + "format": "date-time" + }, + "virtualMachineName": { + "description": "VirtualMachineName shows the name of the source virtual machine if the source is either a VirtualMachine or a VirtualMachineSnapshot. This is mainly to easily identify the source VirtualMachine in case of a VirtualMachineSnapshot", + "type": "string" + } + } + } + }, + "description": "VirtualMachineExport defines the operation of exporting a VM source", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "export.kubevirt.io", + "kind": "VirtualMachineExport", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineexports.export.kubevirt.io" + }, + "spec": { + "group": "export.kubevirt.io", + "names": { + "plural": "virtualmachineexports", + "singular": "virtualmachineexport", + "shortNames": [ + "vmexport", + "vmexports" + ], + "kind": "VirtualMachineExport", + "listKind": "VirtualMachineExportList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineExport defines the operation of exporting a VM source", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineExportSpec is the spec for a VirtualMachineExport resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "tokenSecretRef": { + "description": "TokenSecretRef is the name of the custom-defined secret that contains the token used by the export server pod", + "type": "string" + }, + "ttlDuration": { + "description": "ttlDuration limits the lifetime of an export If this field is set, after this duration has passed from counting from CreationTimestamp, the export is eligible to be automatically deleted. If this field is omitted, a reasonable default is applied.", + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineExportStatus is the status for a VirtualMachineExport resource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "links": { + "description": "VirtualMachineExportLinks contains the links that point the exported VM resources", + "type": "object", + "properties": { + "external": { + "description": "VirtualMachineExportLink contains a list of volumes available for export, as well as the URLs to obtain these volumes", + "type": "object", + "required": [ + "cert" + ], + "properties": { + "cert": { + "description": "Cert is the public CA certificate base64 encoded", + "type": "string" + }, + "manifests": { + "description": "Manifests is a list of available manifests for the export", + "type": "array", + "items": { + "description": "VirtualMachineExportManifest contains the type and URL of the exported manifest", + "type": "object", + "required": [ + "type", + "url" + ], + "properties": { + "type": { + "description": "Type is the type of manifest returned", + "type": "string" + }, + "url": { + "description": "Url is the url of the endpoint that returns the manifest", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "Volumes is a list of available volumes to export", + "type": "array", + "items": { + "description": "VirtualMachineExportVolume contains the name and available formats for the exported volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "formats": { + "type": "array", + "items": { + "description": "VirtualMachineExportVolumeFormat contains the format type and URL to get the volume in that format", + "type": "object", + "required": [ + "format", + "url" + ], + "properties": { + "format": { + "description": "Format is the format of the image at the specified URL", + "type": "string" + }, + "url": { + "description": "Url is the url that contains the volume in the format specified", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "format" + ], + "x-kubernetes-list-type": "map" + }, + "name": { + "description": "Name is the name of the exported volume", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + } + } + }, + "internal": { + "description": "VirtualMachineExportLink contains a list of volumes available for export, as well as the URLs to obtain these volumes", + "type": "object", + "required": [ + "cert" + ], + "properties": { + "cert": { + "description": "Cert is the public CA certificate base64 encoded", + "type": "string" + }, + "manifests": { + "description": "Manifests is a list of available manifests for the export", + "type": "array", + "items": { + "description": "VirtualMachineExportManifest contains the type and URL of the exported manifest", + "type": "object", + "required": [ + "type", + "url" + ], + "properties": { + "type": { + "description": "Type is the type of manifest returned", + "type": "string" + }, + "url": { + "description": "Url is the url of the endpoint that returns the manifest", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "type" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "Volumes is a list of available volumes to export", + "type": "array", + "items": { + "description": "VirtualMachineExportVolume contains the name and available formats for the exported volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "formats": { + "type": "array", + "items": { + "description": "VirtualMachineExportVolumeFormat contains the format type and URL to get the volume in that format", + "type": "object", + "required": [ + "format", + "url" + ], + "properties": { + "format": { + "description": "Format is the format of the image at the specified URL", + "type": "string" + }, + "url": { + "description": "Url is the url that contains the volume in the format specified", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "format" + ], + "x-kubernetes-list-type": "map" + }, + "name": { + "description": "Name is the name of the exported volume", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + } + } + } + } + }, + "phase": { + "description": "VirtualMachineExportPhase is the current phase of the VirtualMachineExport", + "type": "string" + }, + "serviceName": { + "description": "ServiceName is the name of the service created associated with the Virtual Machine export. It will be used to create the internal URLs for downloading the images", + "type": "string" + }, + "tokenSecretRef": { + "description": "TokenSecretRef is the name of the secret that contains the token used by the export server pod", + "type": "string" + }, + "ttlExpirationTime": { + "description": "The time at which the VM Export will be completely removed according to specified TTL Formula is CreationTimestamp + TTL", + "type": "string", + "format": "date-time" + }, + "virtualMachineName": { + "description": "VirtualMachineName shows the name of the source virtual machine if the source is either a VirtualMachine or a VirtualMachineSnapshot. This is mainly to easily identify the source VirtualMachine in case of a VirtualMachineSnapshot", + "type": "string" + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "SourceKind", + "type": "string", + "jsonPath": ".spec.source.kind" + }, + { + "name": "SourceName", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineexports", + "singular": "virtualmachineexport", + "shortNames": [ + "vmexport", + "vmexports" + ], + "kind": "VirtualMachineExport", + "listKind": "VirtualMachineExportList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "SourceKind", + "type": "string", + "jsonPath": ".spec.source.kind" + }, + { + "name": "SourceName", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ], + "short": "VirtualMachineExport", + "apiGroup": "export.kubevirt.io", + "apiKind": "VirtualMachineExport", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.instancetype.v1beta1.VirtualMachineClusterInstancetype", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + }, + "description": "VirtualMachineClusterInstancetype is a cluster scoped version of VirtualMachineInstancetype resource.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "instancetype.kubevirt.io", + "kind": "VirtualMachineClusterInstancetype", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineclusterinstancetypes.instancetype.kubevirt.io" + }, + "spec": { + "group": "instancetype.kubevirt.io", + "names": { + "plural": "virtualmachineclusterinstancetypes", + "singular": "virtualmachineclusterinstancetype", + "shortNames": [ + "vmclusterinstancetype", + "vmclusterinstancetypes", + "vmcf", + "vmcfs" + ], + "kind": "VirtualMachineClusterInstancetype", + "listKind": "VirtualMachineClusterInstancetypeList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha1 VirtualMachineClusterInstanceTypes is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterInstancetype is a cluster scoped version of VirtualMachineInstancetype resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + }, + { + "name": "v1alpha2", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha2 VirtualMachineClusterInstanceTypes is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterInstancetype is a cluster scoped version of VirtualMachineInstancetype resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + }, + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterInstancetype is a cluster scoped version of VirtualMachineInstancetype resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineclusterinstancetypes", + "singular": "virtualmachineclusterinstancetype", + "shortNames": [ + "vmclusterinstancetype", + "vmclusterinstancetypes", + "vmcf", + "vmcfs" + ], + "kind": "VirtualMachineClusterInstancetype", + "listKind": "VirtualMachineClusterInstancetypeList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VirtualMachineClusterInstancetype", + "apiGroup": "instancetype.kubevirt.io", + "apiKind": "VirtualMachineClusterInstancetype", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.instancetype.v1beta1.VirtualMachineClusterPreference", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + }, + "description": "VirtualMachineClusterPreference is a cluster scoped version of the VirtualMachinePreference resource.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "instancetype.kubevirt.io", + "kind": "VirtualMachineClusterPreference", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineclusterpreferences.instancetype.kubevirt.io" + }, + "spec": { + "group": "instancetype.kubevirt.io", + "names": { + "plural": "virtualmachineclusterpreferences", + "singular": "virtualmachineclusterpreference", + "shortNames": [ + "vmcp", + "vmcps" + ], + "kind": "VirtualMachineClusterPreference", + "listKind": "VirtualMachineClusterPreferenceList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha1 VirtualMachineClusterPreferences is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterPreference is a cluster scoped version of the VirtualMachinePreference resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + }, + { + "name": "v1alpha2", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha2 VirtualMachineClusterPreferences is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterPreference is a cluster scoped version of the VirtualMachinePreference resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + }, + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineClusterPreference is a cluster scoped version of the VirtualMachinePreference resource.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineclusterpreferences", + "singular": "virtualmachineclusterpreference", + "shortNames": [ + "vmcp", + "vmcps" + ], + "kind": "VirtualMachineClusterPreference", + "listKind": "VirtualMachineClusterPreferenceList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VirtualMachineClusterPreference", + "apiGroup": "instancetype.kubevirt.io", + "apiKind": "VirtualMachineClusterPreference", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.instancetype.v1beta1.VirtualMachineInstancetype", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + }, + "description": "VirtualMachineInstancetype resource contains quantitative and resource related VirtualMachine configuration that can be used by multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "instancetype.kubevirt.io", + "kind": "VirtualMachineInstancetype", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachineinstancetypes.instancetype.kubevirt.io" + }, + "spec": { + "group": "instancetype.kubevirt.io", + "names": { + "plural": "virtualmachineinstancetypes", + "singular": "virtualmachineinstancetype", + "shortNames": [ + "vminstancetype", + "vminstancetypes", + "vmf", + "vmfs" + ], + "kind": "VirtualMachineInstancetype", + "listKind": "VirtualMachineInstancetypeList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha1 VirtualMachineInstancetypes is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstancetype resource contains quantitative and resource related VirtualMachine configuration that can be used by multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + }, + { + "name": "v1alpha2", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha2 VirtualMachineInstancetypes is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstancetype resource contains quantitative and resource related VirtualMachine configuration that can be used by multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + }, + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineInstancetype resource contains quantitative and resource related VirtualMachine configuration that can be used by multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the instancetype", + "type": "object", + "required": [ + "cpu", + "memory" + ], + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "dedicatedCPUPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "guest": { + "description": "Required number of vCPUs to expose to the guest. \n The resulting CPU topology being derived from the optional PreferredCPUTopology attribute of CPUPreferences that itself defaults to PreferSockets.", + "type": "integer", + "format": "int32" + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + } + } + }, + "gpus": { + "description": "Optionally defines any GPU devices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Optionally defines any HostDevices associated with the instancetype.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ioThreadsPolicy": { + "description": "Optionally defines the IOThreadsPolicy to be used by the instancetype.", + "type": "string" + }, + "launchSecurity": { + "description": "Optionally defines the LaunchSecurity to be used by the instancetype.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Required amount of memory which is visible inside the guest OS.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Optionally enables the use of hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + }, + "overcommitPercent": { + "description": "OvercommitPercent is the percentage of the guest memory which will be overcommitted. This means that the VMIs parent pod (virt-launcher) will request less physical memory by a factor specified by the OvercommitPercent. Overcommits can lead to memory exhaustion, which in turn can lead to crashes. Use carefully. Defaults to 0", + "type": "integer", + "maximum": 100, + "minimum": 0 + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachineinstancetypes", + "singular": "virtualmachineinstancetype", + "shortNames": [ + "vminstancetype", + "vminstancetypes", + "vmf", + "vmfs" + ], + "kind": "VirtualMachineInstancetype", + "listKind": "VirtualMachineInstancetypeList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VirtualMachineInstancetype", + "apiGroup": "instancetype.kubevirt.io", + "apiKind": "VirtualMachineInstancetype", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.instancetype.v1beta1.VirtualMachinePreference", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + }, + "description": "VirtualMachinePreference resource contains optional preferences related to the VirtualMachine.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "instancetype.kubevirt.io", + "kind": "VirtualMachinePreference", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachinepreferences.instancetype.kubevirt.io" + }, + "spec": { + "group": "instancetype.kubevirt.io", + "names": { + "plural": "virtualmachinepreferences", + "singular": "virtualmachinepreference", + "shortNames": [ + "vmpref", + "vmprefs", + "vmp", + "vmps" + ], + "kind": "VirtualMachinePreference", + "listKind": "VirtualMachinePreferenceList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha1 VirtualMachinePreferences is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachinePreference resource contains optional preferences related to the VirtualMachine.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + }, + { + "name": "v1alpha2", + "served": true, + "storage": false, + "deprecated": true, + "deprecationWarning": "instancetype.kubevirt.io/v1alpha2 VirtualMachinePreferences is now deprecated and will be removed in v1.", + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachinePreference resource contains optional preferences related to the VirtualMachine.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + }, + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachinePreference resource contains optional preferences related to the VirtualMachine.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "Required spec describing the preferences", + "type": "object", + "properties": { + "clock": { + "description": "Clock optionally defines preferences associated with the Clock attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredClockOffset": { + "description": "ClockOffset allows specifying the UTC offset or the timezone of the guest clock.", + "type": "object", + "properties": { + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "preferredTimer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + } + } + }, + "cpu": { + "description": "CPU optionally defines preferences associated with the CPU attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredCPUFeatures": { + "description": "PreferredCPUFeatures optionally defines a slice of preferred CPU features.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "preferredCPUTopology": { + "description": "PreferredCPUTopology optionally defines the preferred guest visible CPU topology, defaults to PreferSockets.", + "type": "string" + } + } + }, + "devices": { + "description": "Devices optionally defines preferences associated with the Devices attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAutoattachGraphicsDevice": { + "description": "PreferredAutoattachGraphicsDevice optionally defines the preferred value of AutoattachGraphicsDevice", + "type": "boolean" + }, + "preferredAutoattachInputDevice": { + "description": "PreferredAutoattachInputDevice optionally defines the preferred value of AutoattachInputDevice", + "type": "boolean" + }, + "preferredAutoattachMemBalloon": { + "description": "PreferredAutoattachMemBalloon optionally defines the preferred value of AutoattachMemBalloon", + "type": "boolean" + }, + "preferredAutoattachPodInterface": { + "description": "PreferredAutoattachPodInterface optionally defines the preferred value of AutoattachPodInterface", + "type": "boolean" + }, + "preferredAutoattachSerialConsole": { + "description": "PreferredAutoattachSerialConsole optionally defines the preferred value of AutoattachSerialConsole", + "type": "boolean" + }, + "preferredBlockMultiQueue": { + "description": "PreferredBlockMultiQueue optionally enables the vhost multiqueue feature for virtio disks.", + "type": "boolean" + }, + "preferredCdromBus": { + "description": "PreferredCdromBus optionally defines the preferred bus for Cdrom Disk devices.", + "type": "string" + }, + "preferredDisableHotplug": { + "description": "PreferredDisableHotplug optionally defines the preferred value of DisableHotplug", + "type": "boolean" + }, + "preferredDiskBlockSize": { + "description": "PreferredBlockSize optionally defines the block size of Disk devices.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredDiskBus": { + "description": "PreferredDiskBus optionally defines the preferred bus for Disk Disk devices.", + "type": "string" + }, + "preferredDiskCache": { + "description": "PreferredCache optionally defines the DriverCache to be used by Disk devices.", + "type": "string" + }, + "preferredDiskDedicatedIoThread": { + "description": "PreferredDedicatedIoThread optionally enables dedicated IO threads for Disk devices.", + "type": "boolean" + }, + "preferredDiskIO": { + "description": "PreferredIo optionally defines the QEMU disk IO mode to be used by Disk devices.", + "type": "string" + }, + "preferredInputBus": { + "description": "PreferredInputBus optionally defines the preferred bus for Input devices.", + "type": "string" + }, + "preferredInputType": { + "description": "PreferredInputType optionally defines the preferred type for Input devices.", + "type": "string" + }, + "preferredInterfaceMasquerade": { + "description": "PreferredInterfaceMasquerade optionally defines the preferred masquerade configuration to use with each network interface.", + "type": "object" + }, + "preferredInterfaceModel": { + "description": "PreferredInterfaceModel optionally defines the preferred model to be used by Interface devices.", + "type": "string" + }, + "preferredLunBus": { + "description": "PreferredLunBus optionally defines the preferred bus for Lun Disk devices.", + "type": "string" + }, + "preferredNetworkInterfaceMultiQueue": { + "description": "PreferredNetworkInterfaceMultiQueue optionally enables the vhost multiqueue feature for virtio interfaces.", + "type": "boolean" + }, + "preferredRng": { + "description": "PreferredRng optionally defines the preferred rng device to be used.", + "type": "object" + }, + "preferredSoundModel": { + "description": "PreferredSoundModel optionally defines the preferred model for Sound devices.", + "type": "string" + }, + "preferredTPM": { + "description": "PreferredTPM optionally defines the preferred TPM device to be used.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "preferredUseVirtioTransitional": { + "description": "PreferredUseVirtioTransitional optionally defines the preferred value of UseVirtioTransitional", + "type": "boolean" + }, + "preferredVirtualGPUOptions": { + "description": "PreferredVirtualGPUOptions optionally defines the preferred value of VirtualGPUOptions", + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "features": { + "description": "Features optionally defines preferences associated with the Features attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredAcpi": { + "description": "PreferredAcpi optionally enables the ACPI feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredApic": { + "description": "PreferredApic optionally enables and configures the APIC feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "preferredHyperv": { + "description": "PreferredHyperv optionally enables and configures HyperV features", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "preferredKvm": { + "description": "PreferredKvm optionally enables and configures KVM features", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "preferredPvspinlock": { + "description": "PreferredPvspinlock optionally enables the Pvspinlock feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "preferredSmm": { + "description": "PreferredSmm optionally enables the SMM feature", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware optionally defines preferences associated with the Firmware attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredUseBios": { + "description": "PreferredUseBios optionally enables BIOS", + "type": "boolean" + }, + "preferredUseBiosSerial": { + "description": "PreferredUseBiosSerial optionally transmitts BIOS output over the serial. \n Requires PreferredUseBios to be enabled.", + "type": "boolean" + }, + "preferredUseEfi": { + "description": "PreferredUseEfi optionally enables EFI", + "type": "boolean" + }, + "preferredUseSecureBoot": { + "description": "PreferredUseSecureBoot optionally enables SecureBoot and the OVMF roms will be swapped for SecureBoot-enabled ones. \n Requires PreferredUseEfi and PreferredSmm to be enabled.", + "type": "boolean" + } + } + }, + "machine": { + "description": "Machine optionally defines preferences associated with the Machine attribute of a VirtualMachineInstance DomainSpec", + "type": "object", + "properties": { + "preferredMachineType": { + "description": "PreferredMachineType optionally defines the preferred machine type to use.", + "type": "string" + } + } + }, + "preferredSubdomain": { + "description": "Subdomain of the VirtualMachineInstance", + "type": "string" + }, + "preferredTerminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "requirements": { + "description": "Requirements defines the minium amount of instance type defined resources required by a set of preferences", + "type": "object", + "properties": { + "cpu": { + "description": "Required CPU related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal number of vCPUs required by the preference.", + "type": "integer", + "format": "int32" + } + } + }, + "memory": { + "description": "Required Memory related attributes of the instancetype.", + "type": "object", + "required": [ + "guest" + ], + "properties": { + "guest": { + "description": "Minimal amount of memory required by the preference.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + }, + "volumes": { + "description": "Volumes optionally defines preferences associated with the Volumes attribute of a VirtualMachineInstace DomainSpec", + "type": "object", + "properties": { + "preferredStorageClassName": { + "description": "PreffereedStorageClassName optionally defines the preferred storageClass", + "type": "string" + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachinepreferences", + "singular": "virtualmachinepreference", + "shortNames": [ + "vmpref", + "vmprefs", + "vmp", + "vmps" + ], + "kind": "VirtualMachinePreference", + "listKind": "VirtualMachinePreferenceList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VirtualMachinePreference", + "apiGroup": "instancetype.kubevirt.io", + "apiKind": "VirtualMachinePreference", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.migrations.v1alpha1.MigrationPolicy", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "required": [ + "selectors" + ], + "properties": { + "allowAutoConverge": { + "type": "boolean" + }, + "allowPostCopy": { + "type": "boolean" + }, + "bandwidthPerMigration": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "type": "integer", + "format": "int64" + }, + "selectors": { + "type": "object", + "properties": { + "namespaceSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "virtualMachineInstanceSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + }, + "status": {} + }, + "description": "MigrationPolicy holds migration policy (i.e. configurations) to apply to a VM or group of VMs", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "migrations.kubevirt.io", + "kind": "MigrationPolicy", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "migrationpolicies.migrations.kubevirt.io" + }, + "spec": { + "group": "migrations.kubevirt.io", + "names": { + "plural": "migrationpolicies", + "singular": "migrationpolicy", + "kind": "MigrationPolicy", + "listKind": "MigrationPolicyList", + "categories": [ + "all" + ] + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "MigrationPolicy holds migration policy (i.e. configurations) to apply to a VM or group of VMs", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "required": [ + "selectors" + ], + "properties": { + "allowAutoConverge": { + "type": "boolean" + }, + "allowPostCopy": { + "type": "boolean" + }, + "bandwidthPerMigration": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "completionTimeoutPerGiB": { + "type": "integer", + "format": "int64" + }, + "selectors": { + "type": "object", + "properties": { + "namespaceSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "virtualMachineInstanceSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + } + } + }, + "status": { + "type": "object", + "nullable": true + } + } + } + }, + "subresources": { + "status": {} + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "migrationpolicies", + "singular": "migrationpolicy", + "kind": "MigrationPolicy", + "listKind": "MigrationPolicyList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "short": "MigrationPolicy", + "apiGroup": "migrations.kubevirt.io", + "apiKind": "MigrationPolicy", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.pool.v1alpha1.VirtualMachinePool", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "type": "object", + "required": [ + "selector", + "virtualMachineTemplate" + ], + "properties": { + "paused": { + "description": "Indicates that the pool is paused.", + "type": "boolean" + }, + "replicas": { + "description": "Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.", + "type": "integer", + "format": "int32" + }, + "selector": { + "description": "Label selector for pods. Existing Poolss whose pods are selected by this will be the ones affected by this deployment.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "virtualMachineTemplate": { + "description": "Template describes the VM that will be created.", + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineSpec contains the VirtualMachine specification.", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "required": [ + "spec" + ] + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "labelSelector": { + "description": "Canonical form of the label selector for HPA which consumes it through the scale subresource.", + "type": "string" + }, + "readyReplicas": { + "type": "integer", + "format": "int32" + }, + "replicas": { + "type": "integer", + "format": "int32" + } + } + } + }, + "description": "VirtualMachinePool resource contains a VirtualMachine configuration that can be used to replicate multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "pool.kubevirt.io", + "kind": "VirtualMachinePool", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachinepools.pool.kubevirt.io" + }, + "spec": { + "group": "pool.kubevirt.io", + "names": { + "plural": "virtualmachinepools", + "singular": "virtualmachinepool", + "shortNames": [ + "vmpool", + "vmpools" + ], + "kind": "VirtualMachinePool", + "listKind": "VirtualMachinePoolList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachinePool resource contains a VirtualMachine configuration that can be used to replicate multiple VirtualMachine resources.", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "type": "object", + "required": [ + "selector", + "virtualMachineTemplate" + ], + "properties": { + "paused": { + "description": "Indicates that the pool is paused.", + "type": "boolean" + }, + "replicas": { + "description": "Number of desired pods. This is a pointer to distinguish between explicit zero and not specified. Defaults to 1.", + "type": "integer", + "format": "int32" + }, + "selector": { + "description": "Label selector for pods. Existing Poolss whose pods are selected by this will be the ones affected by this deployment.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "virtualMachineTemplate": { + "description": "Template describes the VM that will be created.", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineSpec contains the VirtualMachine specification.", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "DataVolumeSpec contains the DataVolume specification.", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeTemplateDummyStatus is here simply for backwards compatibility with a previous API.", + "type": "object", + "nullable": true + } + }, + "nullable": true + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "labelSelector": { + "description": "Canonical form of the label selector for HPA which consumes it through the scale subresource.", + "type": "string" + }, + "readyReplicas": { + "type": "integer", + "format": "int32" + }, + "replicas": { + "type": "integer", + "format": "int32" + } + } + } + } + } + }, + "subresources": { + "status": {}, + "scale": { + "specReplicasPath": ".spec.replicas", + "statusReplicasPath": ".status.replicas", + "labelSelectorPath": ".status.labelSelector" + } + }, + "additionalPrinterColumns": [ + { + "name": "Desired", + "type": "integer", + "description": "Number of desired VirtualMachines", + "jsonPath": ".spec.replicas" + }, + { + "name": "Current", + "type": "integer", + "description": "Number of managed and not final or deleted VirtualMachines", + "jsonPath": ".status.replicas" + }, + { + "name": "Ready", + "type": "integer", + "description": "Number of managed VirtualMachines which are ready to receive traffic", + "jsonPath": ".status.readyReplicas" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachinepools", + "singular": "virtualmachinepool", + "shortNames": [ + "vmpool", + "vmpools" + ], + "kind": "VirtualMachinePool", + "listKind": "VirtualMachinePoolList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "Desired", + "type": "integer", + "description": "Number of desired VirtualMachines", + "jsonPath": ".spec.replicas" + }, + { + "name": "Current", + "type": "integer", + "description": "Number of managed and not final or deleted VirtualMachines", + "jsonPath": ".status.replicas" + }, + { + "name": "Ready", + "type": "integer", + "description": "Number of managed VirtualMachines which are ready to receive traffic", + "jsonPath": ".status.readyReplicas" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ], + "short": "VirtualMachinePool", + "apiGroup": "pool.kubevirt.io", + "apiKind": "VirtualMachinePool", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.snapshot.v1alpha1.VirtualMachineRestore", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineRestoreSpec is the spec for a VirtualMachineRestoreresource", + "type": "object", + "required": [ + "target", + "virtualMachineSnapshotName" + ], + "properties": { + "patches": { + "description": "If the target for the restore does not exist, it will be created. Patches holds JSON patches that would be applied to the target manifest before it's created. Patches should fit the target's Kind. \n Example for a patch: {\"op\": \"replace\", \"path\": \"/metadata/name\", \"value\": \"new-vm-name\"}", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "target": { + "description": "initially only VirtualMachine type supported", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "virtualMachineSnapshotName": { + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineRestoreStatus is the spec for a VirtualMachineRestoreresource", + "type": "object", + "properties": { + "complete": { + "type": "boolean" + }, + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + } + }, + "deletedDataVolumes": { + "type": "array", + "items": { + "type": "string" + } + }, + "restoreTime": { + "type": "string", + "format": "date-time" + }, + "restores": { + "type": "array", + "items": { + "description": "VolumeRestore contains the data neeed to restore a PVC", + "type": "object", + "required": [ + "persistentVolumeClaim", + "volumeName", + "volumeSnapshotName" + ], + "properties": { + "dataVolumeName": { + "type": "string" + }, + "persistentVolumeClaim": { + "type": "string" + }, + "volumeName": { + "type": "string" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + } + }, + "description": "VirtualMachineRestore defines the operation of restoring a VM", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "snapshot.kubevirt.io", + "kind": "VirtualMachineRestore", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachinerestores.snapshot.kubevirt.io" + }, + "spec": { + "group": "snapshot.kubevirt.io", + "names": { + "plural": "virtualmachinerestores", + "singular": "virtualmachinerestore", + "shortNames": [ + "vmrestore", + "vmrestores" + ], + "kind": "VirtualMachineRestore", + "listKind": "VirtualMachineRestoreList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineRestore defines the operation of restoring a VM", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineRestoreSpec is the spec for a VirtualMachineRestoreresource", + "type": "object", + "required": [ + "target", + "virtualMachineSnapshotName" + ], + "properties": { + "patches": { + "description": "If the target for the restore does not exist, it will be created. Patches holds JSON patches that would be applied to the target manifest before it's created. Patches should fit the target's Kind. \n Example for a patch: {\"op\": \"replace\", \"path\": \"/metadata/name\", \"value\": \"new-vm-name\"}", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "target": { + "description": "initially only VirtualMachine type supported", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "virtualMachineSnapshotName": { + "type": "string" + } + } + }, + "status": { + "description": "VirtualMachineRestoreStatus is the spec for a VirtualMachineRestoreresource", + "type": "object", + "properties": { + "complete": { + "type": "boolean" + }, + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + } + }, + "deletedDataVolumes": { + "type": "array", + "items": { + "type": "string" + } + }, + "restoreTime": { + "type": "string", + "format": "date-time" + }, + "restores": { + "type": "array", + "items": { + "description": "VolumeRestore contains the data neeed to restore a PVC", + "type": "object", + "required": [ + "persistentVolumeClaim", + "volumeName", + "volumeSnapshotName" + ], + "properties": { + "dataVolumeName": { + "type": "string" + }, + "persistentVolumeClaim": { + "type": "string" + }, + "volumeName": { + "type": "string" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "TargetKind", + "type": "string", + "jsonPath": ".spec.target.kind" + }, + { + "name": "TargetName", + "type": "string", + "jsonPath": ".spec.target.name" + }, + { + "name": "Complete", + "type": "boolean", + "jsonPath": ".status.complete" + }, + { + "name": "RestoreTime", + "type": "date", + "jsonPath": ".status.restoreTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachinerestores", + "singular": "virtualmachinerestore", + "shortNames": [ + "vmrestore", + "vmrestores" + ], + "kind": "VirtualMachineRestore", + "listKind": "VirtualMachineRestoreList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "TargetKind", + "type": "string", + "jsonPath": ".spec.target.kind" + }, + { + "name": "TargetName", + "type": "string", + "jsonPath": ".spec.target.name" + }, + { + "name": "Complete", + "type": "boolean", + "jsonPath": ".status.complete" + }, + { + "name": "RestoreTime", + "type": "date", + "jsonPath": ".status.restoreTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ], + "short": "VirtualMachineRestore", + "apiGroup": "snapshot.kubevirt.io", + "apiKind": "VirtualMachineRestore", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.snapshot.v1alpha1.VirtualMachineSnapshot", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineSnapshotSpec is the spec for a VirtualMachineSnapshot resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "deletionPolicy": { + "description": "DeletionPolicy defines that to do with VirtualMachineSnapshot when VirtualMachineSnapshot is deleted", + "type": "string" + }, + "failureDeadline": { + "description": "This time represents the number of seconds we permit the vm snapshot to take. In case we pass this deadline we mark this snapshot as failed. Defaults to DefaultFailureDeadline - 5min", + "type": "string" + }, + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + } + } + }, + "status": { + "description": "VirtualMachineSnapshotStatus is the status for a VirtualMachineSnapshot resource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + } + }, + "creationTime": { + "format": "date-time" + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "indications": { + "type": "array", + "items": { + "description": "Indication is a way to indicate the state of the vm when taking the snapshot", + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "phase": { + "description": "VirtualMachineSnapshotPhase is the current phase of the VirtualMachineSnapshot", + "type": "string" + }, + "readyToUse": { + "type": "boolean" + }, + "snapshotVolumes": { + "description": "SnapshotVolumesLists includes the list of volumes which were included in the snapshot and volumes which were excluded from the snapshot", + "type": "object", + "properties": { + "excludedVolumes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "includedVolumes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + }, + "sourceUID": { + "description": "UID is a type that holds unique ID values, including UUIDs. Because we don't ONLY use UUIDs, this is an alias to string. Being a type captures intent and helps make sure that UIDs and names do not get conflated.", + "type": "string" + }, + "virtualMachineSnapshotContentName": { + "type": "string" + } + } + } + }, + "description": "VirtualMachineSnapshot defines the operation of snapshotting a VM", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "snapshot.kubevirt.io", + "kind": "VirtualMachineSnapshot", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachinesnapshots.snapshot.kubevirt.io" + }, + "spec": { + "group": "snapshot.kubevirt.io", + "names": { + "plural": "virtualmachinesnapshots", + "singular": "virtualmachinesnapshot", + "shortNames": [ + "vmsnapshot", + "vmsnapshots" + ], + "kind": "VirtualMachineSnapshot", + "listKind": "VirtualMachineSnapshotList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineSnapshot defines the operation of snapshotting a VM", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineSnapshotSpec is the spec for a VirtualMachineSnapshot resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "deletionPolicy": { + "description": "DeletionPolicy defines that to do with VirtualMachineSnapshot when VirtualMachineSnapshot is deleted", + "type": "string" + }, + "failureDeadline": { + "description": "This time represents the number of seconds we permit the vm snapshot to take. In case we pass this deadline we mark this snapshot as failed. Defaults to DefaultFailureDeadline - 5min", + "type": "string" + }, + "source": { + "description": "TypedLocalObjectReference contains enough information to let you locate the typed referenced object inside the same namespace.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + } + } + }, + "status": { + "description": "VirtualMachineSnapshotStatus is the status for a VirtualMachineSnapshot resource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition defines conditions", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the const type for Conditions", + "type": "string" + } + } + } + }, + "creationTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "indications": { + "type": "array", + "items": { + "description": "Indication is a way to indicate the state of the vm when taking the snapshot", + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "phase": { + "description": "VirtualMachineSnapshotPhase is the current phase of the VirtualMachineSnapshot", + "type": "string" + }, + "readyToUse": { + "type": "boolean" + }, + "snapshotVolumes": { + "description": "SnapshotVolumesLists includes the list of volumes which were included in the snapshot and volumes which were excluded from the snapshot", + "type": "object", + "properties": { + "excludedVolumes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + }, + "includedVolumes": { + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + }, + "sourceUID": { + "description": "UID is a type that holds unique ID values, including UUIDs. Because we don't ONLY use UUIDs, this is an alias to string. Being a type captures intent and helps make sure that UIDs and names do not get conflated.", + "type": "string" + }, + "virtualMachineSnapshotContentName": { + "type": "string" + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "SourceKind", + "type": "string", + "jsonPath": ".spec.source.kind" + }, + { + "name": "SourceName", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "ReadyToUse", + "type": "boolean", + "jsonPath": ".status.readyToUse" + }, + { + "name": "CreationTime", + "type": "date", + "jsonPath": ".status.creationTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachinesnapshots", + "singular": "virtualmachinesnapshot", + "shortNames": [ + "vmsnapshot", + "vmsnapshots" + ], + "kind": "VirtualMachineSnapshot", + "listKind": "VirtualMachineSnapshotList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "SourceKind", + "type": "string", + "jsonPath": ".spec.source.kind" + }, + { + "name": "SourceName", + "type": "string", + "jsonPath": ".spec.source.name" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + }, + { + "name": "ReadyToUse", + "type": "boolean", + "jsonPath": ".status.readyToUse" + }, + { + "name": "CreationTime", + "type": "date", + "jsonPath": ".status.creationTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ], + "short": "VirtualMachineSnapshot", + "apiGroup": "snapshot.kubevirt.io", + "apiKind": "VirtualMachineSnapshot", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.snapshot.v1alpha1.VirtualMachineSnapshotContent", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VirtualMachineSnapshotContentSpec is the spec for a VirtualMachineSnapshotContent resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "SourceSpec contains the appropriate spec for the resource being snapshotted", + "type": "object", + "properties": { + "virtualMachine": { + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineSpec contains the VirtualMachine specification.", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "required": [ + "spec" + ] + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status holds the current state of the controller and brief information about its associated VirtualMachineInstance", + "type": "object", + "properties": { + "conditions": { + "description": "Hold the state information of the VirtualMachine and its VirtualMachineInstance", + "type": "array", + "items": { + "description": "VirtualMachineCondition represents the state of VirtualMachine", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "created": { + "description": "Created indicates if the virtual machine is created in the cluster", + "type": "boolean" + }, + "desiredGeneration": { + "description": "DesiredGeneration is the generation which is desired for the VMI. This will be used in comparisons with ObservedGeneration to understand when the VMI is out of sync. This will be changed at the same time as ObservedGeneration to remove errors which could occur if Generation is updated through an Update() before ObservedGeneration in Status.", + "type": "integer", + "format": "int64" + }, + "interfaceRequests": { + "description": "InterfaceRequests indicates a list of interfaces added to the VMI template and hot-plugged on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addInterfaceOptions": { + "description": "AddInterfaceOptions when set indicates a network interface should be added. The details within this field specify how to add the interface", + "type": "object", + "required": [ + "name", + "networkAttachmentDefinitionName" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + }, + "networkAttachmentDefinitionName": { + "description": "NetworkAttachmentDefinitionName references a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "removeInterfaceOptions": { + "description": "RemoveInterfaceOptions when set indicates a network interface should be removed. The details within this field specify how to remove the interface", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "memoryDumpRequest": { + "description": "MemoryDumpRequest tracks memory dump request phase and info of getting a memory dump to the given pvc", + "required": [ + "claimName", + "phase" + ] + }, + "observedGeneration": { + "description": "ObservedGeneration is the generation observed by the vmi when started.", + "type": "integer", + "format": "int64" + }, + "printableStatus": { + "description": "PrintableStatus is a human readable, high-level representation of the status of the virtual machine", + "type": "string" + }, + "ready": { + "description": "Ready indicates if the virtual machine is running and ready", + "type": "boolean" + }, + "restoreInProgress": { + "description": "RestoreInProgress is the name of the VirtualMachineRestore currently executing", + "type": "string" + }, + "snapshotInProgress": { + "description": "SnapshotInProgress is the name of the VirtualMachineSnapshot currently executing", + "type": "string" + }, + "startFailure": { + "description": "StartFailure tracks consecutive VMI startup failures for the purposes of crash loop backoffs" + }, + "stateChangeRequests": { + "description": "StateChangeRequests indicates a list of actions that should be taken on a VMI e.g. stop a specific VMI then start a new one.", + "type": "array", + "items": { + "type": "object", + "required": [ + "action" + ], + "properties": { + "action": { + "description": "Indicates the type of action that is requested. e.g. Start or Stop", + "type": "string" + }, + "data": { + "description": "Provides additional data in order to perform the Action", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "uid": { + "description": "Indicates the UUID of an existing Virtual Machine Instance that this change request applies to -- if applicable", + "type": "string" + } + } + } + }, + "volumeRequests": { + "description": "VolumeRequests indicates a list of volumes add or remove from the VMI template and hotplug on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addVolumeOptions": { + "description": "AddVolumeOptions when set indicates a volume should be added. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "disk", + "name", + "volumeSource" + ], + "properties": { + "disk": { + "description": "Disk represents the hotplug disk that will be plugged into the running VMI", + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + }, + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that will be used to map the disk to the corresponding volume. This overrides any name set inside the Disk struct itself.", + "type": "string" + }, + "volumeSource": { + "description": "VolumeSource represents the source of the volume to map to the disk.", + "type": "object", + "properties": { + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + } + } + }, + "removeVolumeOptions": { + "description": "RemoveVolumeOptions when set indicates a volume should be removed. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that maps to both the disk and volume that should be removed", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumeSnapshotStatuses": { + "description": "VolumeSnapshotStatuses indicates a list of statuses whether snapshotting is supported by each volume.", + "type": "array", + "items": { + "type": "object", + "required": [ + "enabled", + "name" + ], + "properties": { + "enabled": { + "description": "True if the volume supports snapshotting", + "type": "boolean" + }, + "name": { + "description": "Volume name", + "type": "string" + }, + "reason": { + "description": "Empty if snapshotting is enabled, contains reason otherwise", + "type": "string" + } + } + } + } + } + } + } + } + } + }, + "virtualMachineSnapshotName": { + "type": "string" + }, + "volumeBackups": { + "type": "array", + "items": { + "description": "VolumeBackup contains the data neeed to restore a PVC", + "type": "object", + "required": [ + "persistentVolumeClaim", + "volumeName" + ], + "properties": { + "persistentVolumeClaim": { + "type": "object", + "properties": { + "metadata": { + "description": "Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata", + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "Spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "volumeName": { + "type": "string" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + }, + "status": { + "description": "VirtualMachineSnapshotContentStatus is the status for a VirtualMachineSnapshotStatus resource", + "type": "object", + "properties": { + "creationTime": { + "format": "date-time" + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "readyToUse": { + "type": "boolean" + }, + "volumeSnapshotStatus": { + "type": "array", + "items": { + "description": "VolumeSnapshotStatus is the status of a VolumeSnapshot", + "type": "object", + "required": [ + "volumeSnapshotName" + ], + "properties": { + "creationTime": { + "format": "date-time" + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "readyToUse": { + "type": "boolean" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + } + }, + "description": "VirtualMachineSnapshotContent contains the snapshot data", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "snapshot.kubevirt.io", + "kind": "VirtualMachineSnapshotContent", + "version": "v1alpha1" + } + ] + }, + "crd": { + "metadata": { + "name": "virtualmachinesnapshotcontents.snapshot.kubevirt.io" + }, + "spec": { + "group": "snapshot.kubevirt.io", + "names": { + "plural": "virtualmachinesnapshotcontents", + "singular": "virtualmachinesnapshotcontent", + "shortNames": [ + "vmsnapshotcontent", + "vmsnapshotcontents" + ], + "kind": "VirtualMachineSnapshotContent", + "listKind": "VirtualMachineSnapshotContentList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1alpha1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VirtualMachineSnapshotContent contains the snapshot data", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VirtualMachineSnapshotContentSpec is the spec for a VirtualMachineSnapshotContent resource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "SourceSpec contains the appropriate spec for the resource being snapshotted", + "type": "object", + "properties": { + "virtualMachine": { + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineSpec contains the VirtualMachine specification.", + "type": "object", + "required": [ + "template" + ], + "properties": { + "dataVolumeTemplates": { + "description": "dataVolumeTemplates is a list of dataVolumes that the VirtualMachineInstance template can reference. DataVolumes in this list are dynamically created for the VirtualMachine and are tied to the VirtualMachine's life-cycle.", + "type": "array", + "items": { + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "DataVolumeSpec contains the DataVolume specification.", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeTemplateDummyStatus is here simply for backwards compatibility with a previous API.", + "type": "object", + "nullable": true + } + }, + "nullable": true + } + }, + "instancetype": { + "description": "InstancetypeMatcher references a instancetype that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the instancetype to be used through known annotations on the underlying resource. Once applied to the InstancetypeMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which instancetype resource is referenced. Allowed values are: \"VirtualMachineInstancetype\" and \"VirtualMachineClusterInstancetype\". If not specified, \"VirtualMachineClusterInstancetype\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachineInstancetype or VirtualMachineClusterInstancetype to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "liveUpdateFeatures": { + "description": "LiveUpdateFeatures references a configuration of hotpluggable resources", + "type": "object", + "properties": { + "cpu": { + "description": "LiveUpdateCPU holds hotplug configuration for the CPU resource. Empty struct indicates that default will be used for maxSockets. Default is specified on cluster level. Absence of the struct means opt-out from CPU hotplug functionality.", + "type": "object", + "properties": { + "maxSockets": { + "description": "The maximum amount of sockets that can be hot-plugged to the Virtual Machine", + "type": "integer", + "format": "int32" + } + } + } + } + }, + "preference": { + "description": "PreferenceMatcher references a set of preference that is used to fill fields in Template", + "type": "object", + "properties": { + "inferFromVolume": { + "description": "InferFromVolume lists the name of a volume that should be used to infer or discover the preference to be used through known annotations on the underlying resource. Once applied to the PreferenceMatcher this field is removed.", + "type": "string" + }, + "kind": { + "description": "Kind specifies which preference resource is referenced. Allowed values are: \"VirtualMachinePreference\" and \"VirtualMachineClusterPreference\". If not specified, \"VirtualMachineClusterPreference\" is used by default.", + "type": "string" + }, + "name": { + "description": "Name is the name of the VirtualMachinePreference or VirtualMachineClusterPreference", + "type": "string" + }, + "revisionName": { + "description": "RevisionName specifies a ControllerRevision containing a specific copy of the VirtualMachinePreference or VirtualMachineClusterPreference to be used. This is initially captured the first time the instancetype is applied to the VirtualMachineInstance.", + "type": "string" + } + } + }, + "runStrategy": { + "description": "Running state indicates the requested running state of the VirtualMachineInstance mutually exclusive with Running", + "type": "string" + }, + "running": { + "description": "Running controls whether the associatied VirtualMachineInstance is created or not Mutually exclusive with RunStrategy", + "type": "boolean" + }, + "template": { + "description": "Template is the direct specification of VirtualMachineInstance", + "type": "object", + "properties": { + "metadata": { + "type": "object", + "nullable": true, + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "VirtualMachineInstance Spec contains the VirtualMachineInstance specification.", + "type": "object", + "required": [ + "domain" + ], + "properties": { + "accessCredentials": { + "description": "Specifies a set of public keys to inject into the vm guest", + "type": "array", + "items": { + "description": "AccessCredential represents a credential source that can be used to authorize remote access to the vm guest Only one of its members may be specified.", + "type": "object", + "properties": { + "sshPublicKey": { + "description": "SSHPublicKey represents the source and method of applying a ssh public key into a guest virtual machine.", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "PropagationMethod represents how the public key is injected into the vm guest.", + "type": "object", + "properties": { + "configDrive": { + "description": "ConfigDrivePropagation means that the ssh public keys are injected into the VM using metadata using the configDrive cloud-init provider", + "type": "object" + }, + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means ssh public keys are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object", + "required": [ + "users" + ], + "properties": { + "users": { + "description": "Users represents a list of guest users that should have the ssh public keys added to their authorized_keys file.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "set" + } + } + } + } + }, + "source": { + "description": "Source represents where the public keys are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + }, + "userPassword": { + "description": "UserPassword represents the source and method for applying a guest user's password", + "type": "object", + "required": [ + "propagationMethod", + "source" + ], + "properties": { + "propagationMethod": { + "description": "propagationMethod represents how the user passwords are injected into the vm guest.", + "type": "object", + "properties": { + "qemuGuestAgent": { + "description": "QemuGuestAgentAccessCredentailPropagation means passwords are dynamically injected into the vm at runtime via the qemu guest agent. This feature requires the qemu guest agent to be running within the guest.", + "type": "object" + } + } + }, + "source": { + "description": "Source represents where the user passwords are pulled from", + "type": "object", + "properties": { + "secret": { + "description": "Secret means that the access credential is pulled from a kubernetes secret", + "type": "object", + "required": [ + "secretName" + ], + "properties": { + "secretName": { + "description": "SecretName represents the name of the secret in the VMI's namespace", + "type": "string" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "affinity": { + "description": "If affinity is specifies, obey all the affinity rules", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "architecture": { + "description": "Specifies the architecture of the vm guest you are attempting to run. Defaults to the compiled architecture of the KubeVirt components", + "type": "string" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "type": "object", + "properties": { + "nameservers": { + "description": "A list of DNS name server IP addresses. This will be appended to the base nameservers generated from DNSPolicy. Duplicated nameservers will be removed.", + "type": "array", + "items": { + "type": "string" + } + }, + "options": { + "description": "A list of DNS resolver options. This will be merged with the base options generated from DNSPolicy. Duplicated entries will be removed. Resolution options given in Options will override those that appear in the base DNSPolicy.", + "type": "array", + "items": { + "description": "PodDNSConfigOption defines DNS resolver options of a pod.", + "type": "object", + "properties": { + "name": { + "description": "Required.", + "type": "string" + }, + "value": { + "type": "string" + } + } + } + }, + "searches": { + "description": "A list of DNS search domains for host-name lookup. This will be appended to the base search paths generated from DNSPolicy. Duplicated search paths will be removed.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirstWithHostNet', 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy. To have DNS options set along with hostNetwork, you have to specify DNS policy explicitly to 'ClusterFirstWithHostNet'.", + "type": "string" + }, + "domain": { + "description": "Specification of the desired behavior of the VirtualMachineInstance on the host.", + "type": "object", + "required": [ + "devices" + ], + "properties": { + "chassis": { + "description": "Chassis specifies the chassis info passed to the domain.", + "type": "object", + "properties": { + "asset": { + "type": "string" + }, + "manufacturer": { + "type": "string" + }, + "serial": { + "type": "string" + }, + "sku": { + "type": "string" + }, + "version": { + "type": "string" + } + } + }, + "clock": { + "description": "Clock sets the clock and timers of the vmi.", + "type": "object", + "properties": { + "timer": { + "description": "Timer specifies whih timers are attached to the vmi.", + "type": "object", + "properties": { + "hpet": { + "description": "HPET (High Precision Event Timer) - multiple timers with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"merge\", \"discard\".", + "type": "string" + } + } + }, + "hyperv": { + "description": "Hyperv (Hypervclock) - lets guests read the host’s wall clock time (paravirtualized). For windows guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "kvm": { + "description": "KVM \t(KVM clock) - lets guests read the host’s wall clock time (paravirtualized). For linux guests.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + } + } + }, + "pit": { + "description": "PIT (Programmable Interval Timer) - a timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\", \"discard\".", + "type": "string" + } + } + }, + "rtc": { + "description": "RTC (Real Time Clock) - a continuously running timer with periodic interrupts.", + "type": "object", + "properties": { + "present": { + "description": "Enabled set to false makes sure that the machine type or a preset can't add the timer. Defaults to true.", + "type": "boolean" + }, + "tickPolicy": { + "description": "TickPolicy determines what happens when QEMU misses a deadline for injecting a tick to the guest. One of \"delay\", \"catchup\".", + "type": "string" + }, + "track": { + "description": "Track the guest or the wall clock.", + "type": "string" + } + } + } + } + }, + "timezone": { + "description": "Timezone sets the guest clock to the specified timezone. Zone name follows the TZ environment variable format (e.g. 'America/New_York').", + "type": "string" + }, + "utc": { + "description": "UTC sets the guest clock to UTC on each boot. If an offset is specified, guest changes to the clock will be kept during reboots and are not reset.", + "type": "object", + "properties": { + "offsetSeconds": { + "description": "OffsetSeconds specifies an offset in seconds, relative to UTC. If set, guest changes to the clock will be kept during reboots and not reset.", + "type": "integer" + } + } + } + } + }, + "cpu": { + "description": "CPU allow specified the detailed CPU topology inside the vmi.", + "type": "object", + "properties": { + "cores": { + "description": "Cores specifies the number of cores inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "dedicatedCpuPlacement": { + "description": "DedicatedCPUPlacement requests the scheduler to place the VirtualMachineInstance on a node with enough dedicated pCPUs and pin the vCPUs to it.", + "type": "boolean" + }, + "features": { + "description": "Features specifies the CPU features list inside the VMI.", + "type": "array", + "items": { + "description": "CPUFeature allows specifying a CPU feature.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name of the CPU feature", + "type": "string" + }, + "policy": { + "description": "Policy is the CPU feature attribute which can have the following attributes: force - The virtual CPU will claim the feature is supported regardless of it being supported by host CPU. require - Guest creation will fail unless the feature is supported by the host CPU or the hypervisor is able to emulate it. optional - The feature will be supported by virtual CPU if and only if it is supported by host CPU. disable - The feature will not be supported by virtual CPU. forbid - Guest creation will fail if the feature is supported by host CPU. Defaults to require", + "type": "string" + } + } + } + }, + "isolateEmulatorThread": { + "description": "IsolateEmulatorThread requests one more dedicated pCPU to be allocated for the VMI to place the emulator thread on it.", + "type": "boolean" + }, + "maxSockets": { + "description": "MaxSockets specifies the maximum amount of sockets that can be hotplugged", + "type": "integer", + "format": "int32" + }, + "model": { + "description": "Model specifies the CPU model inside the VMI. List of available models https://github.com/libvirt/libvirt/tree/master/src/cpu_map. It is possible to specify special cases like \"host-passthrough\" to get the same CPU as the node and \"host-model\" to get CPU closest to the node one. Defaults to host-model.", + "type": "string" + }, + "numa": { + "description": "NUMA allows specifying settings for the guest NUMA topology", + "type": "object", + "properties": { + "guestMappingPassthrough": { + "description": "GuestMappingPassthrough will create an efficient guest topology based on host CPUs exclusively assigned to a pod. The created topology ensures that memory and CPUs on the virtual numa nodes never cross boundaries of host numa nodes.", + "type": "object" + } + } + }, + "realtime": { + "description": "Realtime instructs the virt-launcher to tune the VMI for lower latency, optional for real time workloads", + "type": "object", + "properties": { + "mask": { + "description": "Mask defines the vcpu mask expression that defines which vcpus are used for realtime. Format matches libvirt's expressions. Example: \"0-3,^1\",\"0,2,3\",\"2-3\"", + "type": "string" + } + } + }, + "sockets": { + "description": "Sockets specifies the number of sockets inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + }, + "threads": { + "description": "Threads specifies the number of threads inside the vmi. Must be a value greater or equal 1.", + "type": "integer", + "format": "int32" + } + } + }, + "devices": { + "description": "Devices allows adding disks, network interfaces, and others", + "type": "object", + "properties": { + "autoattachGraphicsDevice": { + "description": "Whether to attach the default graphics device or not. VNC will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachInputDevice": { + "description": "Whether to attach an Input Device. Defaults to false.", + "type": "boolean" + }, + "autoattachMemBalloon": { + "description": "Whether to attach the Memory balloon device with default period. Period can be adjusted in virt-config. Defaults to true.", + "type": "boolean" + }, + "autoattachPodInterface": { + "description": "Whether to attach a pod network interface. Defaults to true.", + "type": "boolean" + }, + "autoattachSerialConsole": { + "description": "Whether to attach the default serial console or not. Serial console access will not be available if set to false. Defaults to true.", + "type": "boolean" + }, + "autoattachVSOCK": { + "description": "Whether to attach the VSOCK CID to the VM or not. VSOCK access will be available if set to true. Defaults to false.", + "type": "boolean" + }, + "blockMultiQueue": { + "description": "Whether or not to enable virtio multi-queue for block devices. Defaults to false.", + "type": "boolean" + }, + "clientPassthrough": { + "description": "To configure and access client devices such as redirecting USB", + "type": "object" + }, + "disableHotplug": { + "description": "DisableHotplug disabled the ability to hotplug disks.", + "type": "boolean" + }, + "disks": { + "description": "Disks describes disks, cdroms and luns which are connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + } + }, + "filesystems": { + "description": "Filesystems describes filesystem which is connected to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "virtiofs" + ], + "properties": { + "name": { + "description": "Name is the device name", + "type": "string" + }, + "virtiofs": { + "description": "Virtiofs is supported", + "type": "object" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "gpus": { + "description": "Whether to attach a GPU device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "type": "string" + }, + "name": { + "description": "Name of the GPU device as exposed by a device plugin", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + }, + "virtualGPUOptions": { + "type": "object", + "properties": { + "display": { + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if a display addapter backed by a vGPU should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "ramFB": { + "description": "Enables a boot framebuffer, until the guest OS loads a real GPU driver Defaults to true.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "hostDevices": { + "description": "Whether to attach a host device to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "deviceName", + "name" + ], + "properties": { + "deviceName": { + "description": "DeviceName is the resource name of the host device exposed by a device plugin", + "type": "string" + }, + "name": { + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "inputs": { + "description": "Inputs describe input devices", + "type": "array", + "items": { + "type": "object", + "required": [ + "name", + "type" + ], + "properties": { + "bus": { + "description": "Bus indicates the bus of input device to emulate. Supported values: virtio, usb.", + "type": "string" + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "type": { + "description": "Type indicated the type of input device. Supported values: tablet.", + "type": "string" + } + } + } + }, + "interfaces": { + "description": "Interfaces describe network interfaces which are added to the vmi.", + "type": "array", + "items": { + "type": "object", + "required": [ + "name" + ], + "properties": { + "acpiIndex": { + "description": "If specified, the ACPI index is used to provide network interface device naming, that is stable across changes in PCI addresses assigned to the device. This value is required to be unique across all devices and be between 1 and (16*1024-1).", + "type": "integer" + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each interface or disk that has a boot order must have a unique value. Interfaces without a boot order are not tried.", + "type": "integer" + }, + "bridge": { + "description": "InterfaceBridge connects to a given network via a linux bridge.", + "type": "object" + }, + "dhcpOptions": { + "description": "If specified the network interface will pass additional DHCP options to the VMI", + "type": "object", + "properties": { + "bootFileName": { + "description": "If specified will pass option 67 to interface's DHCP server", + "type": "string" + }, + "ntpServers": { + "description": "If specified will pass the configured NTP server to the VM via DHCP option 042.", + "type": "array", + "items": { + "type": "string" + } + }, + "privateOptions": { + "description": "If specified will pass extra DHCP options for private use, range: 224-254", + "type": "array", + "items": { + "description": "DHCPExtraOptions defines Extra DHCP options for a VM.", + "type": "object", + "required": [ + "option", + "value" + ], + "properties": { + "option": { + "description": "Option is an Integer value from 224-254 Required.", + "type": "integer" + }, + "value": { + "description": "Value is a String value for the Option provided Required.", + "type": "string" + } + } + } + }, + "tftpServerName": { + "description": "If specified will pass option 66 to interface's DHCP server", + "type": "string" + } + } + }, + "macAddress": { + "description": "Interface MAC address. For example: de:ad:00:00:be:af or DE-AD-00-00-BE-AF.", + "type": "string" + }, + "macvtap": { + "description": "InterfaceMacvtap connects to a given network by extending the Kubernetes node's L2 networks via a macvtap interface.", + "type": "object" + }, + "masquerade": { + "description": "InterfaceMasquerade connects to a given network using netfilter rules to nat the traffic.", + "type": "object" + }, + "model": { + "description": "Interface model. One of: e1000, e1000e, ne2k_pci, pcnet, rtl8139, virtio. Defaults to virtio. TODO:(ihar) switch to enums once opengen-api supports them. See: https://github.com/kubernetes/kube-openapi/issues/51", + "type": "string" + }, + "name": { + "description": "Logical name of the interface as well as a reference to the associated networks. Must match the Name of a Network.", + "type": "string" + }, + "passt": { + "description": "InterfacePasst connects to a given network.", + "type": "object" + }, + "pciAddress": { + "description": "If specified, the virtual network interface will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "ports": { + "description": "List of ports to be forwarded to the virtual machine.", + "type": "array", + "items": { + "description": "Port represents a port to expose from the virtual machine. Default protocol TCP. The port field is mandatory", + "type": "object", + "required": [ + "port" + ], + "properties": { + "name": { + "description": "If specified, this must be an IANA_SVC_NAME and unique within the pod. Each named port in a pod must have a unique name. Name for the port that can be referred to by services.", + "type": "string" + }, + "port": { + "description": "Number of port to expose for the virtual machine. This must be a valid port number, 0 < x < 65536.", + "type": "integer", + "format": "int32" + }, + "protocol": { + "description": "Protocol for port. Must be UDP or TCP. Defaults to \"TCP\".", + "type": "string" + } + } + } + }, + "slirp": { + "description": "InterfaceSlirp connects to a given network using QEMU user networking mode.", + "type": "object" + }, + "sriov": { + "description": "InterfaceSRIOV connects to a given network by passing-through an SR-IOV PCI device via vfio.", + "type": "object" + }, + "state": { + "description": "State represents the requested operational state of the interface. The (only) value supported is 'absent', expressing a request to remove the interface.", + "type": "string" + }, + "tag": { + "description": "If specified, the virtual network interface address and its tag will be provided to the guest via config drive", + "type": "string" + } + } + } + }, + "networkInterfaceMultiqueue": { + "description": "If specified, virtual network interfaces configured with a virtio bus will also enable the vhost multiqueue feature for network devices. The number of queues created depends on additional factors of the VirtualMachineInstance, like the number of guest CPUs.", + "type": "boolean" + }, + "rng": { + "description": "Whether to have random number generator from host", + "type": "object" + }, + "sound": { + "description": "Whether to emulate a sound device.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "model": { + "description": "We only support ich9 or ac97. If SoundDevice is not set: No sound card is emulated. If SoundDevice is set but Model is not: ich9", + "type": "string" + }, + "name": { + "description": "User's defined name for this sound device", + "type": "string" + } + } + }, + "tpm": { + "description": "Whether to emulate a TPM device.", + "type": "object", + "properties": { + "persistent": { + "description": "Persistent indicates the state of the TPM device should be kept accross reboots Defaults to false", + "type": "boolean" + } + } + }, + "useVirtioTransitional": { + "description": "Fall back to legacy virtio 0.9 support if virtio bus is selected on devices. This is helpful for old machines like CentOS6 or RHEL6 which do not understand virtio_non_transitional (virtio 1.0).", + "type": "boolean" + }, + "watchdog": { + "description": "Watchdog describes a watchdog device which can be added to the vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "i6300esb": { + "description": "i6300esb watchdog device.", + "type": "object", + "properties": { + "action": { + "description": "The action to take. Valid values are poweroff, reset, shutdown. Defaults to reset.", + "type": "string" + } + } + }, + "name": { + "description": "Name of the watchdog.", + "type": "string" + } + } + } + } + }, + "features": { + "description": "Features like acpi, apic, hyperv, smm.", + "type": "object", + "properties": { + "acpi": { + "description": "ACPI enables/disables ACPI inside the guest. Defaults to enabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "apic": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "endOfInterrupt": { + "description": "EndOfInterrupt enables the end of interrupt notification in the guest. Defaults to false.", + "type": "boolean" + } + } + }, + "hyperv": { + "description": "Defaults to the machine type setting.", + "type": "object", + "properties": { + "evmcs": { + "description": "EVMCS Speeds up L2 vmexits, but disables other virtualization features. Requires vapic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "frequencies": { + "description": "Frequencies improves the TSC clock source handling for Hyper-V on KVM. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "ipi": { + "description": "IPI improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reenlightenment": { + "description": "Reenlightenment enables the notifications on TSC frequency changes. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "relaxed": { + "description": "Relaxed instructs the guest OS to disable watchdog timeouts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "reset": { + "description": "Reset enables Hyperv reboot/reset for the vmi. Requires synic. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "runtime": { + "description": "Runtime improves the time accounting to improve scheduling in the guest. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "spinlocks": { + "description": "Spinlocks allows to configure the spinlock retry attempts.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "spinlocks": { + "description": "Retries indicates the number of retries. Must be a value greater or equal 4096. Defaults to 4096.", + "type": "integer", + "format": "int32" + } + } + }, + "synic": { + "description": "SyNIC enables the Synthetic Interrupt Controller. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "synictimer": { + "description": "SyNICTimer enables Synthetic Interrupt Controller Timers, reducing CPU load. Defaults to the machine type setting.", + "type": "object", + "properties": { + "direct": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "enabled": { + "type": "boolean" + } + } + }, + "tlbflush": { + "description": "TLBFlush improves performances in overcommited environments. Requires vpindex. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vapic": { + "description": "VAPIC improves the paravirtualized handling of interrupts. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "vendorid": { + "description": "VendorID allows setting the hypervisor vendor id. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + }, + "vendorid": { + "description": "VendorID sets the hypervisor vendor id, visible to the vmi. String up to twelve characters.", + "type": "string" + } + } + }, + "vpindex": { + "description": "VPIndex enables the Virtual Processor Index to help windows identifying virtual processors. Defaults to the machine type setting.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "kvm": { + "description": "Configure how KVM presence is exposed to the guest.", + "type": "object", + "properties": { + "hidden": { + "description": "Hide the KVM hypervisor from standard MSR based discovery. Defaults to false", + "type": "boolean" + } + } + }, + "pvspinlock": { + "description": "Notify the guest that the host supports paravirtual spinlocks. For older kernels this feature should be explicitly disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + }, + "smm": { + "description": "SMM enables/disables System Management Mode. TSEG not yet implemented.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "firmware": { + "description": "Firmware.", + "type": "object", + "properties": { + "bootloader": { + "description": "Settings to control the bootloader that is used.", + "type": "object", + "properties": { + "bios": { + "description": "If set (default), BIOS will be used.", + "type": "object", + "properties": { + "useSerial": { + "description": "If set, the BIOS output will be transmitted over serial", + "type": "boolean" + } + } + }, + "efi": { + "description": "If set, EFI will be used instead of BIOS.", + "type": "object", + "properties": { + "secureBoot": { + "description": "If set, SecureBoot will be enabled and the OVMF roms will be swapped for SecureBoot-enabled ones. Requires SMM to be enabled. Defaults to true", + "type": "boolean" + } + } + } + } + }, + "kernelBoot": { + "description": "Settings to set the kernel for booting.", + "type": "object", + "properties": { + "container": { + "description": "Container defines the container that containes kernel artifacts", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image that contains initrd / kernel files.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "initrdPath": { + "description": "the fully-qualified path to the ramdisk image in the host OS", + "type": "string" + }, + "kernelPath": { + "description": "The fully-qualified path to the kernel image in the host OS", + "type": "string" + } + } + }, + "kernelArgs": { + "description": "Arguments to be passed to the kernel at boot time", + "type": "string" + } + } + }, + "serial": { + "description": "The system-serial-number in SMBIOS", + "type": "string" + }, + "uuid": { + "description": "UUID reported by the vmi bios. Defaults to a random generated uid.", + "type": "string" + } + } + }, + "ioThreadsPolicy": { + "description": "Controls whether or not disks will share IOThreads. Omitting IOThreadsPolicy disables use of IOThreads. One of: shared, auto", + "type": "string" + }, + "launchSecurity": { + "description": "Launch Security setting of the vmi.", + "type": "object", + "properties": { + "sev": { + "description": "AMD Secure Encrypted Virtualization (SEV).", + "type": "object", + "properties": { + "policy": { + "description": "Guest policy flags as defined in AMD SEV API specification. Note: due to security reasons it is not allowed to enable guest debugging. Therefore NoDebug flag is not exposed to users and is always true.", + "type": "object", + "properties": { + "encryptedState": { + "description": "SEV-ES is required. Defaults to false.", + "type": "boolean" + } + } + } + } + } + } + }, + "machine": { + "description": "Machine type.", + "type": "object", + "properties": { + "type": { + "description": "QEMU machine type is the actual chipset of the VirtualMachineInstance.", + "type": "string" + } + } + }, + "memory": { + "description": "Memory allow specifying the VMI memory features.", + "type": "object", + "properties": { + "guest": { + "description": "Guest allows to specifying the amount of memory which is visible inside the Guest OS. The Guest must lie between Requests and Limits from the resources section. Defaults to the requested memory in the resources section if not specified.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "hugepages": { + "description": "Hugepages allow to use hugepages for the VirtualMachineInstance instead of regular memory.", + "type": "object", + "properties": { + "pageSize": { + "description": "PageSize specifies the hugepage size, for x86_64 architecture valid values are 1Gi and 2Mi.", + "type": "string" + } + } + } + } + }, + "resources": { + "description": "Resources describes the Compute Resources required by this vmi.", + "type": "object", + "properties": { + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "overcommitGuestOverhead": { + "description": "Don't ask the scheduler to take the guest-management overhead into account. Instead put the overhead only into the container's memory limit. This can lead to crashes if all memory is in use on a node. Defaults to false.", + "type": "boolean" + }, + "requests": { + "description": "Requests is a description of the initial vmi resources. Valid resource keys are \"memory\" and \"cpu\".", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + } + } + }, + "evictionStrategy": { + "description": "EvictionStrategy can be set to \"LiveMigrate\" if the VirtualMachineInstance should be migrated instead of shut-off in case of a node drain.", + "type": "string" + }, + "hostname": { + "description": "Specifies the hostname of the vmi If not specified, the hostname will be set to the name of the vmi, if dhcp or cloud-init is configured properly.", + "type": "string" + }, + "livenessProbe": { + "description": "Periodic probe of VirtualMachineInstance liveness. VirtualmachineInstances will be stopped if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "networks": { + "description": "List of networks that can be attached to a vm's virtual interface.", + "type": "array", + "items": { + "description": "Network represents a network type and a resource that should be connected to the vm.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "multus": { + "description": "Represents the multus cni network.", + "type": "object", + "required": [ + "networkName" + ], + "properties": { + "default": { + "description": "Select the default network and add it to the multus-cni.io/default-network annotation.", + "type": "boolean" + }, + "networkName": { + "description": "References to a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "name": { + "description": "Network name. Must be a DNS_LABEL and unique within the vm. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "pod": { + "description": "Represents the stock pod network interface.", + "type": "object", + "properties": { + "vmIPv6NetworkCIDR": { + "description": "IPv6 CIDR for the vm network. Defaults to fd10:0:2::/120 if not specified.", + "type": "string" + }, + "vmNetworkCIDR": { + "description": "CIDR for vm network. Default 10.0.2.0/24 if not specified.", + "type": "string" + } + } + } + } + } + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the vmi to fit on a node. Selector which must match a node's labels for the vmi to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "readinessProbe": { + "description": "Periodic probe of VirtualMachineInstance service readiness. VirtualmachineInstances will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "object", + "properties": { + "exec": { + "description": "One and only one of the following should be specified. Exec specifies the action to take, it will be executed on the guest through the qemu-guest-agent. If the guest agent is not available, this probe will fail.", + "type": "object", + "properties": { + "command": { + "description": "Command is the command line to execute inside the container, the working directory for the command is root ('/') in the container's filesystem. The command is simply exec'd, it is not run inside a shell, so traditional shell instructions ('|', etc) won't work. To use a shell, you need to explicitly call out to that shell. Exit status of 0 is treated as live/healthy and non-zero is unhealthy.", + "type": "array", + "items": { + "type": "string" + } + } + } + }, + "failureThreshold": { + "description": "Minimum consecutive failures for the probe to be considered failed after having succeeded. Defaults to 3. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "guestAgentPing": { + "description": "GuestAgentPing contacts the qemu-guest-agent for availability checks.", + "type": "object" + }, + "httpGet": { + "description": "HTTPGet specifies the http request to perform.", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Host name to connect to, defaults to the pod IP. You probably want to set \"Host\" in httpHeaders instead.", + "type": "string" + }, + "httpHeaders": { + "description": "Custom headers to set in the request. HTTP allows repeated headers.", + "type": "array", + "items": { + "description": "HTTPHeader describes a custom header to be used in HTTP probes", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "The header field name", + "type": "string" + }, + "value": { + "description": "The header field value", + "type": "string" + } + } + } + }, + "path": { + "description": "Path to access on the HTTP server.", + "type": "string" + }, + "port": { + "description": "Name or number of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "scheme": { + "description": "Scheme to use for connecting to the host. Defaults to HTTP.", + "type": "string" + } + } + }, + "initialDelaySeconds": { + "description": "Number of seconds after the VirtualMachineInstance has started before liveness probes are initiated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + }, + "periodSeconds": { + "description": "How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "successThreshold": { + "description": "Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness. Minimum value is 1.", + "type": "integer", + "format": "int32" + }, + "tcpSocket": { + "description": "TCPSocket specifies an action involving a TCP port. TCP hooks not yet supported TODO: implement a realistic TCP lifecycle hook", + "type": "object", + "required": [ + "port" + ], + "properties": { + "host": { + "description": "Optional: Host name to connect to, defaults to the pod IP.", + "type": "string" + }, + "port": { + "description": "Number or name of the port to access on the container. Number must be in the range 1 to 65535. Name must be an IANA_SVC_NAME.", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "timeoutSeconds": { + "description": "Number of seconds after which the probe times out. For exec probes the timeout fails the probe but does not terminate the command running on the guest. This means a blocking command can result in an increasing load on the guest. A small buffer will be added to the resulting workload exec probe to compensate for delays caused by the qemu guest exec mechanism. Defaults to 1 second. Minimum value is 1. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "type": "integer", + "format": "int32" + } + } + }, + "schedulerName": { + "description": "If specified, the VMI will be dispatched by specified scheduler. If not specified, the VMI will be dispatched by default scheduler.", + "type": "string" + }, + "startStrategy": { + "description": "StartStrategy can be set to \"Paused\" if Virtual Machine should be started in paused state.", + "type": "string" + }, + "subdomain": { + "description": "If specified, the fully qualified vmi hostname will be \"...svc.\". If not specified, the vmi will not have a domainname at all. The DNS entry will resolve to the vmi, no matter if the vmi itself can pick up a hostname.", + "type": "string" + }, + "terminationGracePeriodSeconds": { + "description": "Grace period observed after signalling a VirtualMachineInstance to stop after which the VirtualMachineInstance is force terminated.", + "type": "integer", + "format": "int64" + }, + "tolerations": { + "description": "If toleration is specified, obey all the toleration rules.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints describes how a group of VMIs will be spread across a given topology domains. K8s scheduler will schedule VMI pods in a way which abides by the constraints.", + "type": "array", + "items": { + "description": "TopologySpreadConstraint specifies how to spread matching pods among the given topology.", + "type": "object", + "required": [ + "maxSkew", + "topologyKey", + "whenUnsatisfiable" + ], + "properties": { + "labelSelector": { + "description": "LabelSelector is used to find matching pods. Pods that match this label selector are counted to determine the number of pods in their corresponding topology domain.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "matchLabelKeys": { + "description": "MatchLabelKeys is a set of pod label keys to select the pods over which spreading will be calculated. The keys are used to lookup values from the incoming pod labels, those key-value labels are ANDed with labelSelector to select the group of existing pods over which spreading will be calculated for the incoming pod. Keys that don't exist in the incoming pod labels will be ignored. A null or empty list means only match against labelSelector.", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "maxSkew": { + "description": "MaxSkew describes the degree to which pods may be unevenly distributed. When 'whenUnsatisfiable=DoNotSchedule', it is the maximum permitted difference between the number of matching pods in the target topology and the global minimum. The global minimum is the minimum number of matching pods in an eligible domain or zero if the number of eligible domains is less than MinDomains. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 2/2/1: In this case, the global minimum is 1. | zone1 | zone2 | zone3 | | P P | P P | P | - if MaxSkew is 1, incoming pod can only be scheduled to zone3 to become 2/2/2; scheduling it onto zone1(zone2) would make the ActualSkew(3-1) on zone1(zone2) violate MaxSkew(1). - if MaxSkew is 2, incoming pod can be scheduled onto any zone. When 'whenUnsatisfiable=ScheduleAnyway', it is used to give higher precedence to topologies that satisfy it. It's a required field. Default value is 1 and 0 is not allowed.", + "type": "integer", + "format": "int32" + }, + "minDomains": { + "description": "MinDomains indicates a minimum number of eligible domains. When the number of eligible domains with matching topology keys is less than minDomains, Pod Topology Spread treats \"global minimum\" as 0, and then the calculation of Skew is performed. And when the number of eligible domains with matching topology keys equals or greater than minDomains, this value has no effect on scheduling. As a result, when the number of eligible domains is less than minDomains, scheduler won't schedule more than maxSkew Pods to those domains. If value is nil, the constraint behaves as if MinDomains is equal to 1. Valid values are integers greater than 0. When value is not nil, WhenUnsatisfiable must be DoNotSchedule. \n For example, in a 3-zone cluster, MaxSkew is set to 2, MinDomains is set to 5 and pods with the same labelSelector spread as 2/2/2: | zone1 | zone2 | zone3 | | P P | P P | P P | The number of domains is less than 5(MinDomains), so \"global minimum\" is treated as 0. In this situation, new pod with the same labelSelector cannot be scheduled, because computed skew will be 3(3 - 0) if new Pod is scheduled to any of the three zones, it will violate MaxSkew. \n This is a beta field and requires the MinDomainsInPodTopologySpread feature gate to be enabled (enabled by default).", + "type": "integer", + "format": "int32" + }, + "nodeAffinityPolicy": { + "description": "NodeAffinityPolicy indicates how we will treat Pod's nodeAffinity/nodeSelector when calculating pod topology spread skew. Options are: - Honor: only nodes matching nodeAffinity/nodeSelector are included in the calculations. - Ignore: nodeAffinity/nodeSelector are ignored. All nodes are included in the calculations. \n If this value is nil, the behavior is equivalent to the Honor policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "nodeTaintsPolicy": { + "description": "NodeTaintsPolicy indicates how we will treat node taints when calculating pod topology spread skew. Options are: - Honor: nodes without taints, along with tainted nodes for which the incoming pod has a toleration, are included. - Ignore: node taints are ignored. All nodes are included. \n If this value is nil, the behavior is equivalent to the Ignore policy. This is a beta-level feature default enabled by the NodeInclusionPolicyInPodTopologySpread feature flag.", + "type": "string" + }, + "topologyKey": { + "description": "TopologyKey is the key of node labels. Nodes that have a label with this key and identical values are considered to be in the same topology. We consider each as a \"bucket\", and try to put balanced number of pods into each bucket. We define a domain as a particular instance of a topology. Also, we define an eligible domain as a domain whose nodes meet the requirements of nodeAffinityPolicy and nodeTaintsPolicy. e.g. If TopologyKey is \"kubernetes.io/hostname\", each Node is a domain of that topology. And, if TopologyKey is \"topology.kubernetes.io/zone\", each zone is a domain of that topology. It's a required field.", + "type": "string" + }, + "whenUnsatisfiable": { + "description": "WhenUnsatisfiable indicates how to deal with a pod if it doesn't satisfy the spread constraint. - DoNotSchedule (default) tells the scheduler not to schedule it. - ScheduleAnyway tells the scheduler to schedule the pod in any location, but giving higher precedence to topologies that would help reduce the skew. A constraint is considered \"Unsatisfiable\" for an incoming pod if and only if every possible node assignment for that pod would violate \"MaxSkew\" on some topology. For example, in a 3-zone cluster, MaxSkew is set to 1, and pods with the same labelSelector spread as 3/1/1: | zone1 | zone2 | zone3 | | P P P | P | P | If WhenUnsatisfiable is set to DoNotSchedule, incoming pod can only be scheduled to zone2(zone3) to become 3/2/1(3/1/2) as ActualSkew(2-1) on zone2(zone3) satisfies MaxSkew(1). In other words, the cluster can still be imbalanced, but scheduler won't make it *more* imbalanced. It's a required field.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "topologyKey", + "whenUnsatisfiable" + ], + "x-kubernetes-list-type": "map" + }, + "volumes": { + "description": "List of volumes that can be mounted by disks belonging to the vmi.", + "type": "array", + "items": { + "description": "Volume represents a named volume in a vmi.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "cloudInitConfigDrive": { + "description": "CloudInitConfigDrive represents a cloud-init Config Drive user-data source. The Config Drive data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: https://cloudinit.readthedocs.io/en/latest/topics/datasources/configdrive.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains config drive inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains config drive cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains config drive networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains config drive userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains config drive inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains config drive cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "cloudInitNoCloud": { + "description": "CloudInitNoCloud represents a cloud-init NoCloud user-data source. The NoCloud data will be added as a disk to the vmi. A proper cloud-init installation is required inside the guest. More info: http://cloudinit.readthedocs.io/en/latest/topics/datasources/nocloud.html", + "type": "object", + "properties": { + "networkData": { + "description": "NetworkData contains NoCloud inline cloud-init networkdata.", + "type": "string" + }, + "networkDataBase64": { + "description": "NetworkDataBase64 contains NoCloud cloud-init networkdata as a base64 encoded string.", + "type": "string" + }, + "networkDataSecretRef": { + "description": "NetworkDataSecretRef references a k8s secret that contains NoCloud networkdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secretRef": { + "description": "UserDataSecretRef references a k8s secret that contains NoCloud userdata.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "userData": { + "description": "UserData contains NoCloud inline cloud-init userdata.", + "type": "string" + }, + "userDataBase64": { + "description": "UserDataBase64 contains NoCloud cloud-init userdata as a base64 encoded string.", + "type": "string" + } + } + }, + "configMap": { + "description": "ConfigMapSource represents a reference to a ConfigMap in the same namespace. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + }, + "optional": { + "description": "Specify whether the ConfigMap or it's keys must be defined", + "type": "boolean" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "containerDisk": { + "description": "ContainerDisk references a docker image, embedding a qcow or raw disk. More info: https://kubevirt.gitbooks.io/user-guide/registry-disk.html", + "type": "object", + "required": [ + "image" + ], + "properties": { + "image": { + "description": "Image is the name of the image with the embedded disk.", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "imagePullSecret": { + "description": "ImagePullSecret is the name of the Docker registry secret required to pull the image. The secret must already exist.", + "type": "string" + }, + "path": { + "description": "Path defines the path to disk file in the container", + "type": "string" + } + } + }, + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "downwardAPI": { + "description": "DownwardAPI represents downward API about the pod that should populate this volume", + "type": "object", + "properties": { + "fields": { + "description": "Fields is a list of downward API volume file", + "type": "array", + "items": { + "description": "DownwardAPIVolumeFile represents information to create the file containing the pod field", + "type": "object", + "required": [ + "path" + ], + "properties": { + "fieldRef": { + "description": "Required: Selects a field of the pod: only annotations, labels, name and namespace are supported.", + "type": "object", + "required": [ + "fieldPath" + ], + "properties": { + "apiVersion": { + "description": "Version of the schema the FieldPath is written in terms of, defaults to \"v1\".", + "type": "string" + }, + "fieldPath": { + "description": "Path of the field to select in the specified API version.", + "type": "string" + } + } + }, + "mode": { + "description": "Optional: mode bits used to set permissions on this file, must be an octal value between 0000 and 0777 or a decimal value between 0 and 511. YAML accepts both octal and decimal values, JSON requires decimal values for mode bits. If not specified, the volume defaultMode will be used. This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set.", + "type": "integer", + "format": "int32" + }, + "path": { + "description": "Required: Path is the relative path name of the file to be created. Must not be absolute or contain the '..' path. Must be utf-8 encoded. The first item of the relative path must not start with '..'", + "type": "string" + }, + "resourceFieldRef": { + "description": "Selects a resource of the container: only resources limits and requests (limits.cpu, limits.memory, requests.cpu and requests.memory) are currently supported.", + "type": "object", + "required": [ + "resource" + ], + "properties": { + "containerName": { + "description": "Container name: required for volumes, optional for env vars", + "type": "string" + }, + "divisor": { + "description": "Specifies the output format of the exposed resources, defaults to \"1\"", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "resource": { + "description": "Required: resource to select", + "type": "string" + } + } + } + } + } + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "downwardMetrics": { + "description": "DownwardMetrics adds a very small disk to VMIs which contains a limited view of host and guest metrics. The disk content is compatible with vhostmd (https://github.com/vhostmd/vhostmd) and vm-dump-metrics.", + "type": "object" + }, + "emptyDisk": { + "description": "EmptyDisk represents a temporary disk which shares the vmis lifecycle. More info: https://kubevirt.gitbooks.io/user-guide/disks-and-volumes.html", + "type": "object", + "required": [ + "capacity" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk.", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + }, + "ephemeral": { + "description": "Ephemeral is a special volume source that \"wraps\" specified source and provides copy-on-write image on top of it.", + "type": "object", + "properties": { + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + }, + "hostDisk": { + "description": "HostDisk represents a disk created on the cluster level", + "type": "object", + "required": [ + "path", + "type" + ], + "properties": { + "capacity": { + "description": "Capacity of the sparse disk", + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + }, + "path": { + "description": "The path to HostDisk image located on the cluster", + "type": "string" + }, + "shared": { + "description": "Shared indicate whether the path is shared between nodes", + "type": "boolean" + }, + "type": { + "description": "Contains information if disk.img exists or should be created allowed options are 'Disk' and 'DiskOrCreate'", + "type": "string" + } + } + }, + "memoryDump": { + "description": "MemoryDump is attached to the virt launcher and is populated with a memory dump of the vmi", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "name": { + "description": "Volume's name. Must be a DNS_LABEL and unique within the vmi. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names", + "type": "string" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "secret": { + "description": "SecretVolumeSource represents a reference to a secret data in the same namespace. More info: https://kubernetes.io/docs/concepts/configuration/secret/", + "type": "object", + "properties": { + "optional": { + "description": "Specify whether the Secret or it's keys must be defined", + "type": "boolean" + }, + "secretName": { + "description": "Name of the secret in the pod's namespace to use. More info: https://kubernetes.io/docs/concepts/storage/volumes#secret", + "type": "string" + }, + "volumeLabel": { + "description": "The volume label of the resulting disk inside the VMI. Different bootstrapping mechanisms require different values. Typical values are \"cidata\" (cloud-init), \"config-2\" (cloud-init) or \"OEMDRV\" (kickstart).", + "type": "string" + } + } + }, + "serviceAccount": { + "description": "ServiceAccountVolumeSource represents a reference to a service account. There can only be one volume of this type! More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "object", + "properties": { + "serviceAccountName": { + "description": "Name of the service account in the pod's namespace to use. More info: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/", + "type": "string" + } + } + }, + "sysprep": { + "description": "Represents a Sysprep volume source.", + "type": "object", + "properties": { + "configMap": { + "description": "ConfigMap references a ConfigMap that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + }, + "secret": { + "description": "Secret references a k8s Secret that contains Sysprep answer file named autounattend.xml that should be attached as disk of CDROM type.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + } + } + }, + "status": { + "description": "Status holds the current state of the controller and brief information about its associated VirtualMachineInstance", + "type": "object", + "properties": { + "conditions": { + "description": "Hold the state information of the VirtualMachine and its VirtualMachineInstance", + "type": "array", + "items": { + "description": "VirtualMachineCondition represents the state of VirtualMachine", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastProbeTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "type": "string" + } + } + } + }, + "created": { + "description": "Created indicates if the virtual machine is created in the cluster", + "type": "boolean" + }, + "desiredGeneration": { + "description": "DesiredGeneration is the generation which is desired for the VMI. This will be used in comparisons with ObservedGeneration to understand when the VMI is out of sync. This will be changed at the same time as ObservedGeneration to remove errors which could occur if Generation is updated through an Update() before ObservedGeneration in Status.", + "type": "integer", + "format": "int64" + }, + "interfaceRequests": { + "description": "InterfaceRequests indicates a list of interfaces added to the VMI template and hot-plugged on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addInterfaceOptions": { + "description": "AddInterfaceOptions when set indicates a network interface should be added. The details within this field specify how to add the interface", + "type": "object", + "required": [ + "name", + "networkAttachmentDefinitionName" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + }, + "networkAttachmentDefinitionName": { + "description": "NetworkAttachmentDefinitionName references a NetworkAttachmentDefinition CRD object. Format: , /. If namespace is not specified, VMI namespace is assumed.", + "type": "string" + } + } + }, + "removeInterfaceOptions": { + "description": "RemoveInterfaceOptions when set indicates a network interface should be removed. The details within this field specify how to remove the interface", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name indicates the logical name of the interface.", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "memoryDumpRequest": { + "description": "MemoryDumpRequest tracks memory dump request phase and info of getting a memory dump to the given pvc", + "type": "object", + "required": [ + "claimName", + "phase" + ], + "properties": { + "claimName": { + "description": "ClaimName is the name of the pvc that will contain the memory dump", + "type": "string" + }, + "endTimestamp": { + "description": "EndTimestamp represents the time the memory dump was completed", + "type": "string", + "format": "date-time" + }, + "fileName": { + "description": "FileName represents the name of the output file", + "type": "string" + }, + "message": { + "description": "Message is a detailed message about failure of the memory dump", + "type": "string" + }, + "phase": { + "description": "Phase represents the memory dump phase", + "type": "string" + }, + "remove": { + "description": "Remove represents request of dissociating the memory dump pvc", + "type": "boolean" + }, + "startTimestamp": { + "description": "StartTimestamp represents the time the memory dump started", + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "observedGeneration": { + "description": "ObservedGeneration is the generation observed by the vmi when started.", + "type": "integer", + "format": "int64" + }, + "printableStatus": { + "description": "PrintableStatus is a human readable, high-level representation of the status of the virtual machine", + "type": "string" + }, + "ready": { + "description": "Ready indicates if the virtual machine is running and ready", + "type": "boolean" + }, + "restoreInProgress": { + "description": "RestoreInProgress is the name of the VirtualMachineRestore currently executing", + "type": "string" + }, + "snapshotInProgress": { + "description": "SnapshotInProgress is the name of the VirtualMachineSnapshot currently executing", + "type": "string" + }, + "startFailure": { + "description": "StartFailure tracks consecutive VMI startup failures for the purposes of crash loop backoffs", + "type": "object", + "properties": { + "consecutiveFailCount": { + "type": "integer" + }, + "lastFailedVMIUID": { + "description": "UID is a type that holds unique ID values, including UUIDs. Because we don't ONLY use UUIDs, this is an alias to string. Being a type captures intent and helps make sure that UIDs and names do not get conflated.", + "type": "string" + }, + "retryAfterTimestamp": { + "type": "string", + "format": "date-time" + } + }, + "nullable": true + }, + "stateChangeRequests": { + "description": "StateChangeRequests indicates a list of actions that should be taken on a VMI e.g. stop a specific VMI then start a new one.", + "type": "array", + "items": { + "type": "object", + "required": [ + "action" + ], + "properties": { + "action": { + "description": "Indicates the type of action that is requested. e.g. Start or Stop", + "type": "string" + }, + "data": { + "description": "Provides additional data in order to perform the Action", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "uid": { + "description": "Indicates the UUID of an existing Virtual Machine Instance that this change request applies to -- if applicable", + "type": "string" + } + } + } + }, + "volumeRequests": { + "description": "VolumeRequests indicates a list of volumes add or remove from the VMI template and hotplug on an active running VMI.", + "type": "array", + "items": { + "type": "object", + "properties": { + "addVolumeOptions": { + "description": "AddVolumeOptions when set indicates a volume should be added. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "disk", + "name", + "volumeSource" + ], + "properties": { + "disk": { + "description": "Disk represents the hotplug disk that will be plugged into the running VMI", + "type": "object", + "required": [ + "name" + ], + "properties": { + "blockSize": { + "description": "If specified, the virtual disk will be presented with the given block sizes.", + "type": "object", + "properties": { + "custom": { + "description": "CustomBlockSize represents the desired logical and physical block size for a VM disk.", + "type": "object", + "required": [ + "logical", + "physical" + ], + "properties": { + "logical": { + "type": "integer" + }, + "physical": { + "type": "integer" + } + } + }, + "matchVolume": { + "description": "Represents if a feature is enabled or disabled.", + "type": "object", + "properties": { + "enabled": { + "description": "Enabled determines if the feature should be enabled or disabled on the guest. Defaults to true.", + "type": "boolean" + } + } + } + } + }, + "bootOrder": { + "description": "BootOrder is an integer value > 0, used to determine ordering of boot devices. Lower values take precedence. Each disk or interface that has a boot order must have a unique value. Disks without a boot order are not tried if a disk with a boot order exists.", + "type": "integer" + }, + "cache": { + "description": "Cache specifies which kvm disk cache mode should be used. Supported values are: CacheNone, CacheWriteThrough.", + "type": "string" + }, + "cdrom": { + "description": "Attach a volume as a cdrom to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to true.", + "type": "boolean" + }, + "tray": { + "description": "Tray indicates if the tray of the device is open or closed. Allowed values are \"open\" and \"closed\". Defaults to closed.", + "type": "string" + } + } + }, + "dedicatedIOThread": { + "description": "dedicatedIOThread indicates this disk should have an exclusive IO Thread. Enabling this implies useIOThreads = true. Defaults to false.", + "type": "boolean" + }, + "disk": { + "description": "Attach a volume as a disk to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi, usb.", + "type": "string" + }, + "pciAddress": { + "description": "If specified, the virtual disk will be placed on the guests pci address with the specified PCI address. For example: 0000:81:01.10", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + } + } + }, + "io": { + "description": "IO specifies which QEMU disk IO mode should be used. Supported values are: native, default, threads.", + "type": "string" + }, + "lun": { + "description": "Attach a volume as a LUN to the vmi.", + "type": "object", + "properties": { + "bus": { + "description": "Bus indicates the type of disk device to emulate. supported values: virtio, sata, scsi.", + "type": "string" + }, + "readonly": { + "description": "ReadOnly. Defaults to false.", + "type": "boolean" + }, + "reservation": { + "description": "Reservation indicates if the disk needs to support the persistent reservation for the SCSI disk", + "type": "boolean" + } + } + }, + "name": { + "description": "Name is the device name", + "type": "string" + }, + "serial": { + "description": "Serial provides the ability to specify a serial number for the disk device.", + "type": "string" + }, + "shareable": { + "description": "If specified the disk is made sharable and multiple write from different VMs are permitted", + "type": "boolean" + }, + "tag": { + "description": "If specified, disk address and its tag will be provided to the guest via config drive metadata", + "type": "string" + } + } + }, + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that will be used to map the disk to the corresponding volume. This overrides any name set inside the Disk struct itself.", + "type": "string" + }, + "volumeSource": { + "description": "VolumeSource represents the source of the volume to map to the disk.", + "type": "object", + "properties": { + "dataVolume": { + "description": "DataVolume represents the dynamic creation a PVC for this volume as well as the process of populating that PVC with a disk image.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "name": { + "description": "Name of both the DataVolume and the PVC in the same namespace. After PVC population the DataVolume is garbage collected by default.", + "type": "string" + } + } + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + } + } + } + } + }, + "removeVolumeOptions": { + "description": "RemoveVolumeOptions when set indicates a volume should be removed. The details within this field specify how to add the volume", + "type": "object", + "required": [ + "name" + ], + "properties": { + "dryRun": { + "description": "When present, indicates that modifications should not be persisted. An invalid or unrecognized dryRun directive will result in an error response and no further processing of the request. Valid values are: - All: all dry run stages will be processed", + "type": "array", + "items": { + "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "name": { + "description": "Name represents the name that maps to both the disk and volume that should be removed", + "type": "string" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumeSnapshotStatuses": { + "description": "VolumeSnapshotStatuses indicates a list of statuses whether snapshotting is supported by each volume.", + "type": "array", + "items": { + "type": "object", + "required": [ + "enabled", + "name" + ], + "properties": { + "enabled": { + "description": "True if the volume supports snapshotting", + "type": "boolean" + }, + "name": { + "description": "Volume name", + "type": "string" + }, + "reason": { + "description": "Empty if snapshotting is enabled, contains reason otherwise", + "type": "string" + } + } + } + } + } + } + } + } + } + }, + "virtualMachineSnapshotName": { + "type": "string" + }, + "volumeBackups": { + "type": "array", + "items": { + "description": "VolumeBackup contains the data neeed to restore a PVC", + "type": "object", + "required": [ + "persistentVolumeClaim", + "volumeName" + ], + "properties": { + "persistentVolumeClaim": { + "type": "object", + "properties": { + "metadata": { + "description": "Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata", + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + }, + "spec": { + "description": "Spec defines the desired characteristics of a volume requested by a pod author. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + } + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable. It can only be set for containers.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "volumeName": { + "type": "string" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + }, + "status": { + "description": "VirtualMachineSnapshotContentStatus is the status for a VirtualMachineSnapshotStatus resource", + "type": "object", + "properties": { + "creationTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "readyToUse": { + "type": "boolean" + }, + "volumeSnapshotStatus": { + "type": "array", + "items": { + "description": "VolumeSnapshotStatus is the status of a VolumeSnapshot", + "type": "object", + "required": [ + "volumeSnapshotName" + ], + "properties": { + "creationTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "error": { + "description": "Error is the last error encountered during the snapshot/restore", + "type": "object", + "properties": { + "message": { + "type": "string" + }, + "time": { + "type": "string", + "format": "date-time" + } + } + }, + "readyToUse": { + "type": "boolean" + }, + "volumeSnapshotName": { + "type": "string" + } + } + } + } + } + } + } + } + }, + "additionalPrinterColumns": [ + { + "name": "ReadyToUse", + "type": "boolean", + "jsonPath": ".status.readyToUse" + }, + { + "name": "CreationTime", + "type": "date", + "jsonPath": ".status.creationTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "virtualmachinesnapshotcontents", + "singular": "virtualmachinesnapshotcontent", + "shortNames": [ + "vmsnapshotcontent", + "vmsnapshotcontents" + ], + "kind": "VirtualMachineSnapshotContent", + "listKind": "VirtualMachineSnapshotContentList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1alpha1" + ] + } + }, + "additionalColumns": [ + { + "name": "ReadyToUse", + "type": "boolean", + "jsonPath": ".status.readyToUse" + }, + { + "name": "CreationTime", + "type": "date", + "jsonPath": ".status.creationTime" + }, + { + "name": "Error", + "type": "string", + "jsonPath": ".status.error.message" + } + ], + "short": "VirtualMachineSnapshotContent", + "apiGroup": "snapshot.kubevirt.io", + "apiKind": "VirtualMachineSnapshotContent", + "apiVersion": "v1alpha1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.CDI", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "CDISpec defines our specification for the CDI installation", + "type": "object", + "properties": { + "certConfig": { + "description": "certificate configuration", + "type": "object", + "properties": { + "ca": { + "description": "CA configuration CA certs are kept in the CA bundle as long as they are valid", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's `notAfter` time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + }, + "server": { + "description": "Server configuration Certs are rotated and discarded", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's `notAfter` time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + } + } + }, + "cloneStrategyOverride": { + "description": "Clone strategy override: should we use a host-assisted copy even if snapshots are available?", + "type": "string", + "enum": [ + "copy", + "snapshot", + "csi-clone" + ] + }, + "config": { + "description": "CDIConfig at CDI level", + "type": "object", + "properties": { + "dataVolumeTTLSeconds": { + "description": "DataVolumeTTLSeconds is the time in seconds after DataVolume completion it can be garbage collected. Disabled by default.", + "type": "integer", + "format": "int32" + }, + "featureGates": { + "description": "FeatureGates are a list of specific enabled feature gates", + "type": "array", + "items": { + "type": "string" + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A value is between 0 and 1, if not defined it is 0.055 (5.5% overhead)", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "insecureRegistries": { + "description": "InsecureRegistries is a list of TLS disabled registries", + "type": "array", + "items": { + "type": "string" + } + }, + "podResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "Override the storage class to used for scratch space during transfer operations. The scratch space storage class is determined in the following order: 1. value of scratchSpaceStorageClass, if that doesn't exist, use the default storage class, if there is no default storage class, use the storage class of the DataVolume, if no storage class specified, use no storage class for scratch space", + "type": "string" + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile is used by operators to apply cluster-wide TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: \n ciphers: - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1" + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2" + }, + "modern": { + "description": "modern is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 \n NOTE: Currently unsupported." + }, + "old": { + "description": "old is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-CHACHA20-POLY1305 - ECDHE-ECDSA-AES128-SHA256 - ECDHE-RSA-AES128-SHA256 - ECDHE-ECDSA-AES128-SHA - ECDHE-RSA-AES128-SHA - ECDHE-ECDSA-AES256-SHA384 - ECDHE-RSA-AES256-SHA384 - ECDHE-ECDSA-AES256-SHA - ECDHE-RSA-AES256-SHA - DHE-RSA-AES128-SHA256 - DHE-RSA-AES256-SHA256 - AES128-GCM-SHA256 - AES256-GCM-SHA384 - AES128-SHA256 - AES256-SHA256 - AES128-SHA - AES256-SHA - DES-CBC3-SHA minTLSVersion: TLSv1.0" + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations \n The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced. \n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + } + }, + "uploadProxyURLOverride": { + "description": "Override the URL used when uploading to a DataVolume", + "type": "string" + } + } + }, + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string", + "enum": [ + "Always", + "IfNotPresent", + "Never" + ] + }, + "infra": { + "description": "Rules on which nodes CDI infrastructure pods will be scheduled", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "priorityClass": { + "description": "PriorityClass of the CDI control plane", + "type": "string" + }, + "uninstallStrategy": { + "description": "CDIUninstallStrategy defines the state to leave CDI on uninstall", + "type": "string", + "enum": [ + "RemoveWorkloads", + "BlockUninstallIfWorkloadsExist" + ] + }, + "workload": { + "description": "Restrict on which nodes CDI workload pods will be scheduled", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + } + } + }, + "status": { + "description": "CDIStatus defines the status of the installation", + "type": "object", + "properties": { + "conditions": { + "description": "A list of current conditions of the resource", + "type": "array", + "items": { + "description": "Condition represents the state of the operator's reconciliation functionality.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the state of the operator's reconciliation functionality.", + "type": "string" + } + } + } + }, + "observedVersion": { + "description": "The observed version of the resource", + "type": "string" + }, + "operatorVersion": { + "description": "The version of the resource as defined by the operator", + "type": "string" + }, + "phase": { + "description": "Phase is the current phase of the deployment", + "type": "string" + }, + "targetVersion": { + "description": "The desired version of the resource", + "type": "string" + } + } + } + }, + "description": "CDI is the CDI Operator CRD", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "CDI", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "cdis.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "cdis", + "singular": "cdi", + "shortNames": [ + "cdi", + "cdis" + ], + "kind": "CDI", + "listKind": "CDIList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "CDI is the CDI Operator CRD", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "CDISpec defines our specification for the CDI installation", + "type": "object", + "properties": { + "certConfig": { + "description": "certificate configuration", + "type": "object", + "properties": { + "ca": { + "description": "CA configuration CA certs are kept in the CA bundle as long as they are valid", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's `notAfter` time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + }, + "server": { + "description": "Server configuration Certs are rotated and discarded", + "type": "object", + "properties": { + "duration": { + "description": "The requested 'duration' (i.e. lifetime) of the Certificate.", + "type": "string" + }, + "renewBefore": { + "description": "The amount of time before the currently issued certificate's `notAfter` time that we will begin to attempt to renew the certificate.", + "type": "string" + } + } + } + } + }, + "cloneStrategyOverride": { + "description": "Clone strategy override: should we use a host-assisted copy even if snapshots are available?", + "type": "string", + "enum": [ + "copy", + "snapshot", + "csi-clone" + ] + }, + "config": { + "description": "CDIConfig at CDI level", + "type": "object", + "properties": { + "dataVolumeTTLSeconds": { + "description": "DataVolumeTTLSeconds is the time in seconds after DataVolume completion it can be garbage collected. Disabled by default.", + "type": "integer", + "format": "int32" + }, + "featureGates": { + "description": "FeatureGates are a list of specific enabled feature gates", + "type": "array", + "items": { + "type": "string" + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A value is between 0 and 1, if not defined it is 0.055 (5.5% overhead)", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "insecureRegistries": { + "description": "InsecureRegistries is a list of TLS disabled registries", + "type": "array", + "items": { + "type": "string" + } + }, + "podResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "Override the storage class to used for scratch space during transfer operations. The scratch space storage class is determined in the following order: 1. value of scratchSpaceStorageClass, if that doesn't exist, use the default storage class, if there is no default storage class, use the storage class of the DataVolume, if no storage class specified, use no storage class for scratch space", + "type": "string" + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile is used by operators to apply cluster-wide TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: \n ciphers: - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1", + "type": "object", + "properties": { + "ciphers": { + "description": "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake. Operators may remove entries their operands do not support. For example, to use DES-CBC3-SHA (yaml): \n ciphers: - DES-CBC3-SHA", + "type": "array", + "items": { + "type": "string" + } + }, + "minTLSVersion": { + "description": "minTLSVersion is used to specify the minimal version of the TLS protocol that is negotiated during the TLS handshake. For example, to use TLS versions 1.1, 1.2 and 1.3 (yaml): \n minTLSVersion: TLSv1.1 \n NOTE: currently the highest minTLSVersion allowed is VersionTLS12", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + }, + "nullable": true + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2", + "type": "object", + "nullable": true + }, + "modern": { + "description": "modern is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 \n NOTE: Currently unsupported.", + "type": "object", + "nullable": true + }, + "old": { + "description": "old is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-CHACHA20-POLY1305 - ECDHE-ECDSA-AES128-SHA256 - ECDHE-RSA-AES128-SHA256 - ECDHE-ECDSA-AES128-SHA - ECDHE-RSA-AES128-SHA - ECDHE-ECDSA-AES256-SHA384 - ECDHE-RSA-AES256-SHA384 - ECDHE-ECDSA-AES256-SHA - ECDHE-RSA-AES256-SHA - DHE-RSA-AES128-SHA256 - DHE-RSA-AES256-SHA256 - AES128-GCM-SHA256 - AES256-GCM-SHA384 - AES128-SHA256 - AES256-SHA256 - AES128-SHA - AES256-SHA - DES-CBC3-SHA minTLSVersion: TLSv1.0", + "type": "object", + "nullable": true + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations \n The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced. \n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + } + }, + "uploadProxyURLOverride": { + "description": "Override the URL used when uploading to a DataVolume", + "type": "string" + } + } + }, + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string", + "enum": [ + "Always", + "IfNotPresent", + "Never" + ] + }, + "infra": { + "description": "Rules on which nodes CDI infrastructure pods will be scheduled", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "priorityClass": { + "description": "PriorityClass of the CDI control plane", + "type": "string" + }, + "uninstallStrategy": { + "description": "CDIUninstallStrategy defines the state to leave CDI on uninstall", + "type": "string", + "enum": [ + "RemoveWorkloads", + "BlockUninstallIfWorkloadsExist" + ] + }, + "workload": { + "description": "Restrict on which nodes CDI workload pods will be scheduled", + "type": "object", + "properties": { + "affinity": { + "description": "affinity enables pod affinity/anti-affinity placement expanding the types of constraints that can be expressed with nodeSelector. affinity is going to be applied to the relevant kind of pods in parallel with nodeSelector See https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#affinity-and-anti-affinity", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "x-kubernetes-map-type": "atomic" + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaceSelector": { + "description": "A label query over the set of namespaces that the term applies to. The term is applied to the union of the namespaces selected by this field and the ones listed in the namespaces field. null selector and null or empty namespaces list means \"this pod's namespace\". An empty selector ({}) matches all namespaces.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "namespaces": { + "description": "namespaces specifies a static list of namespace names that the term applies to. The term is applied to the union of the namespaces listed in this field and the ones selected by namespaceSelector. null or empty namespaces list and null namespaceSelector means \"this pod's namespace\".", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "description": "nodeSelector is the node selector applied to the relevant kind of pods It specifies a map of key-value pairs: for the pod to be eligible to run on a node, the node must have each of the indicated key-value pairs as labels (it can have additional labels as well). See https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "description": "tolerations is a list of tolerations applied to the relevant kind of pods See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/ for more info. These are additional tolerations other than default ones.", + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + } + } + }, + "status": { + "description": "CDIStatus defines the status of the installation", + "type": "object", + "properties": { + "conditions": { + "description": "A list of current conditions of the resource", + "type": "array", + "items": { + "description": "Condition represents the state of the operator's reconciliation functionality.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the state of the operator's reconciliation functionality.", + "type": "string" + } + } + } + }, + "observedVersion": { + "description": "The observed version of the resource", + "type": "string" + }, + "operatorVersion": { + "description": "The version of the resource as defined by the operator", + "type": "string" + }, + "phase": { + "description": "Phase is the current phase of the deployment", + "type": "string" + }, + "targetVersion": { + "description": "The desired version of the resource", + "type": "string" + } + } + } + } + } + }, + "subresources": {}, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "cdis", + "singular": "cdi", + "shortNames": [ + "cdi", + "cdis" + ], + "kind": "CDI", + "listKind": "CDIList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "additionalColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "jsonPath": ".status.phase" + } + ], + "short": "CDI", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "CDI", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.CDIConfig", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "CDIConfigSpec defines specification for user configuration", + "type": "object", + "properties": { + "dataVolumeTTLSeconds": { + "description": "DataVolumeTTLSeconds is the time in seconds after DataVolume completion it can be garbage collected. Disabled by default.", + "type": "integer", + "format": "int32" + }, + "featureGates": { + "description": "FeatureGates are a list of specific enabled feature gates", + "type": "array", + "items": { + "type": "string" + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A value is between 0 and 1, if not defined it is 0.055 (5.5% overhead)", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "insecureRegistries": { + "description": "InsecureRegistries is a list of TLS disabled registries", + "type": "array", + "items": { + "type": "string" + } + }, + "podResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "Override the storage class to used for scratch space during transfer operations. The scratch space storage class is determined in the following order: 1. value of scratchSpaceStorageClass, if that doesn't exist, use the default storage class, if there is no default storage class, use the storage class of the DataVolume, if no storage class specified, use no storage class for scratch space", + "type": "string" + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile is used by operators to apply cluster-wide TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: \n ciphers: - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1" + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2" + }, + "modern": { + "description": "modern is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 \n NOTE: Currently unsupported." + }, + "old": { + "description": "old is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-CHACHA20-POLY1305 - ECDHE-ECDSA-AES128-SHA256 - ECDHE-RSA-AES128-SHA256 - ECDHE-ECDSA-AES128-SHA - ECDHE-RSA-AES128-SHA - ECDHE-ECDSA-AES256-SHA384 - ECDHE-RSA-AES256-SHA384 - ECDHE-ECDSA-AES256-SHA - ECDHE-RSA-AES256-SHA - DHE-RSA-AES128-SHA256 - DHE-RSA-AES256-SHA256 - AES128-GCM-SHA256 - AES256-GCM-SHA384 - AES128-SHA256 - AES256-SHA256 - AES128-SHA - AES256-SHA - DES-CBC3-SHA minTLSVersion: TLSv1.0" + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations \n The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced. \n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + } + }, + "uploadProxyURLOverride": { + "description": "Override the URL used when uploading to a DataVolume", + "type": "string" + } + } + }, + "status": { + "description": "CDIConfigStatus provides the most recently observed status of the CDI Config resource", + "type": "object", + "properties": { + "defaultPodResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A percentage value is between 0 and 1", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "The calculated storage class to be used for scratch space", + "type": "string" + }, + "uploadProxyURL": { + "description": "The calculated upload proxy URL", + "type": "string" + } + } + } + }, + "description": "CDIConfig provides a user configuration for CDI", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "CDIConfig", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "cdiconfigs.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "cdiconfigs", + "singular": "cdiconfig", + "kind": "CDIConfig", + "listKind": "CDIConfigList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "CDIConfig provides a user configuration for CDI", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "CDIConfigSpec defines specification for user configuration", + "type": "object", + "properties": { + "dataVolumeTTLSeconds": { + "description": "DataVolumeTTLSeconds is the time in seconds after DataVolume completion it can be garbage collected. Disabled by default.", + "type": "integer", + "format": "int32" + }, + "featureGates": { + "description": "FeatureGates are a list of specific enabled feature gates", + "type": "array", + "items": { + "type": "string" + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A value is between 0 and 1, if not defined it is 0.055 (5.5% overhead)", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "insecureRegistries": { + "description": "InsecureRegistries is a list of TLS disabled registries", + "type": "array", + "items": { + "type": "string" + } + }, + "podResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "Override the storage class to used for scratch space during transfer operations. The scratch space storage class is determined in the following order: 1. value of scratchSpaceStorageClass, if that doesn't exist, use the default storage class, if there is no default storage class, use the storage class of the DataVolume, if no storage class specified, use no storage class for scratch space", + "type": "string" + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile is used by operators to apply cluster-wide TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: \n ciphers: - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1", + "type": "object", + "properties": { + "ciphers": { + "description": "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake. Operators may remove entries their operands do not support. For example, to use DES-CBC3-SHA (yaml): \n ciphers: - DES-CBC3-SHA", + "type": "array", + "items": { + "type": "string" + } + }, + "minTLSVersion": { + "description": "minTLSVersion is used to specify the minimal version of the TLS protocol that is negotiated during the TLS handshake. For example, to use TLS versions 1.1, 1.2 and 1.3 (yaml): \n minTLSVersion: TLSv1.1 \n NOTE: currently the highest minTLSVersion allowed is VersionTLS12", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + }, + "nullable": true + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2", + "type": "object", + "nullable": true + }, + "modern": { + "description": "modern is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 \n NOTE: Currently unsupported.", + "type": "object", + "nullable": true + }, + "old": { + "description": "old is a TLS security profile based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility \n and looks like this (yaml): \n ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-CHACHA20-POLY1305 - ECDHE-ECDSA-AES128-SHA256 - ECDHE-RSA-AES128-SHA256 - ECDHE-ECDSA-AES128-SHA - ECDHE-RSA-AES128-SHA - ECDHE-ECDSA-AES256-SHA384 - ECDHE-RSA-AES256-SHA384 - ECDHE-ECDSA-AES256-SHA - ECDHE-RSA-AES256-SHA - DHE-RSA-AES128-SHA256 - DHE-RSA-AES256-SHA256 - AES128-GCM-SHA256 - AES256-GCM-SHA384 - AES128-SHA256 - AES256-SHA256 - AES128-SHA - AES256-SHA - DES-CBC3-SHA minTLSVersion: TLSv1.0", + "type": "object", + "nullable": true + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on: \n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations \n The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced. \n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + } + }, + "uploadProxyURLOverride": { + "description": "Override the URL used when uploading to a DataVolume", + "type": "string" + } + } + }, + "status": { + "description": "CDIConfigStatus provides the most recently observed status of the CDI Config resource", + "type": "object", + "properties": { + "defaultPodResourceRequirements": { + "description": "ResourceRequirements describes the compute resource requirements.", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "filesystemOverhead": { + "description": "FilesystemOverhead describes the space reserved for overhead when using Filesystem volumes. A percentage value is between 0 and 1", + "type": "object", + "properties": { + "global": { + "description": "Global is how much space of a Filesystem volume should be reserved for overhead. This value is used unless overridden by a more specific value (per storageClass)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + }, + "storageClass": { + "description": "StorageClass specifies how much space of a Filesystem volume should be reserved for safety. The keys are the storageClass and the values are the overhead. This value overrides the global value", + "type": "object", + "additionalProperties": { + "description": "Percent is a string that can only be a value between [0,1) (Note: we actually rely on reconcile to reject invalid values)", + "type": "string", + "pattern": "^(0(?:\\.\\d{1,3})?|1)$" + } + } + } + }, + "imagePullSecrets": { + "description": "The imagePullSecrets used to pull the container images", + "type": "array", + "items": { + "description": "LocalObjectReference contains enough information to let you locate the referenced object inside the same namespace.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + }, + "importProxy": { + "description": "ImportProxy contains importer pod proxy configuration.", + "type": "object", + "properties": { + "HTTPProxy": { + "description": "HTTPProxy is the URL http://:@: of the import proxy for HTTP requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "HTTPSProxy": { + "description": "HTTPSProxy is the URL https://:@: of the import proxy for HTTPS requests. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "noProxy": { + "description": "NoProxy is a comma-separated list of hostnames and/or CIDRs for which the proxy should not be used. Empty means unset and will not result in the import pod env var.", + "type": "string" + }, + "trustedCAProxy": { + "description": "TrustedCAProxy is the name of a ConfigMap in the cdi namespace that contains a user-provided trusted certificate authority (CA) bundle. The TrustedCAProxy ConfigMap is consumed by the DataImportCron controller for creating cronjobs, and by the import controller referring a copy of the ConfigMap in the import namespace. Here is an example of the ConfigMap (in yaml): \n apiVersion: v1 kind: ConfigMap metadata: name: my-ca-proxy-cm namespace: cdi data: ca.pem: | -----BEGIN CERTIFICATE----- ... ... -----END CERTIFICATE-----", + "type": "string" + } + } + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "scratchSpaceStorageClass": { + "description": "The calculated storage class to be used for scratch space", + "type": "string" + }, + "uploadProxyURL": { + "description": "The calculated upload proxy URL", + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "cdiconfigs", + "singular": "cdiconfig", + "kind": "CDIConfig", + "listKind": "CDIConfigList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "CDIConfig", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "CDIConfig", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.DataImportCron", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "DataImportCronSpec defines specification for DataImportCron", + "type": "object", + "required": [ + "managedDataSource", + "schedule", + "template" + ], + "properties": { + "garbageCollect": { + "description": "GarbageCollect specifies whether old PVCs should be cleaned up after a new PVC is imported. Options are currently \"Outdated\" and \"Never\", defaults to \"Outdated\".", + "type": "string" + }, + "importsToKeep": { + "description": "Number of import PVCs to keep when garbage collecting. Default is 3.", + "type": "integer", + "format": "int32" + }, + "managedDataSource": { + "description": "ManagedDataSource specifies the name of the corresponding DataSource this cron will manage. DataSource has to be in the same namespace.", + "type": "string" + }, + "retentionPolicy": { + "description": "RetentionPolicy specifies whether the created DataVolumes and DataSources are retained when their DataImportCron is deleted. Default is RatainAll.", + "type": "string" + }, + "schedule": { + "description": "Schedule specifies in cron format when and how often to look for new imports", + "type": "string" + }, + "template": { + "description": "Template specifies template for the DVs to be created", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "DataVolumeSpec defines the DataVolume type specification", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeStatus contains the current status of the DataVolume", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the underlying PVC used by the DataVolume.", + "type": "string" + }, + "conditions": { + "type": "array", + "items": { + "description": "DataVolumeCondition represents the state of a data volume condition.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataVolumeConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "phase": { + "description": "Phase is the current phase of the data volume", + "type": "string" + }, + "progress": { + "description": "DataVolumeProgress is the current progress of the DataVolume transfer operation. Value between 0 and 100 inclusive, N/A if not available", + "type": "string" + }, + "restartCount": { + "description": "RestartCount is the number of times the pod populating the DataVolume has restarted", + "type": "integer", + "format": "int32" + } + } + } + } + } + } + }, + "status": { + "description": "DataImportCronStatus provides the most recently observed status of the DataImportCron", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "DataImportCronCondition represents the state of a data import cron condition", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataImportCronConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "currentImports": { + "description": "CurrentImports are the imports in progress. Currently only a single import is supported.", + "type": "array", + "items": { + "description": "ImportStatus of a currently in progress import", + "type": "object", + "required": [ + "DataVolumeName", + "Digest" + ], + "properties": { + "DataVolumeName": { + "description": "DataVolumeName is the currently in progress import DataVolume", + "type": "string" + }, + "Digest": { + "description": "Digest of the currently imported image", + "type": "string" + } + } + } + }, + "lastExecutionTimestamp": { + "description": "LastExecutionTimestamp is the time of the last polling", + "type": "string", + "format": "date-time" + }, + "lastImportTimestamp": { + "description": "LastImportTimestamp is the time of the last import", + "type": "string", + "format": "date-time" + }, + "lastImportedPVC": { + "description": "LastImportedPVC is the last imported PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + } + } + } + }, + "description": "DataImportCron defines a cron job for recurring polling/importing disk images as PVCs into a golden image namespace", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "DataImportCron", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "dataimportcrons.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "dataimportcrons", + "singular": "dataimportcron", + "shortNames": [ + "dic", + "dics" + ], + "kind": "DataImportCron", + "listKind": "DataImportCronList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "DataImportCron defines a cron job for recurring polling/importing disk images as PVCs into a golden image namespace", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "DataImportCronSpec defines specification for DataImportCron", + "type": "object", + "required": [ + "managedDataSource", + "schedule", + "template" + ], + "properties": { + "garbageCollect": { + "description": "GarbageCollect specifies whether old PVCs should be cleaned up after a new PVC is imported. Options are currently \"Outdated\" and \"Never\", defaults to \"Outdated\".", + "type": "string" + }, + "importsToKeep": { + "description": "Number of import PVCs to keep when garbage collecting. Default is 3.", + "type": "integer", + "format": "int32" + }, + "managedDataSource": { + "description": "ManagedDataSource specifies the name of the corresponding DataSource this cron will manage. DataSource has to be in the same namespace.", + "type": "string" + }, + "retentionPolicy": { + "description": "RetentionPolicy specifies whether the created DataVolumes and DataSources are retained when their DataImportCron is deleted. Default is RatainAll.", + "type": "string" + }, + "schedule": { + "description": "Schedule specifies in cron format when and how often to look for new imports", + "type": "string" + }, + "template": { + "description": "Template specifies template for the DVs to be created", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "DataVolumeSpec defines the DataVolume type specification", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeStatus contains the current status of the DataVolume", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the underlying PVC used by the DataVolume.", + "type": "string" + }, + "conditions": { + "type": "array", + "items": { + "description": "DataVolumeCondition represents the state of a data volume condition.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataVolumeConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "phase": { + "description": "Phase is the current phase of the data volume", + "type": "string" + }, + "progress": { + "description": "DataVolumeProgress is the current progress of the DataVolume transfer operation. Value between 0 and 100 inclusive, N/A if not available", + "type": "string" + }, + "restartCount": { + "description": "RestartCount is the number of times the pod populating the DataVolume has restarted", + "type": "integer", + "format": "int32" + } + } + } + } + } + } + }, + "status": { + "description": "DataImportCronStatus provides the most recently observed status of the DataImportCron", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "DataImportCronCondition represents the state of a data import cron condition", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataImportCronConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "currentImports": { + "description": "CurrentImports are the imports in progress. Currently only a single import is supported.", + "type": "array", + "items": { + "description": "ImportStatus of a currently in progress import", + "type": "object", + "required": [ + "DataVolumeName", + "Digest" + ], + "properties": { + "DataVolumeName": { + "description": "DataVolumeName is the currently in progress import DataVolume", + "type": "string" + }, + "Digest": { + "description": "Digest of the currently imported image", + "type": "string" + } + } + } + }, + "lastExecutionTimestamp": { + "description": "LastExecutionTimestamp is the time of the last polling", + "type": "string", + "format": "date-time" + }, + "lastImportTimestamp": { + "description": "LastImportTimestamp is the time of the last import", + "type": "string", + "format": "date-time" + }, + "lastImportedPVC": { + "description": "LastImportedPVC is the last imported PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "dataimportcrons", + "singular": "dataimportcron", + "shortNames": [ + "dic", + "dics" + ], + "kind": "DataImportCron", + "listKind": "DataImportCronList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "DataImportCron", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "DataImportCron", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.DataSource", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "DataSourceSpec defines specification for DataSource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "Source is the source of the data referenced by the DataSource", + "type": "object", + "properties": { + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + } + } + } + } + }, + "status": { + "description": "DataSourceStatus provides the most recently observed status of the DataSource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "DataSourceCondition represents the state of a data source condition", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataSourceConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "source": { + "description": "Source is the current source of the data referenced by the DataSource", + "type": "object", + "properties": { + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + } + } + } + } + } + }, + "description": "DataSource references an import/clone source for a DataVolume", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "DataSource", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "datasources.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "datasources", + "singular": "datasource", + "shortNames": [ + "das" + ], + "kind": "DataSource", + "listKind": "DataSourceList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "DataSource references an import/clone source for a DataVolume", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "DataSourceSpec defines specification for DataSource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "source": { + "description": "Source is the source of the data referenced by the DataSource", + "type": "object", + "properties": { + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + } + } + } + } + }, + "status": { + "description": "DataSourceStatus provides the most recently observed status of the DataSource", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "DataSourceCondition represents the state of a data source condition", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataSourceConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "source": { + "description": "Source is the current source of the data referenced by the DataSource", + "type": "object", + "properties": { + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "datasources", + "singular": "datasource", + "shortNames": [ + "das" + ], + "kind": "DataSource", + "listKind": "DataSourceList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "DataSource", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "DataSource", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.DataVolume", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "DataVolumeSpec defines the DataVolume type specification", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeStatus contains the current status of the DataVolume", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the underlying PVC used by the DataVolume.", + "type": "string" + }, + "conditions": { + "type": "array", + "items": { + "description": "DataVolumeCondition represents the state of a data volume condition.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataVolumeConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "phase": { + "description": "Phase is the current phase of the data volume", + "type": "string" + }, + "progress": { + "description": "DataVolumeProgress is the current progress of the DataVolume transfer operation. Value between 0 and 100 inclusive, N/A if not available", + "type": "string" + }, + "restartCount": { + "description": "RestartCount is the number of times the pod populating the DataVolume has restarted", + "type": "integer", + "format": "int32" + } + } + } + }, + "description": "DataVolume is an abstraction on top of PersistentVolumeClaims to allow easy population of those PersistentVolumeClaims with relation to VirtualMachines", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "DataVolume", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "datavolumes.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "datavolumes", + "singular": "datavolume", + "shortNames": [ + "dv", + "dvs" + ], + "kind": "DataVolume", + "listKind": "DataVolumeList", + "categories": [ + "all" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "DataVolume is an abstraction on top of PersistentVolumeClaims to allow easy population of those PersistentVolumeClaims with relation to VirtualMachines", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "DataVolumeSpec defines the DataVolume type specification", + "type": "object", + "properties": { + "checkpoints": { + "description": "Checkpoints is a list of DataVolumeCheckpoints, representing stages in a multistage import.", + "type": "array", + "items": { + "description": "DataVolumeCheckpoint defines a stage in a warm migration.", + "type": "object", + "required": [ + "current", + "previous" + ], + "properties": { + "current": { + "description": "Current is the identifier of the snapshot created for this checkpoint.", + "type": "string" + }, + "previous": { + "description": "Previous is the identifier of the snapshot from the previous checkpoint.", + "type": "string" + } + } + } + }, + "contentType": { + "description": "DataVolumeContentType options: \"kubevirt\", \"archive\"", + "type": "string", + "enum": [ + "kubevirt", + "archive" + ] + }, + "finalCheckpoint": { + "description": "FinalCheckpoint indicates whether the current DataVolumeCheckpoint is the final checkpoint.", + "type": "boolean" + }, + "preallocation": { + "description": "Preallocation controls whether storage for DataVolumes should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName for Importer, Cloner and Uploader pod", + "type": "string" + }, + "pvc": { + "description": "PVC is the PVC specification", + "type": "object", + "properties": { + "accessModes": { + "description": "accessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "dataSource field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. When the AnyVolumeDataSource feature gate is enabled, dataSource contents will be copied to dataSourceRef, and dataSourceRef contents will be copied to dataSource when dataSourceRef.namespace is not specified. If the namespace is specified, then dataSourceRef will not be copied to dataSource.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "dataSourceRef specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the dataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, when namespace isn't specified in dataSourceRef, both fields (dataSource and dataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. When namespace is specified in dataSourceRef, dataSource isn't set to the same value and must be empty. There are three important differences between dataSource and dataSourceRef: * While dataSource only allows two specific types of objects, dataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While dataSource ignores disallowed values (dropping them), dataSourceRef preserves all values, and generates an error if a disallowed value is specified. * While dataSource only allows local objects, dataSourceRef allows objects in any namespaces. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled. (Alpha) Using the namespace field of dataSourceRef requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "resources represents the minimum resources the volume should have. If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements that are lower than previous value but must still be higher than capacity recorded in the status field of the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "selector is a label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "storageClassName is the name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "volumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + }, + "source": { + "description": "Source is the src of the data for the requested DataVolume", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "pvc": { + "description": "DataVolumeSourcePVC provides the parameters to create a Data Volume from an existing PVC", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source PVC", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source PVC", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "snapshot": { + "description": "DataVolumeSourceSnapshot provides the parameters to create a Data Volume from an existing VolumeSnapshot", + "type": "object", + "required": [ + "name", + "namespace" + ], + "properties": { + "name": { + "description": "The name of the source VolumeSnapshot", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source VolumeSnapshot", + "type": "string" + } + } + }, + "upload": { + "description": "DataVolumeSourceUpload provides the parameters to create a Data Volume by uploading the source", + "type": "object" + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + }, + "sourceRef": { + "description": "SourceRef is an indirect reference to the source of data for the requested DataVolume", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "kind": { + "description": "The kind of the source reference, currently only \"DataSource\" is supported", + "type": "string" + }, + "name": { + "description": "The name of the source reference", + "type": "string" + }, + "namespace": { + "description": "The namespace of the source reference, defaults to the DataVolume namespace", + "type": "string" + } + } + }, + "storage": { + "description": "Storage is the requested storage specification", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "dataSource": { + "description": "This field can be used to specify either: * An existing VolumeSnapshot object (snapshot.storage.k8s.io/VolumeSnapshot) * An existing PVC (PersistentVolumeClaim) * An existing custom resource that implements data population (Alpha) In order to use custom resource types that implement data population, the AnyVolumeDataSource feature gate must be enabled. If the provisioner or an external controller can support the specified data source, it will create a new volume based on the contents of the specified data source. If the AnyVolumeDataSource feature gate is enabled, this field will always have the same contents as the DataSourceRef field.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + }, + "dataSourceRef": { + "description": "Specifies the object from which to populate the volume with data, if a non-empty volume is desired. This may be any local object from a non-empty API group (non core object) or a PersistentVolumeClaim object. When this field is specified, volume binding will only succeed if the type of the specified object matches some installed volume populator or dynamic provisioner. This field will replace the functionality of the DataSource field and as such if both fields are non-empty, they must have the same value. For backwards compatibility, both fields (DataSource and DataSourceRef) will be set to the same value automatically if one of them is empty and the other is non-empty. There are two important differences between DataSource and DataSourceRef: * While DataSource only allows two specific types of objects, DataSourceRef allows any non-core object, as well as PersistentVolumeClaim objects. * While DataSource ignores disallowed values (dropping them), DataSourceRef preserves all values, and generates an error if a disallowed value is specified. (Beta) Using this field requires the AnyVolumeDataSource feature gate to be enabled.", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + }, + "namespace": { + "description": "Namespace is the namespace of resource being referenced Note that when a namespace is specified, a gateway.networking.k8s.io/ReferenceGrant object is required in the referent namespace to allow that namespace's owner to accept the reference. See the ReferenceGrant documentation for details. (Alpha) This field requires the CrossNamespaceVolumeDataSource feature gate to be enabled.", + "type": "string" + } + } + }, + "resources": { + "description": "Resources represents the minimum resources the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources", + "type": "object", + "properties": { + "claims": { + "description": "Claims lists the names of resources, defined in spec.resourceClaims, that are used by this container. \n This is an alpha field and requires enabling the DynamicResourceAllocation feature gate. \n This field is immutable.", + "type": "array", + "items": { + "description": "ResourceClaim references one entry in PodSpec.ResourceClaims.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name must match the name of one entry in pod.spec.resourceClaims of the Pod where this field is used. It makes that resource available inside a container.", + "type": "string" + } + } + }, + "x-kubernetes-list-map-keys": [ + "name" + ], + "x-kubernetes-list-type": "map" + }, + "limits": { + "description": "Limits describes the maximum amount of compute resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + }, + "requests": { + "description": "Requests describes the minimum amount of compute resources required. If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, otherwise to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "type": "object", + "additionalProperties": { + "pattern": "^(\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\\+|-)?(([0-9]+(\\.[0-9]*)?)|(\\.[0-9]+))))?$", + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + } + ], + "x-kubernetes-int-or-string": true + } + } + } + }, + "selector": { + "description": "A label query over volumes to consider for binding.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + }, + "x-kubernetes-map-type": "atomic" + }, + "storageClassName": { + "description": "Name of the StorageClass required by the claim. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#class-1", + "type": "string" + }, + "volumeMode": { + "description": "volumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + }, + "volumeName": { + "description": "VolumeName is the binding reference to the PersistentVolume backing this claim.", + "type": "string" + } + } + } + } + }, + "status": { + "description": "DataVolumeStatus contains the current status of the DataVolume", + "type": "object", + "properties": { + "claimName": { + "description": "ClaimName is the name of the underlying PVC used by the DataVolume.", + "type": "string" + }, + "conditions": { + "type": "array", + "items": { + "description": "DataVolumeCondition represents the state of a data volume condition.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "DataVolumeConditionType is the string representation of known condition types", + "type": "string" + } + } + } + }, + "phase": { + "description": "Phase is the current phase of the data volume", + "type": "string" + }, + "progress": { + "description": "DataVolumeProgress is the current progress of the DataVolume transfer operation. Value between 0 and 100 inclusive, N/A if not available", + "type": "string" + }, + "restartCount": { + "description": "RestartCount is the number of times the pod populating the DataVolume has restarted", + "type": "integer", + "format": "int32" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Phase", + "type": "string", + "description": "The phase the data volume is in", + "jsonPath": ".status.phase" + }, + { + "name": "Progress", + "type": "string", + "description": "Transfer progress in percentage if known, N/A otherwise", + "jsonPath": ".status.progress" + }, + { + "name": "Restarts", + "type": "integer", + "description": "The number of times the transfer has been restarted.", + "jsonPath": ".status.restartCount" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "datavolumes", + "singular": "datavolume", + "shortNames": [ + "dv", + "dvs" + ], + "kind": "DataVolume", + "listKind": "DataVolumeList", + "categories": [ + "all" + ] + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "additionalColumns": [ + { + "name": "Phase", + "type": "string", + "description": "The phase the data volume is in", + "jsonPath": ".status.phase" + }, + { + "name": "Progress", + "type": "string", + "description": "Transfer progress in percentage if known, N/A otherwise", + "jsonPath": ".status.progress" + }, + { + "name": "Restarts", + "type": "integer", + "description": "The number of times the transfer has been restarted.", + "jsonPath": ".status.restartCount" + }, + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + } + ], + "short": "DataVolume", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "DataVolume", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.ObjectTransfer", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "ObjectTransferSpec specifies the source/target of the transfer", + "type": "object", + "required": [ + "source", + "target" + ], + "properties": { + "parentName": { + "type": "string" + }, + "source": { + "description": "TransferSource is the source of a ObjectTransfer", + "type": "object", + "required": [ + "kind", + "name", + "namespace" + ], + "properties": { + "apiVersion": { + "type": "string" + }, + "kind": { + "type": "string" + }, + "name": { + "type": "string" + }, + "namespace": { + "type": "string" + }, + "requiredAnnotations": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "target": { + "description": "TransferTarget is the target of an ObjectTransfer", + "type": "object", + "properties": { + "name": { + "type": "string" + }, + "namespace": { + "type": "string" + } + } + } + } + }, + "status": { + "description": "ObjectTransferStatus is the status of the ObjectTransfer", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "ObjectTransferCondition contains condition data", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ObjectTransferConditionType is the type of ObjectTransferCondition", + "type": "string" + } + } + } + }, + "data": { + "description": "Data is a place for intermediary state. Or anything really.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "phase": { + "description": "Phase is the current phase of the transfer", + "type": "string" + } + } + } + }, + "description": "ObjectTransfer is the cluster scoped object transfer resource", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "ObjectTransfer", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "objecttransfers.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "objecttransfers", + "singular": "objecttransfer", + "shortNames": [ + "ot", + "ots" + ], + "kind": "ObjectTransfer", + "listKind": "ObjectTransferList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "ObjectTransfer is the cluster scoped object transfer resource", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "ObjectTransferSpec specifies the source/target of the transfer", + "type": "object", + "required": [ + "source", + "target" + ], + "properties": { + "parentName": { + "type": "string" + }, + "source": { + "description": "TransferSource is the source of a ObjectTransfer", + "type": "object", + "required": [ + "kind", + "name", + "namespace" + ], + "properties": { + "apiVersion": { + "type": "string" + }, + "kind": { + "type": "string" + }, + "name": { + "type": "string" + }, + "namespace": { + "type": "string" + }, + "requiredAnnotations": { + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "target": { + "description": "TransferTarget is the target of an ObjectTransfer", + "type": "object", + "properties": { + "name": { + "type": "string" + }, + "namespace": { + "type": "string" + } + } + } + } + }, + "status": { + "description": "ObjectTransferStatus is the status of the ObjectTransfer", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "ObjectTransferCondition contains condition data", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time" + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ObjectTransferConditionType is the type of ObjectTransferCondition", + "type": "string" + } + } + } + }, + "data": { + "description": "Data is a place for intermediary state. Or anything really.", + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "phase": { + "description": "Phase is the current phase of the transfer", + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "description": "The phase of the ObjectTransfer", + "jsonPath": ".status.phase" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "objecttransfers", + "singular": "objecttransfer", + "shortNames": [ + "ot", + "ots" + ], + "kind": "ObjectTransfer", + "listKind": "ObjectTransferList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "additionalColumns": [ + { + "name": "Age", + "type": "date", + "jsonPath": ".metadata.creationTimestamp" + }, + { + "name": "Phase", + "type": "string", + "description": "The phase of the ObjectTransfer", + "jsonPath": ".status.phase" + } + ], + "short": "ObjectTransfer", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "ObjectTransfer", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.StorageProfile", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "StorageProfileSpec defines specification for StorageProfile", + "type": "object", + "properties": { + "claimPropertySets": { + "description": "ClaimPropertySets is a provided set of properties applicable to PVC", + "type": "array", + "items": { + "description": "ClaimPropertySet is a set of properties applicable to PVC", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + } + }, + "cloneStrategy": { + "description": "CloneStrategy defines the preferred method for performing a CDI clone", + "type": "string" + }, + "dataImportCronSourceFormat": { + "description": "DataImportCronSourceFormat defines the format of the DataImportCron-created disk image sources", + "type": "string" + } + } + }, + "status": { + "description": "StorageProfileStatus provides the most recently observed status of the StorageProfile", + "type": "object", + "properties": { + "claimPropertySets": { + "description": "ClaimPropertySets computed from the spec and detected in the system", + "type": "array", + "items": { + "description": "ClaimPropertySet is a set of properties applicable to PVC", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + } + }, + "cloneStrategy": { + "description": "CloneStrategy defines the preferred method for performing a CDI clone", + "type": "string" + }, + "dataImportCronSourceFormat": { + "description": "DataImportCronSourceFormat defines the format of the DataImportCron-created disk image sources", + "type": "string" + }, + "provisioner": { + "description": "The Storage class provisioner plugin name", + "type": "string" + }, + "storageClass": { + "description": "The StorageClass name for which capabilities are defined", + "type": "string" + } + } + } + }, + "description": "StorageProfile provides a CDI specific recommendation for storage parameters", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "StorageProfile", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "storageprofiles.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "storageprofiles", + "singular": "storageprofile", + "kind": "StorageProfile", + "listKind": "StorageProfileList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "StorageProfile provides a CDI specific recommendation for storage parameters", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "StorageProfileSpec defines specification for StorageProfile", + "type": "object", + "properties": { + "claimPropertySets": { + "description": "ClaimPropertySets is a provided set of properties applicable to PVC", + "type": "array", + "items": { + "description": "ClaimPropertySet is a set of properties applicable to PVC", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + } + }, + "cloneStrategy": { + "description": "CloneStrategy defines the preferred method for performing a CDI clone", + "type": "string" + }, + "dataImportCronSourceFormat": { + "description": "DataImportCronSourceFormat defines the format of the DataImportCron-created disk image sources", + "type": "string" + } + } + }, + "status": { + "description": "StorageProfileStatus provides the most recently observed status of the StorageProfile", + "type": "object", + "properties": { + "claimPropertySets": { + "description": "ClaimPropertySets computed from the spec and detected in the system", + "type": "array", + "items": { + "description": "ClaimPropertySet is a set of properties applicable to PVC", + "type": "object", + "properties": { + "accessModes": { + "description": "AccessModes contains the desired access modes the volume should have. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#access-modes-1", + "type": "array", + "items": { + "type": "string" + } + }, + "volumeMode": { + "description": "VolumeMode defines what type of volume is required by the claim. Value of Filesystem is implied when not included in claim spec.", + "type": "string" + } + } + } + }, + "cloneStrategy": { + "description": "CloneStrategy defines the preferred method for performing a CDI clone", + "type": "string" + }, + "dataImportCronSourceFormat": { + "description": "DataImportCronSourceFormat defines the format of the DataImportCron-created disk image sources", + "type": "string" + }, + "provisioner": { + "description": "The Storage class provisioner plugin name", + "type": "string" + }, + "storageClass": { + "description": "The StorageClass name for which capabilities are defined", + "type": "string" + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "storageprofiles", + "singular": "storageprofile", + "kind": "StorageProfile", + "listKind": "StorageProfileList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "StorageProfile", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "StorageProfile", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.VolumeCloneSource", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VolumeCloneSourceSpec defines the Spec field for VolumeCloneSource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName is the priorityclass for the claim", + "type": "string" + }, + "source": { + "description": "Source is the src of the data to be cloned to the target PVC", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + } + } + }, + "description": "VolumeCloneSource refers to a PVC/VolumeSnapshot of any storageclass/volumemode to be used as the source of a new PVC", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "VolumeCloneSource", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "volumeclonesources.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "volumeclonesources", + "singular": "volumeclonesource", + "kind": "VolumeCloneSource", + "listKind": "VolumeCloneSourceList" + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VolumeCloneSource refers to a PVC/VolumeSnapshot of any storageclass/volumemode to be used as the source of a new PVC", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VolumeCloneSourceSpec defines the Spec field for VolumeCloneSource", + "type": "object", + "required": [ + "source" + ], + "properties": { + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + }, + "priorityClassName": { + "description": "PriorityClassName is the priorityclass for the claim", + "type": "string" + }, + "source": { + "description": "Source is the src of the data to be cloned to the target PVC", + "type": "object", + "required": [ + "kind", + "name" + ], + "properties": { + "apiGroup": { + "description": "APIGroup is the group for the resource being referenced. If APIGroup is not specified, the specified Kind must be in the core API group. For any other third-party types, APIGroup is required.", + "type": "string" + }, + "kind": { + "description": "Kind is the type of resource being referenced", + "type": "string" + }, + "name": { + "description": "Name is the name of resource being referenced", + "type": "string" + } + }, + "x-kubernetes-map-type": "atomic" + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "volumeclonesources", + "singular": "volumeclonesource", + "kind": "VolumeCloneSource", + "listKind": "VolumeCloneSourceList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VolumeCloneSource", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "VolumeCloneSource", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.VolumeImportSource", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VolumeImportSourceSpec defines the Spec field for VolumeImportSource", + "type": "object", + "properties": { + "contentType": { + "description": "ContentType represents the type of the imported data (Kubevirt or archive)", + "type": "string" + }, + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + }, + "source": { + "description": "Source is the src of the data to be imported in the target PVC", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + } + } + }, + "status": { + "description": "VolumeImportSourceStatus provides the most recently observed status of the VolumeImportSource", + "type": "object" + } + }, + "description": "VolumeImportSource works as a specification to populate PersistentVolumeClaims with data imported from an HTTP/S3/Registry/Blank/ImageIO/VDDK source", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "VolumeImportSource", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "volumeimportsources.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "volumeimportsources", + "singular": "volumeimportsource", + "kind": "VolumeImportSource", + "listKind": "VolumeImportSourceList" + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VolumeImportSource works as a specification to populate PersistentVolumeClaims with data imported from an HTTP/S3/Registry/Blank/ImageIO/VDDK source", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VolumeImportSourceSpec defines the Spec field for VolumeImportSource", + "type": "object", + "properties": { + "contentType": { + "description": "ContentType represents the type of the imported data (Kubevirt or archive)", + "type": "string" + }, + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + }, + "source": { + "description": "Source is the src of the data to be imported in the target PVC", + "type": "object", + "properties": { + "blank": { + "description": "DataVolumeBlankImage provides the parameters to create a new raw blank image for the PVC", + "type": "object" + }, + "gcs": { + "description": "DataVolumeSourceGCS provides the parameters to create a Data Volume from an GCS source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the GCS source", + "type": "string" + }, + "url": { + "description": "URL is the url of the GCS source", + "type": "string" + } + } + }, + "http": { + "description": "DataVolumeSourceHTTP can be either an http or https endpoint, with an optional basic auth user name and password, and an optional configmap containing additional CAs", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "extraHeaders": { + "description": "ExtraHeaders is a list of strings containing extra headers to include with HTTP transfer requests", + "type": "array", + "items": { + "type": "string" + } + }, + "secretExtraHeaders": { + "description": "SecretExtraHeaders is a list of Secret references, each containing an extra HTTP header that may include sensitive information", + "type": "array", + "items": { + "type": "string" + } + }, + "secretRef": { + "description": "SecretRef A Secret reference, the secret should contain accessKeyId (user name) base64 encoded, and secretKey (password) also base64 encoded", + "type": "string" + }, + "url": { + "description": "URL is the URL of the http(s) endpoint", + "type": "string" + } + } + }, + "imageio": { + "description": "DataVolumeSourceImageIO provides the parameters to create a Data Volume from an imageio source", + "type": "object", + "required": [ + "diskId", + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the CA cert", + "type": "string" + }, + "diskId": { + "description": "DiskID provides id of a disk to be imported", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the ovirt-engine", + "type": "string" + }, + "url": { + "description": "URL is the URL of the ovirt-engine", + "type": "string" + } + } + }, + "registry": { + "description": "DataVolumeSourceRegistry provides the parameters to create a Data Volume from an registry source", + "type": "object", + "properties": { + "certConfigMap": { + "description": "CertConfigMap provides a reference to the Registry certs", + "type": "string" + }, + "imageStream": { + "description": "ImageStream is the name of image stream for import", + "type": "string" + }, + "pullMethod": { + "description": "PullMethod can be either \"pod\" (default import), or \"node\" (node docker cache based import)", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the Registry source", + "type": "string" + }, + "url": { + "description": "URL is the url of the registry source (starting with the scheme: docker, oci-archive)", + "type": "string" + } + } + }, + "s3": { + "description": "DataVolumeSourceS3 provides the parameters to create a Data Volume from an S3 source", + "type": "object", + "required": [ + "url" + ], + "properties": { + "certConfigMap": { + "description": "CertConfigMap is a configmap reference, containing a Certificate Authority(CA) public key, and a base64 encoded pem certificate", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides the secret reference needed to access the S3 source", + "type": "string" + }, + "url": { + "description": "URL is the url of the S3 source", + "type": "string" + } + } + }, + "vddk": { + "description": "DataVolumeSourceVDDK provides the parameters to create a Data Volume from a Vmware source", + "type": "object", + "properties": { + "backingFile": { + "description": "BackingFile is the path to the virtual hard disk to migrate from vCenter/ESXi", + "type": "string" + }, + "initImageURL": { + "description": "InitImageURL is an optional URL to an image containing an extracted VDDK library, overrides v2v-vmware config map", + "type": "string" + }, + "secretRef": { + "description": "SecretRef provides a reference to a secret containing the username and password needed to access the vCenter or ESXi host", + "type": "string" + }, + "thumbprint": { + "description": "Thumbprint is the certificate thumbprint of the vCenter or ESXi host", + "type": "string" + }, + "url": { + "description": "URL is the URL of the vCenter or ESXi host with the VM to migrate", + "type": "string" + }, + "uuid": { + "description": "UUID is the UUID of the virtual machine that the backing file is attached to in vCenter/ESXi", + "type": "string" + } + } + } + } + } + } + }, + "status": { + "description": "VolumeImportSourceStatus provides the most recently observed status of the VolumeImportSource", + "type": "object" + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "volumeimportsources", + "singular": "volumeimportsource", + "kind": "VolumeImportSource", + "listKind": "VolumeImportSourceList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VolumeImportSource", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "VolumeImportSource", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "io.kubevirt.cdi.v1beta1.VolumeUploadSource", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "VolumeUploadSourceSpec defines specification for VolumeUploadSource", + "type": "object", + "properties": { + "contentType": { + "description": "ContentType represents the type of the upload data (Kubevirt or archive)", + "type": "string" + }, + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + } + } + }, + "status": { + "description": "VolumeUploadSourceStatus provides the most recently observed status of the VolumeUploadSource", + "type": "object" + } + }, + "description": "VolumeUploadSource is a specification to populate PersistentVolumeClaims with upload data", + "type": "object", + "required": [ + "spec" + ], + "x-kubernetes-group-version-kind": [ + { + "group": "cdi.kubevirt.io", + "kind": "VolumeUploadSource", + "version": "v1beta1" + } + ] + }, + "crd": { + "metadata": { + "name": "volumeuploadsources.cdi.kubevirt.io" + }, + "spec": { + "group": "cdi.kubevirt.io", + "names": { + "plural": "volumeuploadsources", + "singular": "volumeuploadsource", + "kind": "VolumeUploadSource", + "listKind": "VolumeUploadSourceList" + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "VolumeUploadSource is a specification to populate PersistentVolumeClaims with upload data", + "type": "object", + "required": [ + "spec" + ], + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "VolumeUploadSourceSpec defines specification for VolumeUploadSource", + "type": "object", + "properties": { + "contentType": { + "description": "ContentType represents the type of the upload data (Kubevirt or archive)", + "type": "string" + }, + "preallocation": { + "description": "Preallocation controls whether storage for the target PVC should be allocated in advance.", + "type": "boolean" + } + } + }, + "status": { + "description": "VolumeUploadSourceStatus provides the most recently observed status of the VolumeUploadSource", + "type": "object" + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "volumeuploadsources", + "singular": "volumeuploadsource", + "kind": "VolumeUploadSource", + "listKind": "VolumeUploadSourceList" + }, + "storedVersions": [ + "v1beta1" + ] + } + }, + "short": "VolumeUploadSource", + "apiGroup": "cdi.kubevirt.io", + "apiKind": "VolumeUploadSource", + "apiVersion": "v1beta1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "kubevirt", + "sub": "kubevirt", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + } + ] +} \ No newline at end of file diff --git a/data/mariadb.json b/data/mariadb.json index 8a9c2ef..8b18e94 100644 --- a/data/mariadb.json +++ b/data/mariadb.json @@ -2343,84 +2343,7 @@ }, "crd": { "metadata": { - "name": "backups.mariadb.mmontes.io", - "uid": "f274a34a-2df5-4152-b780-38d3e6f6e256", - "resourceVersion": "55032025", - "generation": 1, - "creationTimestamp": "2023-10-14T17:37:59Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:37:59Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "backups.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -4878,27 +4801,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "backups", "singular": "backup", @@ -5181,84 +5087,7 @@ }, "crd": { "metadata": { - "name": "connections.mariadb.mmontes.io", - "uid": "d336d1b6-bfd8-4464-a971-7d553041c96c", - "resourceVersion": "55032027", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "connections.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -5526,27 +5355,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "connections", "singular": "connection", @@ -5756,84 +5568,7 @@ }, "crd": { "metadata": { - "name": "databases.mariadb.mmontes.io", - "uid": "548a917c-7a40-4f85-a9bf-a21c4c7e46ac", - "resourceVersion": "55032028", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "databases.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -6035,27 +5770,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "databases", "singular": "database", @@ -6289,84 +6007,7 @@ }, "crd": { "metadata": { - "name": "grants.mariadb.mmontes.io", - "uid": "4f7d8da9-f5e7-469c-85ec-044d065984c8", - "resourceVersion": "55032029", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "grants.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -6588,27 +6229,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "grants", "singular": "grant", @@ -14458,84 +14082,7 @@ }, "crd": { "metadata": { - "name": "mariadbs.mariadb.mmontes.io", - "uid": "95145ca8-8979-4ee3-a977-e4c2794695ce", - "resourceVersion": "55032038", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "mariadbs.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -22768,27 +22315,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "mariadbs", "singular": "mariadb", @@ -25014,84 +24544,7 @@ }, "crd": { "metadata": { - "name": "restores.mariadb.mmontes.io", - "uid": "0b6932da-b027-4b6f-a1e4-4213a2f3f906", - "resourceVersion": "55032039", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "restores.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -27355,27 +26808,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "restores", "singular": "restore", @@ -28394,84 +27830,7 @@ }, "crd": { "metadata": { - "name": "sqljobs.mariadb.mmontes.io", - "uid": "150f47fd-09dd-4323-97b9-008a8ba25157", - "resourceVersion": "55032040", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "sqljobs.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -29489,27 +28848,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "sqljobs", "singular": "sqljob", @@ -29739,84 +29081,7 @@ }, "crd": { "metadata": { - "name": "users.mariadb.mmontes.io", - "uid": "9b4af74d-c5bf-4797-a640-2521ddfc9b15", - "resourceVersion": "55032041", - "generation": 1, - "creationTimestamp": "2023-10-14T17:38:00Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-10-14T17:38:00Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "users.mariadb.mmontes.io" }, "spec": { "group": "mariadb.mmontes.io", @@ -30032,27 +29297,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-10-14T17:38:00Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "users", "singular": "user", diff --git a/data/mongodb.json b/data/mongodb.json index be56cc1..fb9849b 100644 --- a/data/mongodb.json +++ b/data/mongodb.json @@ -613,96 +613,7 @@ }, "crd": { "metadata": { - "name": "mongodbcommunity.mongodbcommunity.mongodb.com", - "uid": "a6c0ad4d-bcaf-4ca4-987a-9dec43554cf5", - "resourceVersion": "127259317", - "generation": 2, - "creationTimestamp": "2023-08-10T06:11:19Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.11.3", - "service.binding": "path={.metadata.name}-{.spec.users[0].db}-{.spec.users[0].name},objectType=Secret", - "service.binding/connectionString": "path={.metadata.name}-{.spec.users[0].db}-{.spec.users[0].name},objectType=Secret,sourceKey=connectionString.standardSrv", - "service.binding/password": "path={.metadata.name}-{.spec.users[0].db}-{.spec.users[0].name},objectType=Secret,sourceKey=password", - "service.binding/provider": "community", - "service.binding/type": "mongodb", - "service.binding/username": "path={.metadata.name}-{.spec.users[0].db}-{.spec.users[0].name},objectType=Secret,sourceKey=username" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-08-10T06:11:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:service.binding": {}, - "f:service.binding/connectionString": {}, - "f:service.binding/password": {}, - "f:service.binding/provider": {}, - "f:service.binding/type": {}, - "f:service.binding/username": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "mongodbcommunity.mongodbcommunity.mongodb.com" }, "spec": { "group": "mongodbcommunity.mongodb.com", @@ -1357,27 +1268,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-08-10T06:11:19Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-08-10T06:11:19Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "mongodbcommunity", "singular": "mongodbcommunity", diff --git a/data/monitoring.json b/data/monitoring.json index fe5c656..3eddfe7 100644 --- a/data/monitoring.json +++ b/data/monitoring.json @@ -6154,88 +6154,7 @@ }, "crd": { "metadata": { - "name": "alertmanagers.monitoring.coreos.com", - "uid": "eda043b3-aed2-419e-8cdd-d4dce02dfea4", - "resourceVersion": "127259338", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "alertmanagers.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -12775,27 +12694,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "alertmanagers", "singular": "alertmanager", @@ -13583,88 +13485,7 @@ }, "crd": { "metadata": { - "name": "podmonitors.monitoring.coreos.com", - "uid": "d9a8c92c-2c5c-4651-b88c-19effb033c80", - "resourceVersion": "127259347", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:12Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:12Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:29Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "podmonitors.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -14396,27 +14217,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:12Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:12Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "podmonitors", "singular": "podmonitor", @@ -15205,88 +15009,7 @@ }, "crd": { "metadata": { - "name": "probes.monitoring.coreos.com", - "uid": "c4034687-753c-4da9-a9cb-04d097b36ffd", - "resourceVersion": "127259358", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:13Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:13Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:30Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "probes.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -16057,27 +15780,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:13Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:13Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "probes", "singular": "probe", @@ -24696,88 +24402,7 @@ }, "crd": { "metadata": { - "name": "prometheuses.monitoring.coreos.com", - "uid": "4ac4cb25-f4bb-4f44-b0d2-c3a2642acbd7", - "resourceVersion": "108186976", - "generation": 1, - "creationTimestamp": "2024-01-24T08:32:37Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:32:37Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:32:37Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "prometheuses.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -33784,27 +33409,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-24T08:32:37Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-24T08:32:37Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "prometheuses", "singular": "prometheus", @@ -34008,88 +33616,7 @@ }, "crd": { "metadata": { - "name": "prometheusrules.monitoring.coreos.com", - "uid": "05c450f3-3af7-44fd-be9c-4aebb6d4f60e", - "resourceVersion": "127259408", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:26Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "prometheusrules.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -34235,27 +33762,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "prometheusrules", "singular": "prometheusrule", @@ -35022,88 +34532,7 @@ }, "crd": { "metadata": { - "name": "servicemonitors.monitoring.coreos.com", - "uid": "f9c4a417-1e28-49f1-97e5-cd34117aff1d", - "resourceVersion": "127259437", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "servicemonitors.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -35858,27 +35287,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "servicemonitors", "singular": "servicemonitor", @@ -41569,88 +40981,7 @@ }, "crd": { "metadata": { - "name": "thanosrulers.monitoring.coreos.com", - "uid": "89bc624d-ca30-46c9-942b-e762330234b9", - "resourceVersion": "127259444", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:14Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:32Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "thanosrulers.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -47690,27 +47021,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:14Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:14Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "thanosrulers", "singular": "thanosruler", @@ -53702,88 +53016,7 @@ }, "crd": { "metadata": { - "name": "alertmanagerconfigs.monitoring.coreos.com", - "uid": "42416899-3a56-49e5-a33e-0699105488ea", - "resourceVersion": "127259323", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:10Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:10Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:29:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "alertmanagerconfigs.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -59709,27 +58942,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:10Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "alertmanagerconfigs", "singular": "alertmanagerconfig", @@ -66943,88 +66159,7 @@ }, "crd": { "metadata": { - "name": "prometheusagents.monitoring.coreos.com", - "uid": "0c33b37f-23da-4226-9cd3-2b0f9698c9ef", - "resourceVersion": "108187249", - "generation": 1, - "creationTimestamp": "2024-01-24T08:33:14Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0", - "operator.prometheus.io/version": "0.71.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:33:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-24T08:33:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:operator.prometheus.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "prometheusagents.monitoring.coreos.com" }, "spec": { "group": "monitoring.coreos.com", @@ -74600,27 +73735,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-24T08:33:14Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-24T08:33:14Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "prometheusagents", "singular": "prometheusagent", diff --git a/data/namecheap.json b/data/namecheap.json index 841e37e..8f14942 100644 --- a/data/namecheap.json +++ b/data/namecheap.json @@ -52,82 +52,7 @@ }, "crd": { "metadata": { - "name": "scheduledresources.cloud.namecheap.com", - "uid": "1ab27d91-9509-4cd6-8b81-d0bde12a0c7c", - "resourceVersion": "131101174", - "generation": 1, - "creationTimestamp": "2024-03-02T14:15:39Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.14.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-02T14:15:39Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-02T14:15:39Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "scheduledresources.cloud.namecheap.com" }, "spec": { "group": "cloud.namecheap.com", @@ -209,27 +134,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-02T14:15:39Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-02T14:15:39Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "scheduledresources", "singular": "scheduledresource", diff --git a/data/networkaddonsoperator.json b/data/networkaddonsoperator.json new file mode 100644 index 0000000..4f19fee --- /dev/null +++ b/data/networkaddonsoperator.json @@ -0,0 +1,3963 @@ +{ + "name": "networkaddonsoperator", + "objects": [ + { + "alternatives": [], + "name": "io.kubevirt.network.networkaddonsoperator.v1.NetworkAddonsConfig", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "NetworkAddonsConfigSpec defines the desired state of NetworkAddonsConfig", + "type": "object", + "properties": { + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "kubeMacPool": { + "description": "KubeMacPool plugin manages MAC allocation to Pods and VMs in Kubernetes", + "type": "object", + "properties": { + "rangeEnd": { + "description": "RangeEnd defines the first mac in range", + "type": "string" + }, + "rangeStart": { + "description": "RangeStart defines the first mac in range", + "type": "string" + } + } + }, + "kubeSecondaryDNS": { + "description": "KubeSecondaryDNS plugin allows to support FQDN for VMI's secondary networks", + "type": "object", + "properties": { + "domain": { + "description": "Domain defines the FQDN domain", + "type": "string" + }, + "nameServerIP": { + "description": "NameServerIp defines the name server IP", + "type": "string" + } + } + }, + "linuxBridge": { + "description": "LinuxBridge plugin allows users to create a bridge and add the host and the container to it", + "type": "object" + }, + "macvtap": { + "description": "MacvtapCni plugin allows users to define Kubernetes networks on top of existing host interfaces", + "type": "object", + "properties": { + "devicePluginConfig": { + "description": "DevicePluginConfig allows the user to override the name of the `ConfigMap` where the device plugin configuration is held", + "type": "string" + } + } + }, + "multus": { + "description": "Multus plugin enables attaching multiple network interfaces to Pods in Kubernetes", + "type": "object" + }, + "multusDynamicNetworks": { + "description": "A multus extension enabling hot-plug and hot-unplug of Pod interfaces", + "type": "object" + }, + "ovs": { + "description": "Ovs plugin allows users to define Kubernetes networks on top of Open vSwitch bridges available on nodes", + "type": "object" + }, + "placementConfiguration": { + "description": "PlacementConfiguration defines node placement configuration", + "type": "object", + "properties": { + "infra": { + "description": "Infra defines placement configuration for control-plane nodes", + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "workloads": { + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + } + } + }, + "selfSignConfiguration": { + "description": "SelfSignConfiguration defines self sign configuration", + "type": "object", + "properties": { + "caOverlapInterval": { + "description": "CAOverlapInterval defines the duration where expired CA certificate can overlap with new one, in order to allow fluent CA rotation transitioning", + "type": "string" + }, + "caRotateInterval": { + "description": "CARotateInterval defines duration for CA expiration", + "type": "string" + }, + "certOverlapInterval": { + "description": "CertOverlapInterval defines the duration where expired service certificate can overlap with new one, in order to allow fluent service rotation transitioning", + "type": "string" + }, + "certRotateInterval": { + "description": "CertRotateInterval defines duration for of service certificate expiration", + "type": "string" + } + } + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile defines the schema for a TLS security profile. This object is used by operators to apply TLS security settings to operands." + } + } + }, + "status": { + "description": "NetworkAddonsConfigStatus defines the observed state of NetworkAddonsConfig", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition represents the state of the operator's reconciliation functionality.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "format": "date-time" + }, + "lastTransitionTime": { + "format": "date-time" + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the state of the operator's reconciliation functionality.", + "type": "string" + } + } + } + }, + "containers": { + "type": "array", + "items": { + "type": "object", + "required": [ + "image", + "name", + "parentKind", + "parentName" + ], + "properties": { + "image": { + "type": "string" + }, + "name": { + "type": "string" + }, + "parentKind": { + "type": "string" + }, + "parentName": { + "type": "string" + } + } + } + }, + "observedVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "targetVersion": { + "type": "string" + } + } + } + }, + "description": "NetworkAddonsConfig is the Schema for the networkaddonsconfigs API", + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "networkaddonsoperator.network.kubevirt.io", + "kind": "NetworkAddonsConfig", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "networkaddonsconfigs.networkaddonsoperator.network.kubevirt.io" + }, + "spec": { + "group": "networkaddonsoperator.network.kubevirt.io", + "names": { + "plural": "networkaddonsconfigs", + "singular": "networkaddonsconfig", + "kind": "NetworkAddonsConfig", + "listKind": "NetworkAddonsConfigList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "description": "NetworkAddonsConfig is the Schema for the networkaddonsconfigs API", + "type": "object", + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "NetworkAddonsConfigSpec defines the desired state of NetworkAddonsConfig", + "type": "object", + "properties": { + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "kubeMacPool": { + "description": "KubeMacPool plugin manages MAC allocation to Pods and VMs in Kubernetes", + "type": "object", + "properties": { + "rangeEnd": { + "description": "RangeEnd defines the first mac in range", + "type": "string" + }, + "rangeStart": { + "description": "RangeStart defines the first mac in range", + "type": "string" + } + } + }, + "kubeSecondaryDNS": { + "description": "KubeSecondaryDNS plugin allows to support FQDN for VMI's secondary networks", + "type": "object", + "properties": { + "domain": { + "description": "Domain defines the FQDN domain", + "type": "string" + }, + "nameServerIP": { + "description": "NameServerIp defines the name server IP", + "type": "string" + } + } + }, + "linuxBridge": { + "description": "LinuxBridge plugin allows users to create a bridge and add the host and the container to it", + "type": "object" + }, + "macvtap": { + "description": "MacvtapCni plugin allows users to define Kubernetes networks on top of existing host interfaces", + "type": "object", + "properties": { + "devicePluginConfig": { + "description": "DevicePluginConfig allows the user to override the name of the `ConfigMap` where the device plugin configuration is held", + "type": "string" + } + } + }, + "multus": { + "description": "Multus plugin enables attaching multiple network interfaces to Pods in Kubernetes", + "type": "object" + }, + "multusDynamicNetworks": { + "description": "A multus extension enabling hot-plug and hot-unplug of Pod interfaces", + "type": "object" + }, + "ovs": { + "description": "Ovs plugin allows users to define Kubernetes networks on top of Open vSwitch bridges available on nodes", + "type": "object" + }, + "placementConfiguration": { + "description": "PlacementConfiguration defines node placement configuration", + "type": "object", + "properties": { + "infra": { + "description": "Infra defines placement configuration for control-plane nodes", + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "workloads": { + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + } + } + }, + "selfSignConfiguration": { + "description": "SelfSignConfiguration defines self sign configuration", + "type": "object", + "properties": { + "caOverlapInterval": { + "description": "CAOverlapInterval defines the duration where expired CA certificate can overlap with new one, in order to allow fluent CA rotation transitioning", + "type": "string" + }, + "caRotateInterval": { + "description": "CARotateInterval defines duration for CA expiration", + "type": "string" + }, + "certOverlapInterval": { + "description": "CertOverlapInterval defines the duration where expired service certificate can overlap with new one, in order to allow fluent service rotation transitioning", + "type": "string" + }, + "certRotateInterval": { + "description": "CertRotateInterval defines duration for of service certificate expiration", + "type": "string" + } + } + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile defines the schema for a TLS security profile. This object is used by operators to apply TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: ciphers: ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE-RSA-CHACHA20-POLY1305,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1", + "type": "object", + "properties": { + "ciphers": { + "description": "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake. Operators may remove entries their operands do not support. For example, to use DES-CBC3-SHA (yaml):\n ciphers: - DES-CBC3-SHA", + "type": "array", + "items": { + "type": "string", + "enum": [ + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "ECDHE-ECDSA-AES128-GCM-SHA256", + "ECDHE-RSA-AES128-GCM-SHA256", + "ECDHE-ECDSA-AES256-GCM-SHA384", + "ECDHE-RSA-AES256-GCM-SHA384", + "ECDHE-ECDSA-CHACHA20-POLY1305", + "ECDHE-RSA-CHACHA20-POLY1305", + "DHE-RSA-AES128-GCM-SHA256", + "DHE-RSA-AES256-GCM-SHA384", + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "ECDHE-ECDSA-AES128-GCM-SHA256", + "ECDHE-RSA-AES128-GCM-SHA256", + "ECDHE-ECDSA-AES256-GCM-SHA384", + "ECDHE-RSA-AES256-GCM-SHA384", + "ECDHE-ECDSA-CHACHA20-POLY1305", + "ECDHE-RSA-CHACHA20-POLY1305", + "DHE-RSA-AES128-GCM-SHA256", + "DHE-RSA-AES256-GCM-SHA384", + "DHE-RSA-CHACHA20-POLY1305", + "ECDHE-ECDSA-AES128-SHA256", + "ECDHE-RSA-AES128-SHA256", + "ECDHE-ECDSA-AES128-SHA", + "ECDHE-RSA-AES128-SHA", + "ECDHE-ECDSA-AES256-SHA384", + "ECDHE-RSA-AES256-SHA384", + "ECDHE-ECDSA-AES256-SHA", + "ECDHE-RSA-AES256-SHA", + "DHE-RSA-AES128-SHA256", + "DHE-RSA-AES256-SHA256", + "AES128-GCM-SHA256", + "AES256-GCM-SHA384", + "AES128-SHA256", + "AES256-SHA256", + "AES128-SHA", + "AES256-SHA", + "DES-CBC3-SHA" + ] + } + }, + "minTLSVersion": { + "description": "minTLSVersion is used to specify the minimal version of the TLS protocol that is negotiated during the TLS handshake. For example, to use TLS versions 1.1, 1.2 and 1.3 (yaml):\n minTLSVersion: TLSv1.1\n NOTE: currently the highest minTLSVersion allowed is VersionTLS12", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + }, + "nullable": true + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 and looks like this (yaml):\n ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AE,SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AE,SHA384,ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE,POLY1305,DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2", + "type": "object", + "nullable": true + }, + "modern": { + "description": "modern is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility and looks like this (yaml): ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 NOTE: Currently unsupported.", + "type": "object", + "nullable": true + }, + "old": { + "description": "old is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility and looks like this (yaml): ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,ECDHE-ECDSA-AES128-GCM-SHA256,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES256-GCM-SHA384,ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE-RSA-CHACHA20-POLY1305,DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384,DHE-RSA-CHACHA20-POLY1305,ECDHE-ECDSA-AES128-SHA256,ECDHE-RSA-AES128-SHA256,ECDHE-ECDSA-AES128-SHA,ECDHE-RSA-AES128-SHA,ECDHE-ECDSA-AES256-SHA384,ECDHE-RSA-AES256-SHA384,ECDHE-ECDSA-AES256-SHA,ECDHE-RSA-AES256-SHA,DHE-RSA-AES128-SHA256,DHE-RSA-AES256-SHA256,AES128-GCM-SHA256,AES256-GCM-SHA384,AES128-SHA256,AES256-SHA256,AES128-SHA,AES256-SHA,DES-CBC3-SHA minTLSVersion: TLSv1.0", + "type": "object", + "nullable": true + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on:\n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced.\n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + }, + "nullable": true + } + } + }, + "status": { + "description": "NetworkAddonsConfigStatus defines the observed state of NetworkAddonsConfig", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition represents the state of the operator's reconciliation functionality.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the state of the operator's reconciliation functionality.", + "type": "string" + } + } + } + }, + "containers": { + "type": "array", + "items": { + "type": "object", + "required": [ + "image", + "name", + "parentKind", + "parentName" + ], + "properties": { + "image": { + "type": "string" + }, + "name": { + "type": "string" + }, + "parentKind": { + "type": "string" + }, + "parentName": { + "type": "string" + } + } + } + }, + "observedVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "targetVersion": { + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + } + }, + { + "name": "v1alpha1", + "served": true, + "storage": false, + "schema": { + "openAPIV3Schema": { + "description": "NetworkAddonsConfig is the Schema for the networkaddonsconfigs API", + "type": "object", + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "NetworkAddonsConfigSpec defines the desired state of NetworkAddonsConfig", + "type": "object", + "properties": { + "imagePullPolicy": { + "description": "PullPolicy describes a policy for if/when to pull a container image", + "type": "string" + }, + "kubeMacPool": { + "description": "KubeMacPool plugin manages MAC allocation to Pods and VMs in Kubernetes", + "type": "object", + "properties": { + "rangeEnd": { + "description": "RangeEnd defines the first mac in range", + "type": "string" + }, + "rangeStart": { + "description": "RangeStart defines the first mac in range", + "type": "string" + } + } + }, + "kubeSecondaryDNS": { + "description": "KubeSecondaryDNS plugin allows to support FQDN for VMI's secondary networks", + "type": "object", + "properties": { + "domain": { + "description": "Domain defines the FQDN domain", + "type": "string" + }, + "nameServerIP": { + "description": "NameServerIp defines the name server IP", + "type": "string" + } + } + }, + "linuxBridge": { + "description": "LinuxBridge plugin allows users to create a bridge and add the host and the container to it", + "type": "object" + }, + "macvtap": { + "description": "MacvtapCni plugin allows users to define Kubernetes networks on top of existing host interfaces", + "type": "object", + "properties": { + "devicePluginConfig": { + "description": "DevicePluginConfig allows the user to override the name of the `ConfigMap` where the device plugin configuration is held", + "type": "string" + } + } + }, + "multus": { + "description": "Multus plugin enables attaching multiple network interfaces to Pods in Kubernetes", + "type": "object" + }, + "multusDynamicNetworks": { + "description": "A multus extension enabling hot-plug and hot-unplug of Pod interfaces", + "type": "object" + }, + "ovs": { + "description": "Ovs plugin allows users to define Kubernetes networks on top of Open vSwitch bridges available on nodes", + "type": "object" + }, + "placementConfiguration": { + "description": "PlacementConfiguration defines node placement configuration", + "type": "object", + "properties": { + "infra": { + "description": "Infra defines placement configuration for control-plane nodes", + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + }, + "workloads": { + "type": "object", + "properties": { + "affinity": { + "description": "Affinity is a group of affinity scheduling rules.", + "type": "object", + "properties": { + "nodeAffinity": { + "description": "Describes node affinity scheduling rules for the pod.", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node matches the corresponding matchExpressions; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "An empty preferred scheduling term matches all objects with implicit weight 0 (i.e. it's a no-op). A null preferred scheduling term matches no objects (i.e. is also a no-op).", + "type": "object", + "required": [ + "preference", + "weight" + ], + "properties": { + "preference": { + "description": "A node selector term, associated with the corresponding weight.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + }, + "weight": { + "description": "Weight associated with matching the corresponding nodeSelectorTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to an update), the system may or may not try to eventually evict the pod from its node.", + "type": "object", + "required": [ + "nodeSelectorTerms" + ], + "properties": { + "nodeSelectorTerms": { + "description": "Required. A list of node selector terms. The terms are ORed.", + "type": "array", + "items": { + "description": "A null or empty node selector term matches no objects. The requirements of them are ANDed. The TopologySelectorTerm type implements a subset of the NodeSelectorTerm.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "A list of node selector requirements by node's labels.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchFields": { + "description": "A list of node selector requirements by node's fields.", + "type": "array", + "items": { + "description": "A node selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "The label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "Represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists, DoesNotExist. Gt, and Lt.", + "type": "string" + }, + "values": { + "description": "An array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. If the operator is Gt or Lt, the values array must have a single element, which will be interpreted as an integer. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + } + }, + "podAffinity": { + "description": "Describes pod affinity scheduling rules (e.g. co-locate this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + }, + "podAntiAffinity": { + "description": "Describes pod anti-affinity scheduling rules (e.g. avoid putting this pod in the same node, zone, etc. as some other pod(s)).", + "type": "object", + "properties": { + "preferredDuringSchedulingIgnoredDuringExecution": { + "description": "The scheduler will prefer to schedule pods to nodes that satisfy the anti-affinity expressions specified by this field, but it may choose a node that violates one or more of the expressions. The node that is most preferred is the one with the greatest sum of weights, i.e. for each node that meets all of the scheduling requirements (resource request, requiredDuringScheduling anti-affinity expressions, etc.), compute a sum by iterating through the elements of this field and adding \"weight\" to the sum if the node has pods which matches the corresponding podAffinityTerm; the node(s) with the highest sum are the most preferred.", + "type": "array", + "items": { + "description": "The weights of all of the matched WeightedPodAffinityTerm fields are added per-node to find the most preferred node(s)", + "type": "object", + "required": [ + "podAffinityTerm", + "weight" + ], + "properties": { + "podAffinityTerm": { + "description": "Required. A pod affinity term, associated with the corresponding weight.", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + }, + "weight": { + "description": "weight associated with matching the corresponding podAffinityTerm, in the range 1-100.", + "type": "integer", + "format": "int32" + } + } + } + }, + "requiredDuringSchedulingIgnoredDuringExecution": { + "description": "If the anti-affinity requirements specified by this field are not met at scheduling time, the pod will not be scheduled onto the node. If the anti-affinity requirements specified by this field cease to be met at some point during pod execution (e.g. due to a pod label update), the system may or may not try to eventually evict the pod from its node. When there are multiple elements, the lists of nodes corresponding to each podAffinityTerm are intersected, i.e. all terms must be satisfied.", + "type": "array", + "items": { + "description": "Defines a set of pods (namely those matching the labelSelector relative to the given namespace(s)) that this pod should be co-located (affinity) or not co-located (anti-affinity) with, where co-located is defined as running on a node whose value of the label with key matches that of any node on which a pod of the set of pods is running", + "type": "object", + "required": [ + "topologyKey" + ], + "properties": { + "labelSelector": { + "description": "A label query over a set of resources, in this case pods.", + "type": "object", + "properties": { + "matchExpressions": { + "description": "matchExpressions is a list of label selector requirements. The requirements are ANDed.", + "type": "array", + "items": { + "description": "A label selector requirement is a selector that contains values, a key, and an operator that relates the key and values.", + "type": "object", + "required": [ + "key", + "operator" + ], + "properties": { + "key": { + "description": "key is the label key that the selector applies to.", + "type": "string" + }, + "operator": { + "description": "operator represents a key's relationship to a set of values. Valid operators are In, NotIn, Exists and DoesNotExist.", + "type": "string" + }, + "values": { + "description": "values is an array of string values. If the operator is In or NotIn, the values array must be non-empty. If the operator is Exists or DoesNotExist, the values array must be empty. This array is replaced during a strategic merge patch.", + "type": "array", + "items": { + "type": "string" + } + } + } + } + }, + "matchLabels": { + "description": "matchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels map is equivalent to an element of matchExpressions, whose key field is \"key\", the operator is \"In\", and the values array contains only \"value\". The requirements are ANDed.", + "type": "object", + "additionalProperties": { + "type": "string" + } + } + } + }, + "namespaces": { + "description": "namespaces specifies which namespaces the labelSelector applies to (matches against); null or empty list means \"this pod's namespace\"", + "type": "array", + "items": { + "type": "string" + } + }, + "topologyKey": { + "description": "This pod should be co-located (affinity) or not co-located (anti-affinity) with the pods matching the labelSelector in the specified namespaces, where co-located is defined as running on a node whose value of the label with key topologyKey matches that of any node on which any of the selected pods is running. Empty topologyKey is not allowed.", + "type": "string" + } + } + } + } + } + } + } + }, + "nodeSelector": { + "type": "object", + "additionalProperties": { + "type": "string" + } + }, + "tolerations": { + "type": "array", + "items": { + "description": "The pod this Toleration is attached to tolerates any taint that matches the triple using the matching operator .", + "type": "object", + "properties": { + "effect": { + "description": "Effect indicates the taint effect to match. Empty means match all taint effects. When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute.", + "type": "string" + }, + "key": { + "description": "Key is the taint key that the toleration applies to. Empty means match all taint keys. If the key is empty, operator must be Exists; this combination means to match all values and all keys.", + "type": "string" + }, + "operator": { + "description": "Operator represents a key's relationship to the value. Valid operators are Exists and Equal. Defaults to Equal. Exists is equivalent to wildcard for value, so that a pod can tolerate all taints of a particular category.", + "type": "string" + }, + "tolerationSeconds": { + "description": "TolerationSeconds represents the period of time the toleration (which must be of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, it is not set, which means tolerate the taint forever (do not evict). Zero and negative values will be treated as 0 (evict immediately) by the system.", + "type": "integer", + "format": "int64" + }, + "value": { + "description": "Value is the taint value the toleration matches to. If the operator is Exists, the value should be empty, otherwise just a regular string.", + "type": "string" + } + } + } + } + } + } + } + }, + "selfSignConfiguration": { + "description": "SelfSignConfiguration defines self sign configuration", + "type": "object", + "properties": { + "caOverlapInterval": { + "description": "CAOverlapInterval defines the duration where expired CA certificate can overlap with new one, in order to allow fluent CA rotation transitioning", + "type": "string" + }, + "caRotateInterval": { + "description": "CARotateInterval defines duration for CA expiration", + "type": "string" + }, + "certOverlapInterval": { + "description": "CertOverlapInterval defines the duration where expired service certificate can overlap with new one, in order to allow fluent service rotation transitioning", + "type": "string" + }, + "certRotateInterval": { + "description": "CertRotateInterval defines duration for of service certificate expiration", + "type": "string" + } + } + }, + "tlsSecurityProfile": { + "description": "TLSSecurityProfile defines the schema for a TLS security profile. This object is used by operators to apply TLS security settings to operands.", + "type": "object", + "properties": { + "custom": { + "description": "custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: ciphers: ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE-RSA-CHACHA20-POLY1305,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: TLSv1.1", + "type": "object", + "properties": { + "ciphers": { + "description": "ciphers is used to specify the cipher algorithms that are negotiated during the TLS handshake. Operators may remove entries their operands do not support. For example, to use DES-CBC3-SHA (yaml):\n ciphers: - DES-CBC3-SHA", + "type": "array", + "items": { + "type": "string", + "enum": [ + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "ECDHE-ECDSA-AES128-GCM-SHA256", + "ECDHE-RSA-AES128-GCM-SHA256", + "ECDHE-ECDSA-AES256-GCM-SHA384", + "ECDHE-RSA-AES256-GCM-SHA384", + "ECDHE-ECDSA-CHACHA20-POLY1305", + "ECDHE-RSA-CHACHA20-POLY1305", + "DHE-RSA-AES128-GCM-SHA256", + "DHE-RSA-AES256-GCM-SHA384", + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "TLS_AES_128_GCM_SHA256", + "TLS_AES_256_GCM_SHA384", + "TLS_CHACHA20_POLY1305_SHA256", + "ECDHE-ECDSA-AES128-GCM-SHA256", + "ECDHE-RSA-AES128-GCM-SHA256", + "ECDHE-ECDSA-AES256-GCM-SHA384", + "ECDHE-RSA-AES256-GCM-SHA384", + "ECDHE-ECDSA-CHACHA20-POLY1305", + "ECDHE-RSA-CHACHA20-POLY1305", + "DHE-RSA-AES128-GCM-SHA256", + "DHE-RSA-AES256-GCM-SHA384", + "DHE-RSA-CHACHA20-POLY1305", + "ECDHE-ECDSA-AES128-SHA256", + "ECDHE-RSA-AES128-SHA256", + "ECDHE-ECDSA-AES128-SHA", + "ECDHE-RSA-AES128-SHA", + "ECDHE-ECDSA-AES256-SHA384", + "ECDHE-RSA-AES256-SHA384", + "ECDHE-ECDSA-AES256-SHA", + "ECDHE-RSA-AES256-SHA", + "DHE-RSA-AES128-SHA256", + "DHE-RSA-AES256-SHA256", + "AES128-GCM-SHA256", + "AES256-GCM-SHA384", + "AES128-SHA256", + "AES256-SHA256", + "AES128-SHA", + "AES256-SHA", + "DES-CBC3-SHA" + ] + } + }, + "minTLSVersion": { + "description": "minTLSVersion is used to specify the minimal version of the TLS protocol that is negotiated during the TLS handshake. For example, to use TLS versions 1.1, 1.2 and 1.3 (yaml):\n minTLSVersion: TLSv1.1\n NOTE: currently the highest minTLSVersion allowed is VersionTLS12", + "type": "string", + "enum": [ + "VersionTLS10", + "VersionTLS11", + "VersionTLS12", + "VersionTLS13" + ] + } + }, + "nullable": true + }, + "intermediate": { + "description": "intermediate is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 and looks like this (yaml):\n ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AE,SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AE,SHA384,ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE,POLY1305,DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384 minTLSVersion: TLSv1.2", + "type": "object", + "nullable": true + }, + "modern": { + "description": "modern is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility and looks like this (yaml): ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: TLSv1.3 NOTE: Currently unsupported.", + "type": "object", + "nullable": true + }, + "old": { + "description": "old is a TLS security profile based on: https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility and looks like this (yaml): ciphers: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,ECDHE-ECDSA-AES128-GCM-SHA256,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES256-GCM-SHA384,ECDHE-ECDSA-CHACHA20-POLY1305,ECDHE-RSA-CHACHA20-POLY1305,DHE-RSA-AES128-GCM-SHA256,DHE-RSA-AES256-GCM-SHA384,DHE-RSA-CHACHA20-POLY1305,ECDHE-ECDSA-AES128-SHA256,ECDHE-RSA-AES128-SHA256,ECDHE-ECDSA-AES128-SHA,ECDHE-RSA-AES128-SHA,ECDHE-ECDSA-AES256-SHA384,ECDHE-RSA-AES256-SHA384,ECDHE-ECDSA-AES256-SHA,ECDHE-RSA-AES256-SHA,DHE-RSA-AES128-SHA256,DHE-RSA-AES256-SHA256,AES128-GCM-SHA256,AES256-GCM-SHA384,AES128-SHA256,AES256-SHA256,AES128-SHA,AES256-SHA,DES-CBC3-SHA minTLSVersion: TLSv1.0", + "type": "object", + "nullable": true + }, + "type": { + "description": "type is one of Old, Intermediate, Modern or Custom. Custom provides the ability to specify individual TLS security profile parameters. Old, Intermediate and Modern are TLS security profiles based on:\n https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations The profiles are intent based, so they may change over time as new ciphers are developed and existing ciphers are found to be insecure. Depending on precisely which ciphers are available to a process, the list may be reduced.\n Note that the Modern profile is currently not supported because it is not yet well adopted by common software libraries.", + "type": "string", + "enum": [ + "Old", + "Intermediate", + "Modern", + "Custom" + ] + } + }, + "nullable": true + } + } + }, + "status": { + "description": "NetworkAddonsConfigStatus defines the observed state of NetworkAddonsConfig", + "type": "object", + "properties": { + "conditions": { + "type": "array", + "items": { + "description": "Condition represents the state of the operator's reconciliation functionality.", + "type": "object", + "required": [ + "status", + "type" + ], + "properties": { + "lastHeartbeatTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "lastTransitionTime": { + "type": "string", + "format": "date-time", + "nullable": true + }, + "message": { + "type": "string" + }, + "reason": { + "type": "string" + }, + "status": { + "type": "string" + }, + "type": { + "description": "ConditionType is the state of the operator's reconciliation functionality.", + "type": "string" + } + } + } + }, + "containers": { + "type": "array", + "items": { + "type": "object", + "required": [ + "image", + "name", + "parentKind", + "parentName" + ], + "properties": { + "image": { + "type": "string" + }, + "name": { + "type": "string" + }, + "parentKind": { + "type": "string" + }, + "parentName": { + "type": "string" + } + } + } + }, + "observedVersion": { + "type": "string" + }, + "operatorVersion": { + "type": "string" + }, + "targetVersion": { + "type": "string" + } + } + } + } + } + }, + "subresources": { + "status": {} + } + } + ], + "conversion": { + "strategy": "None" + } + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "networkaddonsconfigs", + "singular": "networkaddonsconfig", + "kind": "NetworkAddonsConfig", + "listKind": "NetworkAddonsConfigList" + }, + "storedVersions": [ + "v1" + ] + } + }, + "short": "NetworkAddonsConfig", + "apiGroup": "networkaddonsoperator.network.kubevirt.io", + "apiKind": "NetworkAddonsConfig", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "networkaddonsoperator", + "sub": "networkaddonsoperator", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": false + } + ] +} \ No newline at end of file diff --git a/data/operators.json b/data/operators.json index 29d7326..94f8a60 100644 --- a/data/operators.json +++ b/data/operators.json @@ -111,84 +111,7 @@ }, "crd": { "metadata": { - "name": "olmconfigs.operators.coreos.com", - "uid": "f10d7c2a-bd85-4ee2-b947-553f7c81e523", - "resourceVersion": "144938812", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:24Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:24Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "olmconfigs.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -320,22 +243,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:24Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "olmconfigs", "singular": "olmconfig", @@ -538,84 +446,7 @@ }, "crd": { "metadata": { - "name": "operators.operators.coreos.com", - "uid": "ec427de5-8fb8-4224-8642-7c9bbbfe6bab", - "resourceVersion": "144938953", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:29Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:29Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:29Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "operators.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -802,22 +633,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:29Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:29Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "operators", "singular": "operator", @@ -1067,86 +883,7 @@ }, "crd": { "metadata": { - "name": "operatorgroups.operators.coreos.com", - "uid": "27960855-5e18-4c09-8257-03d48380127d", - "resourceVersion": "144938943", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:28Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "operatorgroups.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -1535,22 +1272,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:28Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:28Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "operatorgroups", "singular": "operatorgroup", @@ -2563,86 +2285,7 @@ }, "crd": { "metadata": { - "name": "catalogsources.operators.coreos.com", - "uid": "51d034ec-1c28-49d6-9c62-8b2b7c736132", - "resourceVersion": "144938272", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "catalogsources.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -3673,22 +3316,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "catalogsources", "singular": "catalogsource", @@ -10931,86 +10559,7 @@ }, "crd": { "metadata": { - "name": "clusterserviceversions.operators.coreos.com", - "uid": "2ed88cff-0119-4b42-8adc-1291ff7f1be1", - "resourceVersion": "144938580", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:16Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "clusterserviceversions.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -18627,22 +18176,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:16Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusterserviceversions", "singular": "clusterserviceversion", @@ -19030,86 +18564,7 @@ }, "crd": { "metadata": { - "name": "installplans.operators.coreos.com", - "uid": "43e8fc60-a84d-4872-b9f2-c8f743590069", - "resourceVersion": "144938634", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:19Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:19Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "installplans.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -19474,22 +18929,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:19Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "installplans", "singular": "installplan", @@ -22039,86 +21479,7 @@ }, "crd": { "metadata": { - "name": "subscriptions.operators.coreos.com", - "uid": "7e7e0804-b825-435b-a4ce-f3435f3841cf", - "resourceVersion": "144938992", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:30Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:30Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:31Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "subscriptions.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -24718,22 +24079,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:30Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:31Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "subscriptions", "singular": "subscription", @@ -25009,86 +24355,7 @@ }, "crd": { "metadata": { - "name": "operatorconditions.operators.coreos.com", - "uid": "7b857451-1389-4e8c-8f44-3f849092302e", - "resourceVersion": "144938856", - "generation": 1, - "creationTimestamp": "2024-03-19T16:00:25Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.9.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T16:00:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "operatorconditions.operators.coreos.com" }, "spec": { "group": "operators.coreos.com", @@ -25488,22 +24755,7 @@ } }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:25Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-19T16:00:25Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "operatorconditions", "singular": "operatorcondition", diff --git a/data/oracle.json b/data/oracle.json index 7fdd17d..4942be9 100644 --- a/data/oracle.json +++ b/data/oracle.json @@ -699,75 +699,7 @@ }, "crd": { "metadata": { - "name": "innodbclusters.mysql.oracle.com", - "uid": "ba2bbb36-0273-49ce-8d5f-16fc3a107e52", - "resourceVersion": "104674809", - "generation": 1, - "creationTimestamp": "2024-01-18T17:34:17Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "innodbclusters.mysql.oracle.com" }, "spec": { "group": "mysql.oracle.com", @@ -2054,27 +1986,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "innodbclusters", "singular": "innodbcluster", @@ -2237,75 +2152,7 @@ }, "crd": { "metadata": { - "name": "mysqlbackups.mysql.oracle.com", - "uid": "767eb11a-5430-40bc-9329-62419fd2590a", - "resourceVersion": "104674811", - "generation": 1, - "creationTimestamp": "2024-01-18T17:34:17Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "mysqlbackups.mysql.oracle.com" }, "spec": { "group": "mysql.oracle.com", @@ -2535,27 +2382,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "mysqlbackups", "singular": "mysqlbackup", diff --git a/data/projectcalico.json b/data/projectcalico.json index 709a889..5b22a97 100644 --- a/data/projectcalico.json +++ b/data/projectcalico.json @@ -173,82 +173,7 @@ }, "crd": { "metadata": { - "name": "bgpconfigurations.crd.projectcalico.org", - "uid": "7dbffb91-6414-4505-8ab6-2b2b95f9edb4", - "resourceVersion": "375", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"bgpconfigurations.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"BGPConfiguration\",\"listKind\":\"BGPConfigurationList\",\"plural\":\"bgpconfigurations\",\"singular\":\"bgpconfiguration\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"BGPConfiguration contains the configuration for any BGP routing.\",\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"BGPConfigurationSpec contains the values of the BGP configuration.\",\"properties\":{\"asNumber\":{\"description\":\"ASNumber is the default AS number used by a node. [Default: 64512]\",\"format\":\"int32\",\"type\":\"integer\"},\"bindMode\":{\"description\":\"BindMode indicates whether to listen for BGP connections on all addresses (None) or only on the node's canonical IP address Node.Spec.BGP.IPvXAddress (NodeIP). Default behaviour is to listen for BGP connections on all addresses.\",\"type\":\"string\"},\"communities\":{\"description\":\"Communities is a list of BGP community values and their arbitrary names for tagging routes.\",\"items\":{\"description\":\"Community contains standard or large community value and its name.\",\"properties\":{\"name\":{\"description\":\"Name given to community value.\",\"type\":\"string\"},\"value\":{\"description\":\"Value must be of format `aa:nn` or `aa:nn:mm`. For standard community use `aa:nn` format, where `aa` and `nn` are 16 bit number. For large community use `aa:nn:mm` format, where `aa`, `nn` and `mm` are 32 bit number. Where, `aa` is an AS Number, `nn` and `mm` are per-AS identifier.\",\"pattern\":\"^(\\\\d+):(\\\\d+)$|^(\\\\d+):(\\\\d+):(\\\\d+)$\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"},\"ignoredInterfaces\":{\"description\":\"IgnoredInterfaces indicates the network interfaces that needs to be excluded when reading device routes.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"listenPort\":{\"description\":\"ListenPort is the port where BGP protocol should listen. Defaults to 179\",\"maximum\":65535,\"minimum\":1,\"type\":\"integer\"},\"logSeverityScreen\":{\"description\":\"LogSeverityScreen is the log severity above which logs are sent to the stdout. [Default: INFO]\",\"type\":\"string\"},\"nodeMeshMaxRestartTime\":{\"description\":\"Time to allow for software restart for node-to-mesh peerings. When specified, this is configured as the graceful restart timeout. When not specified, the BIRD default of 120s is used. This field can only be set on the default BGPConfiguration instance and requires that NodeMesh is enabled\",\"type\":\"string\"},\"nodeMeshPassword\":{\"description\":\"Optional BGP password for full node-to-mesh peerings. This field can only be set on the default BGPConfiguration instance and requires that NodeMesh is enabled\",\"properties\":{\"secretKeyRef\":{\"description\":\"Selects a key of a secret in the node pod's namespace.\",\"properties\":{\"key\":{\"description\":\"The key of the secret to select from. Must be a valid secret key.\",\"type\":\"string\"},\"name\":{\"description\":\"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?\",\"type\":\"string\"},\"optional\":{\"description\":\"Specify whether the Secret or its key must be defined\",\"type\":\"boolean\"}},\"required\":[\"key\"],\"type\":\"object\"}},\"type\":\"object\"},\"nodeToNodeMeshEnabled\":{\"description\":\"NodeToNodeMeshEnabled sets whether full node to node BGP mesh is enabled. [Default: true]\",\"type\":\"boolean\"},\"prefixAdvertisements\":{\"description\":\"PrefixAdvertisements contains per-prefix advertisement configuration.\",\"items\":{\"description\":\"PrefixAdvertisement configures advertisement properties for the specified CIDR.\",\"properties\":{\"cidr\":{\"description\":\"CIDR for which properties should be advertised.\",\"type\":\"string\"},\"communities\":{\"description\":\"Communities can be list of either community names already defined in `Specs.Communities` or community value of format `aa:nn` or `aa:nn:mm`. For standard community use `aa:nn` format, where `aa` and `nn` are 16 bit number. For large community use `aa:nn:mm` format, where `aa`, `nn` and `mm` are 32 bit number. Where,`aa` is an AS Number, `nn` and `mm` are per-AS identifier.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"},\"type\":\"array\"},\"serviceClusterIPs\":{\"description\":\"ServiceClusterIPs are the CIDR blocks from which service cluster IPs are allocated. If specified, Calico will advertise these blocks, as well as any cluster IPs within them.\",\"items\":{\"description\":\"ServiceClusterIPBlock represents a single allowed ClusterIP CIDR block.\",\"properties\":{\"cidr\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"},\"serviceExternalIPs\":{\"description\":\"ServiceExternalIPs are the CIDR blocks for Kubernetes Service External IPs. Kubernetes Service ExternalIPs will only be advertised if they are within one of these blocks.\",\"items\":{\"description\":\"ServiceExternalIPBlock represents a single allowed External IP CIDR block.\",\"properties\":{\"cidr\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"},\"serviceLoadBalancerIPs\":{\"description\":\"ServiceLoadBalancerIPs are the CIDR blocks for Kubernetes Service LoadBalancer IPs. Kubernetes Service status.LoadBalancer.Ingress IPs will only be advertised if they are within one of these blocks.\",\"items\":{\"description\":\"ServiceLoadBalancerIPBlock represents a single allowed LoadBalancer IP CIDR block.\",\"properties\":{\"cidr\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "bgpconfigurations.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -431,27 +356,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "bgpconfigurations", "singular": "bgpconfiguration", @@ -484,6 +392,307 @@ }, "namespaced": false }, + { + "alternatives": [], + "name": "org.projectcalico.crd.v1.BGPFilter", + "definition": { + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "spec": { + "description": "BGPFilterSpec contains the IPv4 and IPv6 filter rules of the BGP Filter.", + "type": "object", + "properties": { + "exportV4": { + "description": "The ordered set of IPv4 BGPFilter rules acting on exporting routes to a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "exportV6": { + "description": "The ordered set of IPv6 BGPFilter rules acting on exporting routes to a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "importV4": { + "description": "The ordered set of IPv4 BGPFilter rules acting on importing routes from a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "importV6": { + "description": "The ordered set of IPv6 BGPFilter rules acting on importing routes from a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + } + } + } + }, + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "crd.projectcalico.org", + "kind": "BGPFilter", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "bgpfilters.crd.projectcalico.org" + }, + "spec": { + "group": "crd.projectcalico.org", + "names": { + "plural": "bgpfilters", + "singular": "bgpfilter", + "kind": "BGPFilter", + "listKind": "BGPFilterList" + }, + "scope": "Cluster", + "versions": [ + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "type": "object", + "properties": { + "apiVersion": { + "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", + "type": "string" + }, + "kind": { + "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", + "type": "string" + }, + "metadata": { + "type": "object" + }, + "spec": { + "description": "BGPFilterSpec contains the IPv4 and IPv6 filter rules of the BGP Filter.", + "type": "object", + "properties": { + "exportV4": { + "description": "The ordered set of IPv4 BGPFilter rules acting on exporting routes to a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "exportV6": { + "description": "The ordered set of IPv6 BGPFilter rules acting on exporting routes to a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "importV4": { + "description": "The ordered set of IPv4 BGPFilter rules acting on importing routes from a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + }, + "importV6": { + "description": "The ordered set of IPv6 BGPFilter rules acting on importing routes from a peer.", + "type": "array", + "items": { + "description": "BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.", + "type": "object", + "required": [ + "action", + "cidr", + "matchOperator" + ], + "properties": { + "action": { + "type": "string" + }, + "cidr": { + "type": "string" + }, + "matchOperator": { + "type": "string" + } + } + } + } + } + } + } + } + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "bgpfilters", + "singular": "bgpfilter", + "kind": "BGPFilter", + "listKind": "BGPFilterList" + }, + "storedVersions": [ + "v1" + ] + } + }, + "short": "BGPFilter", + "apiGroup": "crd.projectcalico.org", + "apiKind": "BGPFilter", + "apiVersion": "v1", + "readProperties": { + "spec": "spec" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "projectcalico", + "sub": "projectcalico", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject" + }, + "namespaced": false + }, { "alternatives": [], "name": "org.projectcalico.crd.v1.BGPPeer", @@ -506,6 +715,13 @@ "type": "integer", "format": "int32" }, + "filters": { + "description": "The ordered set of BGPFilters applied on this BGP peer.", + "type": "array", + "items": { + "type": "string" + } + }, "keepOriginalNextHop": { "description": "Option to keep the original nexthop field when routes are sent to a BGP Peer. Setting \"true\" configures the selected BGP Peers node to use the \"next hop keep;\" instead of \"next hop self;\"(default) in the specific branch of the Node on \"bird.cfg\".", "type": "boolean" @@ -588,82 +804,7 @@ }, "crd": { "metadata": { - "name": "bgppeers.crd.projectcalico.org", - "uid": "ba07bed4-39ea-402b-ac5f-e97a4b139c1d", - "resourceVersion": "379", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"bgppeers.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"BGPPeer\",\"listKind\":\"BGPPeerList\",\"plural\":\"bgppeers\",\"singular\":\"bgppeer\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"BGPPeerSpec contains the specification for a BGPPeer resource.\",\"properties\":{\"asNumber\":{\"description\":\"The AS Number of the peer.\",\"format\":\"int32\",\"type\":\"integer\"},\"keepOriginalNextHop\":{\"description\":\"Option to keep the original nexthop field when routes are sent to a BGP Peer. Setting \\\"true\\\" configures the selected BGP Peers node to use the \\\"next hop keep;\\\" instead of \\\"next hop self;\\\"(default) in the specific branch of the Node on \\\"bird.cfg\\\".\",\"type\":\"boolean\"},\"maxRestartTime\":{\"description\":\"Time to allow for software restart. When specified, this is configured as the graceful restart timeout. When not specified, the BIRD default of 120s is used.\",\"type\":\"string\"},\"node\":{\"description\":\"The node name identifying the Calico node instance that is targeted by this peer. If this is not set, and no nodeSelector is specified, then this BGP peer selects all nodes in the cluster.\",\"type\":\"string\"},\"nodeSelector\":{\"description\":\"Selector for the nodes that should have this peering. When this is set, the Node field must be empty.\",\"type\":\"string\"},\"numAllowedLocalASNumbers\":{\"description\":\"Maximum number of local AS numbers that are allowed in the AS path for received routes. This removes BGP loop prevention and should only be used if absolutely necesssary.\",\"format\":\"int32\",\"type\":\"integer\"},\"password\":{\"description\":\"Optional BGP password for the peerings generated by this BGPPeer resource.\",\"properties\":{\"secretKeyRef\":{\"description\":\"Selects a key of a secret in the node pod's namespace.\",\"properties\":{\"key\":{\"description\":\"The key of the secret to select from. Must be a valid secret key.\",\"type\":\"string\"},\"name\":{\"description\":\"Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names TODO: Add other useful fields. apiVersion, kind, uid?\",\"type\":\"string\"},\"optional\":{\"description\":\"Specify whether the Secret or its key must be defined\",\"type\":\"boolean\"}},\"required\":[\"key\"],\"type\":\"object\"}},\"type\":\"object\"},\"peerIP\":{\"description\":\"The IP address of the peer followed by an optional port number to peer with. If port number is given, format should be `[\\u003cIPv6\\u003e]:port` or `\\u003cIPv4\\u003e:\\u003cport\\u003e` for IPv4. If optional port number is not set, and this peer IP and ASNumber belongs to a calico/node with ListenPort set in BGPConfiguration, then we use that port to peer.\",\"type\":\"string\"},\"peerSelector\":{\"description\":\"Selector for the remote nodes to peer with. When this is set, the PeerIP and ASNumber fields must be empty. For each peering between the local node and selected remote nodes, we configure an IPv4 peering if both ends have NodeBGPSpec.IPv4Address specified, and an IPv6 peering if both ends have NodeBGPSpec.IPv6Address specified. The remote AS number comes from the remote node's NodeBGPSpec.ASNumber, or the global default if that is not set.\",\"type\":\"string\"},\"reachableBy\":{\"description\":\"Add an exact, i.e. /32, static route toward peer IP in order to prevent route flapping. ReachableBy contains the address of the gateway which peer can be reached by.\",\"type\":\"string\"},\"sourceAddress\":{\"description\":\"Specifies whether and how to configure a source address for the peerings generated by this BGPPeer resource. Default value \\\"UseNodeIP\\\" means to configure the node IP as the source address. \\\"None\\\" means not to configure a source address.\",\"type\":\"string\"},\"ttlSecurity\":{\"description\":\"TTLSecurity enables the generalized TTL security mechanism (GTSM) which protects against spoofed packets by ignoring received packets with a smaller than expected TTL value. The provided value is the number of hops (edges) between the peers.\",\"type\":\"integer\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "bgppeers.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -703,6 +844,13 @@ "type": "integer", "format": "int32" }, + "filters": { + "description": "The ordered set of BGPFilters applied on this BGP peer.", + "type": "array", + "items": { + "type": "string" + } + }, "keepOriginalNextHop": { "description": "Option to keep the original nexthop field when routes are sent to a BGP Peer. Setting \"true\" configures the selected BGP Peers node to use the \"next hop keep;\" instead of \"next hop self;\"(default) in the specific branch of the Node on \"bird.cfg\".", "type": "boolean" @@ -778,27 +926,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "bgppeers", "singular": "bgppeer", @@ -881,82 +1012,7 @@ }, "crd": { "metadata": { - "name": "blockaffinities.crd.projectcalico.org", - "uid": "24f7eef7-9d8e-421a-a3dd-96f00ddd6529", - "resourceVersion": "381", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"blockaffinities.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"BlockAffinity\",\"listKind\":\"BlockAffinityList\",\"plural\":\"blockaffinities\",\"singular\":\"blockaffinity\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"BlockAffinitySpec contains the specification for a BlockAffinity resource.\",\"properties\":{\"cidr\":{\"type\":\"string\"},\"deleted\":{\"description\":\"Deleted indicates that this block affinity is being deleted. This field is a string for compatibility with older releases that mistakenly treat this field as a string.\",\"type\":\"string\"},\"node\":{\"type\":\"string\"},\"state\":{\"type\":\"string\"}},\"required\":[\"cidr\",\"deleted\",\"node\",\"state\"],\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "blockaffinities.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -1017,27 +1073,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "blockaffinities", "singular": "blockaffinity", @@ -1351,84 +1390,7 @@ }, "crd": { "metadata": { - "name": "caliconodestatuses.crd.projectcalico.org", - "uid": "7c26f009-0689-450a-bb1c-66b951b4ae4a", - "resourceVersion": "386", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "(devel)", - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{\"controller-gen.kubebuilder.io/version\":\"(devel)\"},\"creationTimestamp\":null,\"name\":\"caliconodestatuses.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"CalicoNodeStatus\",\"listKind\":\"CalicoNodeStatusList\",\"plural\":\"caliconodestatuses\",\"singular\":\"caliconodestatus\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"CalicoNodeStatusSpec contains the specification for a CalicoNodeStatus resource.\",\"properties\":{\"classes\":{\"description\":\"Classes declares the types of information to monitor for this calico/node, and allows for selective status reporting about certain subsets of information.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"node\":{\"description\":\"The node name identifies the Calico node instance for node status.\",\"type\":\"string\"},\"updatePeriodSeconds\":{\"description\":\"UpdatePeriodSeconds is the period at which CalicoNodeStatus should be updated. Set to 0 to disable CalicoNodeStatus refresh. Maximum update period is one day.\",\"format\":\"int32\",\"type\":\"integer\"}},\"type\":\"object\"},\"status\":{\"description\":\"CalicoNodeStatusStatus defines the observed state of CalicoNodeStatus. No validation needed for status since it is updated by Calico.\",\"properties\":{\"agent\":{\"description\":\"Agent holds agent status on the node.\",\"properties\":{\"birdV4\":{\"description\":\"BIRDV4 represents the latest observed status of bird4.\",\"properties\":{\"lastBootTime\":{\"description\":\"LastBootTime holds the value of lastBootTime from bird.ctl output.\",\"type\":\"string\"},\"lastReconfigurationTime\":{\"description\":\"LastReconfigurationTime holds the value of lastReconfigTime from bird.ctl output.\",\"type\":\"string\"},\"routerID\":{\"description\":\"Router ID used by bird.\",\"type\":\"string\"},\"state\":{\"description\":\"The state of the BGP Daemon.\",\"type\":\"string\"},\"version\":{\"description\":\"Version of the BGP daemon\",\"type\":\"string\"}},\"type\":\"object\"},\"birdV6\":{\"description\":\"BIRDV6 represents the latest observed status of bird6.\",\"properties\":{\"lastBootTime\":{\"description\":\"LastBootTime holds the value of lastBootTime from bird.ctl output.\",\"type\":\"string\"},\"lastReconfigurationTime\":{\"description\":\"LastReconfigurationTime holds the value of lastReconfigTime from bird.ctl output.\",\"type\":\"string\"},\"routerID\":{\"description\":\"Router ID used by bird.\",\"type\":\"string\"},\"state\":{\"description\":\"The state of the BGP Daemon.\",\"type\":\"string\"},\"version\":{\"description\":\"Version of the BGP daemon\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"bgp\":{\"description\":\"BGP holds node BGP status.\",\"properties\":{\"numberEstablishedV4\":{\"description\":\"The total number of IPv4 established bgp sessions.\",\"type\":\"integer\"},\"numberEstablishedV6\":{\"description\":\"The total number of IPv6 established bgp sessions.\",\"type\":\"integer\"},\"numberNotEstablishedV4\":{\"description\":\"The total number of IPv4 non-established bgp sessions.\",\"type\":\"integer\"},\"numberNotEstablishedV6\":{\"description\":\"The total number of IPv6 non-established bgp sessions.\",\"type\":\"integer\"},\"peersV4\":{\"description\":\"PeersV4 represents IPv4 BGP peers status on the node.\",\"items\":{\"description\":\"CalicoNodePeer contains the status of BGP peers on the node.\",\"properties\":{\"peerIP\":{\"description\":\"IP address of the peer whose condition we are reporting.\",\"type\":\"string\"},\"since\":{\"description\":\"Since the state or reason last changed.\",\"type\":\"string\"},\"state\":{\"description\":\"State is the BGP session state.\",\"type\":\"string\"},\"type\":{\"description\":\"Type indicates whether this peer is configured via the node-to-node mesh, or via en explicit global or per-node BGPPeer object.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"},\"peersV6\":{\"description\":\"PeersV6 represents IPv6 BGP peers status on the node.\",\"items\":{\"description\":\"CalicoNodePeer contains the status of BGP peers on the node.\",\"properties\":{\"peerIP\":{\"description\":\"IP address of the peer whose condition we are reporting.\",\"type\":\"string\"},\"since\":{\"description\":\"Since the state or reason last changed.\",\"type\":\"string\"},\"state\":{\"description\":\"State is the BGP session state.\",\"type\":\"string\"},\"type\":{\"description\":\"Type indicates whether this peer is configured via the node-to-node mesh, or via en explicit global or per-node BGPPeer object.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"required\":[\"numberEstablishedV4\",\"numberEstablishedV6\",\"numberNotEstablishedV4\",\"numberNotEstablishedV6\"],\"type\":\"object\"},\"lastUpdated\":{\"description\":\"LastUpdated is a timestamp representing the server time when CalicoNodeStatus object last updated. It is represented in RFC3339 form and is in UTC.\",\"format\":\"date-time\",\"nullable\":true,\"type\":\"string\"},\"routes\":{\"description\":\"Routes reports routes known to the Calico BGP daemon on the node.\",\"properties\":{\"routesV4\":{\"description\":\"RoutesV4 represents IPv4 routes on the node.\",\"items\":{\"description\":\"CalicoNodeRoute contains the status of BGP routes on the node.\",\"properties\":{\"destination\":{\"description\":\"Destination of the route.\",\"type\":\"string\"},\"gateway\":{\"description\":\"Gateway for the destination.\",\"type\":\"string\"},\"interface\":{\"description\":\"Interface for the destination\",\"type\":\"string\"},\"learnedFrom\":{\"description\":\"LearnedFrom contains information regarding where this route originated.\",\"properties\":{\"peerIP\":{\"description\":\"If sourceType is NodeMesh or BGPPeer, IP address of the router that sent us this route.\",\"type\":\"string\"},\"sourceType\":{\"description\":\"Type of the source where a route is learned from.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":{\"description\":\"Type indicates if the route is being used for forwarding or not.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"},\"routesV6\":{\"description\":\"RoutesV6 represents IPv6 routes on the node.\",\"items\":{\"description\":\"CalicoNodeRoute contains the status of BGP routes on the node.\",\"properties\":{\"destination\":{\"description\":\"Destination of the route.\",\"type\":\"string\"},\"gateway\":{\"description\":\"Gateway for the destination.\",\"type\":\"string\"},\"interface\":{\"description\":\"Interface for the destination\",\"type\":\"string\"},\"learnedFrom\":{\"description\":\"LearnedFrom contains information regarding where this route originated.\",\"properties\":{\"peerIP\":{\"description\":\"If sourceType is NodeMesh or BGPPeer, IP address of the router that sent us this route.\",\"type\":\"string\"},\"sourceType\":{\"description\":\"Type of the source where a route is learned from.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":{\"description\":\"Type indicates if the route is being used for forwarding or not.\",\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "caliconodestatuses.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -1722,27 +1684,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "caliconodestatuses", "singular": "caliconodestatus", @@ -1829,82 +1774,7 @@ }, "crd": { "metadata": { - "name": "clusterinformations.crd.projectcalico.org", - "uid": "88f2ea9b-3e95-4273-b483-2d4cc05cd8f8", - "resourceVersion": "387", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"clusterinformations.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"ClusterInformation\",\"listKind\":\"ClusterInformationList\",\"plural\":\"clusterinformations\",\"singular\":\"clusterinformation\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"ClusterInformation contains the cluster specific information.\",\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"ClusterInformationSpec contains the values of describing the cluster.\",\"properties\":{\"calicoVersion\":{\"description\":\"CalicoVersion is the version of Calico that the cluster is running\",\"type\":\"string\"},\"clusterGUID\":{\"description\":\"ClusterGUID is the GUID of the cluster\",\"type\":\"string\"},\"clusterType\":{\"description\":\"ClusterType describes the type of the cluster\",\"type\":\"string\"},\"datastoreReady\":{\"description\":\"DatastoreReady is used during significant datastore migrations to signal to components such as Felix that it should wait before accessing the datastore.\",\"type\":\"boolean\"},\"variant\":{\"description\":\"Variant declares which variant of Calico should be active.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clusterinformations.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -1967,27 +1837,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusterinformations", "singular": "clusterinformation", @@ -2058,6 +1911,13 @@ "description": "BPFConnectTimeLoadBalancingEnabled when in BPF mode, controls whether Felix installs the connection-time load balancer. The connect-time load balancer is required for the host to be able to reach Kubernetes services and it improves the performance of pod-to-service connections. The only reason to disable it is for debugging purposes. [Default: true]", "type": "boolean" }, + "bpfDSROptoutCIDRs": { + "description": "BPFDSROptoutCIDRs is a list of CIDRs which are excluded from DSR. That is, clients in those CIDRs will accesses nodeports as if BPFExternalServiceMode was set to Tunnel.", + "type": "array", + "items": { + "type": "string" + } + }, "bpfDataIfacePattern": { "description": "BPFDataIfacePattern is a regular expression that controls which interfaces Felix should attach BPF programs to in order to catch traffic to/from the network. This needs to match the interfaces that Calico workload traffic flows over as well as any interfaces that handle incoming traffic to nodeports and services from outside the cluster. It should not match the workload interfaces (usually named cali...).", "type": "string" @@ -2071,7 +1931,7 @@ "type": "boolean" }, "bpfEnforceRPF": { - "description": "BPFEnforceRPF enforce strict RPF on all host interfaces with BPF programs regardless of what is the per-interfaces or global setting. Possible values are Disabled, Strict or Loose. [Default: Strict]", + "description": "BPFEnforceRPF enforce strict RPF on all host interfaces with BPF programs regardless of what is the per-interfaces or global setting. Possible values are Disabled, Strict or Loose. [Default: Loose]", "type": "string" }, "bpfExtToServiceConnmark": { @@ -2274,7 +2134,7 @@ "type": "integer" }, "healthTimeoutOverrides": { - "description": "HealthTimeoutOverrides allows the internal watchdog timeouts of individual subcomponents to be overriden. This is useful for working around \"false positive\" liveness timeouts that can occur in particularly stressful workloads or if CPU is constrained. For a list of active subcomponents, see Felix's logs.", + "description": "HealthTimeoutOverrides allows the internal watchdog timeouts of individual subcomponents to be overridden. This is useful for working around \"false positive\" liveness timeouts that can occur in particularly stressful workloads or if CPU is constrained. For a list of active subcomponents, see Felix's logs.", "type": "array", "items": { "type": "object", @@ -2323,6 +2183,10 @@ "iptablesFilterAllowAction": { "type": "string" }, + "iptablesFilterDenyAction": { + "description": "IptablesFilterDenyAction controls what happens to traffic that is denied by network policy. By default Calico blocks traffic with an iptables \"DROP\" action. If you want to use \"REJECT\" action instead you can configure it in here.", + "type": "string" + }, "iptablesLockFilePath": { "description": "IptablesLockFilePath is the location of the iptables lock file. You may need to change this if the lock file is not in its standard location (for example if you have mapped it into Felix's container at a different path). [Default: /run/xtables.lock]", "type": "string" @@ -2609,95 +2473,20 @@ } } }, - "description": "Felix Configuration contains the configuration for Felix.", - "type": "object", - "x-kubernetes-group-version-kind": [ - { - "group": "crd.projectcalico.org", - "kind": "FelixConfiguration", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "felixconfigurations.crd.projectcalico.org", - "uid": "31a67587-43f4-4894-b0ea-4d621eed042e", - "resourceVersion": "391", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"felixconfigurations.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"FelixConfiguration\",\"listKind\":\"FelixConfigurationList\",\"plural\":\"felixconfigurations\",\"singular\":\"felixconfiguration\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"Felix Configuration contains the configuration for Felix.\",\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"FelixConfigurationSpec contains the values of the Felix configuration.\",\"properties\":{\"allowIPIPPacketsFromWorkloads\":{\"description\":\"AllowIPIPPacketsFromWorkloads controls whether Felix will add a rule to drop IPIP encapsulated traffic from workloads [Default: false]\",\"type\":\"boolean\"},\"allowVXLANPacketsFromWorkloads\":{\"description\":\"AllowVXLANPacketsFromWorkloads controls whether Felix will add a rule to drop VXLAN encapsulated traffic from workloads [Default: false]\",\"type\":\"boolean\"},\"awsSrcDstCheck\":{\"description\":\"Set source-destination-check on AWS EC2 instances. Accepted value must be one of \\\"DoNothing\\\", \\\"Enable\\\" or \\\"Disable\\\". [Default: DoNothing]\",\"enum\":[\"DoNothing\",\"Enable\",\"Disable\"],\"type\":\"string\"},\"bpfConnectTimeLoadBalancingEnabled\":{\"description\":\"BPFConnectTimeLoadBalancingEnabled when in BPF mode, controls whether Felix installs the connection-time load balancer. The connect-time load balancer is required for the host to be able to reach Kubernetes services and it improves the performance of pod-to-service connections. The only reason to disable it is for debugging purposes. [Default: true]\",\"type\":\"boolean\"},\"bpfDataIfacePattern\":{\"description\":\"BPFDataIfacePattern is a regular expression that controls which interfaces Felix should attach BPF programs to in order to catch traffic to/from the network. This needs to match the interfaces that Calico workload traffic flows over as well as any interfaces that handle incoming traffic to nodeports and services from outside the cluster. It should not match the workload interfaces (usually named cali...).\",\"type\":\"string\"},\"bpfDisableUnprivileged\":{\"description\":\"BPFDisableUnprivileged, if enabled, Felix sets the kernel.unprivileged_bpf_disabled sysctl to disable unprivileged use of BPF. This ensures that unprivileged users cannot access Calico's BPF maps and cannot insert their own BPF programs to interfere with Calico's. [Default: true]\",\"type\":\"boolean\"},\"bpfEnabled\":{\"description\":\"BPFEnabled, if enabled Felix will use the BPF dataplane. [Default: false]\",\"type\":\"boolean\"},\"bpfEnforceRPF\":{\"description\":\"BPFEnforceRPF enforce strict RPF on all host interfaces with BPF programs regardless of what is the per-interfaces or global setting. Possible values are Disabled, Strict or Loose. [Default: Strict]\",\"type\":\"string\"},\"bpfExtToServiceConnmark\":{\"description\":\"BPFExtToServiceConnmark in BPF mode, control a 32bit mark that is set on connections from an external client to a local service. This mark allows us to control how packets of that connection are routed within the host and how is routing interpreted by RPF check. [Default: 0]\",\"type\":\"integer\"},\"bpfExternalServiceMode\":{\"description\":\"BPFExternalServiceMode in BPF mode, controls how connections from outside the cluster to services (node ports and cluster IPs) are forwarded to remote workloads. If set to \\\"Tunnel\\\" then both request and response traffic is tunneled to the remote node. If set to \\\"DSR\\\", the request traffic is tunneled but the response traffic is sent directly from the remote node. In \\\"DSR\\\" mode, the remote node appears to use the IP of the ingress node; this requires a permissive L2 network. [Default: Tunnel]\",\"type\":\"string\"},\"bpfHostConntrackBypass\":{\"description\":\"BPFHostConntrackBypass Controls whether to bypass Linux conntrack in BPF mode for workloads and services. [Default: true - bypass Linux conntrack]\",\"type\":\"boolean\"},\"bpfKubeProxyEndpointSlicesEnabled\":{\"description\":\"BPFKubeProxyEndpointSlicesEnabled in BPF mode, controls whether Felix's embedded kube-proxy accepts EndpointSlices or not.\",\"type\":\"boolean\"},\"bpfKubeProxyIptablesCleanupEnabled\":{\"description\":\"BPFKubeProxyIptablesCleanupEnabled, if enabled in BPF mode, Felix will proactively clean up the upstream Kubernetes kube-proxy's iptables chains. Should only be enabled if kube-proxy is not running. [Default: true]\",\"type\":\"boolean\"},\"bpfKubeProxyMinSyncPeriod\":{\"description\":\"BPFKubeProxyMinSyncPeriod, in BPF mode, controls the minimum time between updates to the dataplane for Felix's embedded kube-proxy. Lower values give reduced set-up latency. Higher values reduce Felix CPU usage by batching up more work. [Default: 1s]\",\"type\":\"string\"},\"bpfL3IfacePattern\":{\"description\":\"BPFL3IfacePattern is a regular expression that allows to list tunnel devices like wireguard or vxlan (i.e., L3 devices) in addition to BPFDataIfacePattern. That is, tunnel interfaces not created by Calico, that Calico workload traffic flows over as well as any interfaces that handle incoming traffic to nodeports and services from outside the cluster.\",\"type\":\"string\"},\"bpfLogLevel\":{\"description\":\"BPFLogLevel controls the log level of the BPF programs when in BPF dataplane mode. One of \\\"Off\\\", \\\"Info\\\", or \\\"Debug\\\". The logs are emitted to the BPF trace pipe, accessible with the command `tc exec bpf debug`. [Default: Off].\",\"type\":\"string\"},\"bpfMapSizeConntrack\":{\"description\":\"BPFMapSizeConntrack sets the size for the conntrack map. This map must be large enough to hold an entry for each active connection. Warning: changing the size of the conntrack map can cause disruption.\",\"type\":\"integer\"},\"bpfMapSizeIPSets\":{\"description\":\"BPFMapSizeIPSets sets the size for ipsets map. The IP sets map must be large enough to hold an entry for each endpoint matched by every selector in the source/destination matches in network policy. Selectors such as \\\"all()\\\" can result in large numbers of entries (one entry per endpoint in that case).\",\"type\":\"integer\"},\"bpfMapSizeIfState\":{\"description\":\"BPFMapSizeIfState sets the size for ifstate map. The ifstate map must be large enough to hold an entry for each device (host + workloads) on a host.\",\"type\":\"integer\"},\"bpfMapSizeNATAffinity\":{\"type\":\"integer\"},\"bpfMapSizeNATBackend\":{\"description\":\"BPFMapSizeNATBackend sets the size for nat back end map. This is the total number of endpoints. This is mostly more than the size of the number of services.\",\"type\":\"integer\"},\"bpfMapSizeNATFrontend\":{\"description\":\"BPFMapSizeNATFrontend sets the size for nat front end map. FrontendMap should be large enough to hold an entry for each nodeport, external IP and each port in each service.\",\"type\":\"integer\"},\"bpfMapSizeRoute\":{\"description\":\"BPFMapSizeRoute sets the size for the routes map. The routes map should be large enough to hold one entry per workload and a handful of entries per host (enough to cover its own IPs and tunnel IPs).\",\"type\":\"integer\"},\"bpfPSNATPorts\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"BPFPSNATPorts sets the range from which we randomly pick a port if there is a source port collision. This should be within the ephemeral range as defined by RFC 6056 (1024–65535) and preferably outside the ephemeral ranges used by common operating systems. Linux uses 32768–60999, while others mostly use the IANA defined range 49152–65535. It is not necessarily a problem if this range overlaps with the operating systems. Both ends of the range are inclusive. [Default: 20000:29999]\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"bpfPolicyDebugEnabled\":{\"description\":\"BPFPolicyDebugEnabled when true, Felix records detailed information about the BPF policy programs, which can be examined with the calico-bpf command-line tool.\",\"type\":\"boolean\"},\"chainInsertMode\":{\"description\":\"ChainInsertMode controls whether Felix hooks the kernel's top-level iptables chains by inserting a rule at the top of the chain or by appending a rule at the bottom. insert is the safe default since it prevents Calico's rules from being bypassed. If you switch to append mode, be sure that the other rules in the chains signal acceptance by falling through to the Calico rules, otherwise the Calico policy will be bypassed. [Default: insert]\",\"type\":\"string\"},\"dataplaneDriver\":{\"description\":\"DataplaneDriver filename of the external dataplane driver to use. Only used if UseInternalDataplaneDriver is set to false.\",\"type\":\"string\"},\"dataplaneWatchdogTimeout\":{\"description\":\"DataplaneWatchdogTimeout is the readiness/liveness timeout used for Felix's (internal) dataplane driver. Increase this value if you experience spurious non-ready or non-live events when Felix is under heavy load. Decrease the value to get felix to report non-live or non-ready more quickly. [Default: 90s] \\n Deprecated: replaced by the generic HealthTimeoutOverrides.\",\"type\":\"string\"},\"debugDisableLogDropping\":{\"type\":\"boolean\"},\"debugMemoryProfilePath\":{\"type\":\"string\"},\"debugSimulateCalcGraphHangAfter\":{\"type\":\"string\"},\"debugSimulateDataplaneHangAfter\":{\"type\":\"string\"},\"defaultEndpointToHostAction\":{\"description\":\"DefaultEndpointToHostAction controls what happens to traffic that goes from a workload endpoint to the host itself (after the traffic hits the endpoint egress policy). By default Calico blocks traffic from workload endpoints to the host itself with an iptables \\\"DROP\\\" action. If you want to allow some or all traffic from endpoint to host, set this parameter to RETURN or ACCEPT. Use RETURN if you have your own rules in the iptables \\\"INPUT\\\" chain; Calico will insert its rules at the top of that chain, then \\\"RETURN\\\" packets to the \\\"INPUT\\\" chain once it has completed processing workload endpoint egress policy. Use ACCEPT to unconditionally accept packets from workloads after processing workload endpoint egress policy. [Default: Drop]\",\"type\":\"string\"},\"deviceRouteProtocol\":{\"description\":\"This defines the route protocol added to programmed device routes, by default this will be RTPROT_BOOT when left blank.\",\"type\":\"integer\"},\"deviceRouteSourceAddress\":{\"description\":\"This is the IPv4 source address to use on programmed device routes. By default the source address is left blank, leaving the kernel to choose the source address used.\",\"type\":\"string\"},\"deviceRouteSourceAddressIPv6\":{\"description\":\"This is the IPv6 source address to use on programmed device routes. By default the source address is left blank, leaving the kernel to choose the source address used.\",\"type\":\"string\"},\"disableConntrackInvalidCheck\":{\"type\":\"boolean\"},\"endpointReportingDelay\":{\"type\":\"string\"},\"endpointReportingEnabled\":{\"type\":\"boolean\"},\"externalNodesList\":{\"description\":\"ExternalNodesCIDRList is a list of CIDR's of external-non-calico-nodes which may source tunnel traffic and have the tunneled traffic be accepted at calico nodes.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"failsafeInboundHostPorts\":{\"description\":\"FailsafeInboundHostPorts is a list of UDP/TCP ports and CIDRs that Felix will allow incoming traffic to host endpoints on irrespective of the security policy. This is useful to avoid accidentally cutting off a host with incorrect configuration. For back-compatibility, if the protocol is not specified, it defaults to \\\"tcp\\\". If a CIDR is not specified, it will allow traffic from all addresses. To disable all inbound host ports, use the value none. The default value allows ssh access and DHCP. [Default: tcp:22, udp:68, tcp:179, tcp:2379, tcp:2380, tcp:6443, tcp:6666, tcp:6667]\",\"items\":{\"description\":\"ProtoPort is combination of protocol, port, and CIDR. Protocol and port must be specified.\",\"properties\":{\"net\":{\"type\":\"string\"},\"port\":{\"type\":\"integer\"},\"protocol\":{\"type\":\"string\"}},\"required\":[\"port\",\"protocol\"],\"type\":\"object\"},\"type\":\"array\"},\"failsafeOutboundHostPorts\":{\"description\":\"FailsafeOutboundHostPorts is a list of UDP/TCP ports and CIDRs that Felix will allow outgoing traffic from host endpoints to irrespective of the security policy. This is useful to avoid accidentally cutting off a host with incorrect configuration. For back-compatibility, if the protocol is not specified, it defaults to \\\"tcp\\\". If a CIDR is not specified, it will allow traffic from all addresses. To disable all outbound host ports, use the value none. The default value opens etcd's standard ports to ensure that Felix does not get cut off from etcd as well as allowing DHCP and DNS. [Default: tcp:179, tcp:2379, tcp:2380, tcp:6443, tcp:6666, tcp:6667, udp:53, udp:67]\",\"items\":{\"description\":\"ProtoPort is combination of protocol, port, and CIDR. Protocol and port must be specified.\",\"properties\":{\"net\":{\"type\":\"string\"},\"port\":{\"type\":\"integer\"},\"protocol\":{\"type\":\"string\"}},\"required\":[\"port\",\"protocol\"],\"type\":\"object\"},\"type\":\"array\"},\"featureDetectOverride\":{\"description\":\"FeatureDetectOverride is used to override feature detection based on auto-detected platform capabilities. Values are specified in a comma separated list with no spaces, example; \\\"SNATFullyRandom=true,MASQFullyRandom=false,RestoreSupportsLock=\\\". \\\"true\\\" or \\\"false\\\" will force the feature, empty or omitted values are auto-detected.\",\"type\":\"string\"},\"featureGates\":{\"description\":\"FeatureGates is used to enable or disable tech-preview Calico features. Values are specified in a comma separated list with no spaces, example; \\\"BPFConnectTimeLoadBalancingWorkaround=enabled,XyZ=false\\\". This is used to enable features that are not fully production ready.\",\"type\":\"string\"},\"floatingIPs\":{\"description\":\"FloatingIPs configures whether or not Felix will program non-OpenStack floating IP addresses. (OpenStack-derived floating IPs are always programmed, regardless of this setting.)\",\"enum\":[\"Enabled\",\"Disabled\"],\"type\":\"string\"},\"genericXDPEnabled\":{\"description\":\"GenericXDPEnabled enables Generic XDP so network cards that don't support XDP offload or driver modes can use XDP. This is not recommended since it doesn't provide better performance than iptables. [Default: false]\",\"type\":\"boolean\"},\"healthEnabled\":{\"type\":\"boolean\"},\"healthHost\":{\"type\":\"string\"},\"healthPort\":{\"type\":\"integer\"},\"healthTimeoutOverrides\":{\"description\":\"HealthTimeoutOverrides allows the internal watchdog timeouts of individual subcomponents to be overriden. This is useful for working around \\\"false positive\\\" liveness timeouts that can occur in particularly stressful workloads or if CPU is constrained. For a list of active subcomponents, see Felix's logs.\",\"items\":{\"properties\":{\"name\":{\"type\":\"string\"},\"timeout\":{\"type\":\"string\"}},\"required\":[\"name\",\"timeout\"],\"type\":\"object\"},\"type\":\"array\"},\"interfaceExclude\":{\"description\":\"InterfaceExclude is a comma-separated list of interfaces that Felix should exclude when monitoring for host endpoints. The default value ensures that Felix ignores Kubernetes' IPVS dummy interface, which is used internally by kube-proxy. If you want to exclude multiple interface names using a single value, the list supports regular expressions. For regular expressions you must wrap the value with '/'. For example having values '/^kube/,veth1' will exclude all interfaces that begin with 'kube' and also the interface 'veth1'. [Default: kube-ipvs0]\",\"type\":\"string\"},\"interfacePrefix\":{\"description\":\"InterfacePrefix is the interface name prefix that identifies workload endpoints and so distinguishes them from host endpoint interfaces. Note: in environments other than bare metal, the orchestrators configure this appropriately. For example our Kubernetes and Docker integrations set the 'cali' value, and our OpenStack integration sets the 'tap' value. [Default: cali]\",\"type\":\"string\"},\"interfaceRefreshInterval\":{\"description\":\"InterfaceRefreshInterval is the period at which Felix rescans local interfaces to verify their state. The rescan can be disabled by setting the interval to 0.\",\"type\":\"string\"},\"ipipEnabled\":{\"description\":\"IPIPEnabled overrides whether Felix should configure an IPIP interface on the host. Optional as Felix determines this based on the existing IP pools. [Default: nil (unset)]\",\"type\":\"boolean\"},\"ipipMTU\":{\"description\":\"IPIPMTU is the MTU to set on the tunnel device. See Configuring MTU [Default: 1440]\",\"type\":\"integer\"},\"ipsetsRefreshInterval\":{\"description\":\"IpsetsRefreshInterval is the period at which Felix re-checks all iptables state to ensure that no other process has accidentally broken Calico's rules. Set to 0 to disable iptables refresh. [Default: 90s]\",\"type\":\"string\"},\"iptablesBackend\":{\"description\":\"IptablesBackend specifies which backend of iptables will be used. The default is Auto.\",\"type\":\"string\"},\"iptablesFilterAllowAction\":{\"type\":\"string\"},\"iptablesLockFilePath\":{\"description\":\"IptablesLockFilePath is the location of the iptables lock file. You may need to change this if the lock file is not in its standard location (for example if you have mapped it into Felix's container at a different path). [Default: /run/xtables.lock]\",\"type\":\"string\"},\"iptablesLockProbeInterval\":{\"description\":\"IptablesLockProbeInterval is the time that Felix will wait between attempts to acquire the iptables lock if it is not available. Lower values make Felix more responsive when the lock is contended, but use more CPU. [Default: 50ms]\",\"type\":\"string\"},\"iptablesLockTimeout\":{\"description\":\"IptablesLockTimeout is the time that Felix will wait for the iptables lock, or 0, to disable. To use this feature, Felix must share the iptables lock file with all other processes that also take the lock. When running Felix inside a container, this requires the /run directory of the host to be mounted into the calico/node or calico/felix container. [Default: 0s disabled]\",\"type\":\"string\"},\"iptablesMangleAllowAction\":{\"type\":\"string\"},\"iptablesMarkMask\":{\"description\":\"IptablesMarkMask is the mask that Felix selects its IPTables Mark bits from. Should be a 32 bit hexadecimal number with at least 8 bits set, none of which clash with any other mark bits in use on the system. [Default: 0xff000000]\",\"format\":\"int32\",\"type\":\"integer\"},\"iptablesNATOutgoingInterfaceFilter\":{\"type\":\"string\"},\"iptablesPostWriteCheckInterval\":{\"description\":\"IptablesPostWriteCheckInterval is the period after Felix has done a write to the dataplane that it schedules an extra read back in order to check the write was not clobbered by another process. This should only occur if another application on the system doesn't respect the iptables lock. [Default: 1s]\",\"type\":\"string\"},\"iptablesRefreshInterval\":{\"description\":\"IptablesRefreshInterval is the period at which Felix re-checks the IP sets in the dataplane to ensure that no other process has accidentally broken Calico's rules. Set to 0 to disable IP sets refresh. Note: the default for this value is lower than the other refresh intervals as a workaround for a Linux kernel bug that was fixed in kernel version 4.11. If you are using v4.11 or greater you may want to set this to, a higher value to reduce Felix CPU usage. [Default: 10s]\",\"type\":\"string\"},\"ipv6Support\":{\"description\":\"IPv6Support controls whether Felix enables support for IPv6 (if supported by the in-use dataplane).\",\"type\":\"boolean\"},\"kubeNodePortRanges\":{\"description\":\"KubeNodePortRanges holds list of port ranges used for service node ports. Only used if felix detects kube-proxy running in ipvs mode. Felix uses these ranges to separate host and workload traffic. [Default: 30000:32767].\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"logDebugFilenameRegex\":{\"description\":\"LogDebugFilenameRegex controls which source code files have their Debug log output included in the logs. Only logs from files with names that match the given regular expression are included. The filter only applies to Debug level logs.\",\"type\":\"string\"},\"logFilePath\":{\"description\":\"LogFilePath is the full path to the Felix log. Set to none to disable file logging. [Default: /var/log/calico/felix.log]\",\"type\":\"string\"},\"logPrefix\":{\"description\":\"LogPrefix is the log prefix that Felix uses when rendering LOG rules. [Default: calico-packet]\",\"type\":\"string\"},\"logSeverityFile\":{\"description\":\"LogSeverityFile is the log severity above which logs are sent to the log file. [Default: Info]\",\"type\":\"string\"},\"logSeverityScreen\":{\"description\":\"LogSeverityScreen is the log severity above which logs are sent to the stdout. [Default: Info]\",\"type\":\"string\"},\"logSeveritySys\":{\"description\":\"LogSeveritySys is the log severity above which logs are sent to the syslog. Set to None for no logging to syslog. [Default: Info]\",\"type\":\"string\"},\"maxIpsetSize\":{\"type\":\"integer\"},\"metadataAddr\":{\"description\":\"MetadataAddr is the IP address or domain name of the server that can answer VM queries for cloud-init metadata. In OpenStack, this corresponds to the machine running nova-api (or in Ubuntu, nova-api-metadata). A value of none (case insensitive) means that Felix should not set up any NAT rule for the metadata path. [Default: 127.0.0.1]\",\"type\":\"string\"},\"metadataPort\":{\"description\":\"MetadataPort is the port of the metadata server. This, combined with global.MetadataAddr (if not 'None'), is used to set up a NAT rule, from 169.254.169.254:80 to MetadataAddr:MetadataPort. In most cases this should not need to be changed [Default: 8775].\",\"type\":\"integer\"},\"mtuIfacePattern\":{\"description\":\"MTUIfacePattern is a regular expression that controls which interfaces Felix should scan in order to calculate the host's MTU. This should not match workload interfaces (usually named cali...).\",\"type\":\"string\"},\"natOutgoingAddress\":{\"description\":\"NATOutgoingAddress specifies an address to use when performing source NAT for traffic in a natOutgoing pool that is leaving the network. By default the address used is an address on the interface the traffic is leaving on (ie it uses the iptables MASQUERADE target)\",\"type\":\"string\"},\"natPortRange\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"NATPortRange specifies the range of ports that is used for port mapping when doing outgoing NAT. When unset the default behavior of the network stack is used.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"netlinkTimeout\":{\"type\":\"string\"},\"openstackRegion\":{\"description\":\"OpenstackRegion is the name of the region that a particular Felix belongs to. In a multi-region Calico/OpenStack deployment, this must be configured somehow for each Felix (here in the datamodel, or in felix.cfg or the environment on each compute node), and must match the [calico] openstack_region value configured in neutron.conf on each node. [Default: Empty]\",\"type\":\"string\"},\"policySyncPathPrefix\":{\"description\":\"PolicySyncPathPrefix is used to by Felix to communicate policy changes to external services, like Application layer policy. [Default: Empty]\",\"type\":\"string\"},\"prometheusGoMetricsEnabled\":{\"description\":\"PrometheusGoMetricsEnabled disables Go runtime metrics collection, which the Prometheus client does by default, when set to false. This reduces the number of metrics reported, reducing Prometheus load. [Default: true]\",\"type\":\"boolean\"},\"prometheusMetricsEnabled\":{\"description\":\"PrometheusMetricsEnabled enables the Prometheus metrics server in Felix if set to true. [Default: false]\",\"type\":\"boolean\"},\"prometheusMetricsHost\":{\"description\":\"PrometheusMetricsHost is the host that the Prometheus metrics server should bind to. [Default: empty]\",\"type\":\"string\"},\"prometheusMetricsPort\":{\"description\":\"PrometheusMetricsPort is the TCP port that the Prometheus metrics server should bind to. [Default: 9091]\",\"type\":\"integer\"},\"prometheusProcessMetricsEnabled\":{\"description\":\"PrometheusProcessMetricsEnabled disables process metrics collection, which the Prometheus client does by default, when set to false. This reduces the number of metrics reported, reducing Prometheus load. [Default: true]\",\"type\":\"boolean\"},\"prometheusWireGuardMetricsEnabled\":{\"description\":\"PrometheusWireGuardMetricsEnabled disables wireguard metrics collection, which the Prometheus client does by default, when set to false. This reduces the number of metrics reported, reducing Prometheus load. [Default: true]\",\"type\":\"boolean\"},\"removeExternalRoutes\":{\"description\":\"Whether or not to remove device routes that have not been programmed by Felix. Disabling this will allow external applications to also add device routes. This is enabled by default which means we will remove externally added routes.\",\"type\":\"boolean\"},\"reportingInterval\":{\"description\":\"ReportingInterval is the interval at which Felix reports its status into the datastore or 0 to disable. Must be non-zero in OpenStack deployments. [Default: 30s]\",\"type\":\"string\"},\"reportingTTL\":{\"description\":\"ReportingTTL is the time-to-live setting for process-wide status reports. [Default: 90s]\",\"type\":\"string\"},\"routeRefreshInterval\":{\"description\":\"RouteRefreshInterval is the period at which Felix re-checks the routes in the dataplane to ensure that no other process has accidentally broken Calico's rules. Set to 0 to disable route refresh. [Default: 90s]\",\"type\":\"string\"},\"routeSource\":{\"description\":\"RouteSource configures where Felix gets its routing information. - WorkloadIPs: use workload endpoints to construct routes. - CalicoIPAM: the default - use IPAM data to construct routes.\",\"type\":\"string\"},\"routeSyncDisabled\":{\"description\":\"RouteSyncDisabled will disable all operations performed on the route table. Set to true to run in network-policy mode only.\",\"type\":\"boolean\"},\"routeTableRange\":{\"description\":\"Deprecated in favor of RouteTableRanges. Calico programs additional Linux route tables for various purposes. RouteTableRange specifies the indices of the route tables that Calico should use.\",\"properties\":{\"max\":{\"type\":\"integer\"},\"min\":{\"type\":\"integer\"}},\"required\":[\"max\",\"min\"],\"type\":\"object\"},\"routeTableRanges\":{\"description\":\"Calico programs additional Linux route tables for various purposes. RouteTableRanges specifies a set of table index ranges that Calico should use. Deprecates`RouteTableRange`, overrides `RouteTableRange`.\",\"items\":{\"properties\":{\"max\":{\"type\":\"integer\"},\"min\":{\"type\":\"integer\"}},\"required\":[\"max\",\"min\"],\"type\":\"object\"},\"type\":\"array\"},\"serviceLoopPrevention\":{\"description\":\"When service IP advertisement is enabled, prevent routing loops to service IPs that are not in use, by dropping or rejecting packets that do not get DNAT'd by kube-proxy. Unless set to \\\"Disabled\\\", in which case such routing loops continue to be allowed. [Default: Drop]\",\"type\":\"string\"},\"sidecarAccelerationEnabled\":{\"description\":\"SidecarAccelerationEnabled enables experimental sidecar acceleration [Default: false]\",\"type\":\"boolean\"},\"usageReportingEnabled\":{\"description\":\"UsageReportingEnabled reports anonymous Calico version number and cluster size to projectcalico.org. Logs warnings returned by the usage server. For example, if a significant security vulnerability has been discovered in the version of Calico being used. [Default: true]\",\"type\":\"boolean\"},\"usageReportingInitialDelay\":{\"description\":\"UsageReportingInitialDelay controls the minimum delay before Felix makes a report. [Default: 300s]\",\"type\":\"string\"},\"usageReportingInterval\":{\"description\":\"UsageReportingInterval controls the interval at which Felix makes reports. [Default: 86400s]\",\"type\":\"string\"},\"useInternalDataplaneDriver\":{\"description\":\"UseInternalDataplaneDriver, if true, Felix will use its internal dataplane programming logic. If false, it will launch an external dataplane driver and communicate with it over protobuf.\",\"type\":\"boolean\"},\"vxlanEnabled\":{\"description\":\"VXLANEnabled overrides whether Felix should create the VXLAN tunnel device for IPv4 VXLAN networking. Optional as Felix determines this based on the existing IP pools. [Default: nil (unset)]\",\"type\":\"boolean\"},\"vxlanMTU\":{\"description\":\"VXLANMTU is the MTU to set on the IPv4 VXLAN tunnel device. See Configuring MTU [Default: 1410]\",\"type\":\"integer\"},\"vxlanMTUV6\":{\"description\":\"VXLANMTUV6 is the MTU to set on the IPv6 VXLAN tunnel device. See Configuring MTU [Default: 1390]\",\"type\":\"integer\"},\"vxlanPort\":{\"type\":\"integer\"},\"vxlanVNI\":{\"type\":\"integer\"},\"wireguardEnabled\":{\"description\":\"WireguardEnabled controls whether Wireguard is enabled for IPv4 (encapsulating IPv4 traffic over an IPv4 underlay network). [Default: false]\",\"type\":\"boolean\"},\"wireguardEnabledV6\":{\"description\":\"WireguardEnabledV6 controls whether Wireguard is enabled for IPv6 (encapsulating IPv6 traffic over an IPv6 underlay network). [Default: false]\",\"type\":\"boolean\"},\"wireguardHostEncryptionEnabled\":{\"description\":\"WireguardHostEncryptionEnabled controls whether Wireguard host-to-host encryption is enabled. [Default: false]\",\"type\":\"boolean\"},\"wireguardInterfaceName\":{\"description\":\"WireguardInterfaceName specifies the name to use for the IPv4 Wireguard interface. [Default: wireguard.cali]\",\"type\":\"string\"},\"wireguardInterfaceNameV6\":{\"description\":\"WireguardInterfaceNameV6 specifies the name to use for the IPv6 Wireguard interface. [Default: wg-v6.cali]\",\"type\":\"string\"},\"wireguardKeepAlive\":{\"description\":\"WireguardKeepAlive controls Wireguard PersistentKeepalive option. Set 0 to disable. [Default: 0]\",\"type\":\"string\"},\"wireguardListeningPort\":{\"description\":\"WireguardListeningPort controls the listening port used by IPv4 Wireguard. [Default: 51820]\",\"type\":\"integer\"},\"wireguardListeningPortV6\":{\"description\":\"WireguardListeningPortV6 controls the listening port used by IPv6 Wireguard. [Default: 51821]\",\"type\":\"integer\"},\"wireguardMTU\":{\"description\":\"WireguardMTU controls the MTU on the IPv4 Wireguard interface. See Configuring MTU [Default: 1440]\",\"type\":\"integer\"},\"wireguardMTUV6\":{\"description\":\"WireguardMTUV6 controls the MTU on the IPv6 Wireguard interface. See Configuring MTU [Default: 1420]\",\"type\":\"integer\"},\"wireguardRoutingRulePriority\":{\"description\":\"WireguardRoutingRulePriority controls the priority value to use for the Wireguard routing rule. [Default: 99]\",\"type\":\"integer\"},\"workloadSourceSpoofing\":{\"description\":\"WorkloadSourceSpoofing controls whether pods can use the allowedSourcePrefixes annotation to send traffic with a source IP address that is not theirs. This is disabled by default. When set to \\\"Any\\\", pods can request any prefix.\",\"type\":\"string\"},\"xdpEnabled\":{\"description\":\"XDPEnabled enables XDP acceleration for suitable untracked incoming deny rules. [Default: true]\",\"type\":\"boolean\"},\"xdpRefreshInterval\":{\"description\":\"XDPRefreshInterval is the period at which Felix re-checks all XDP state to ensure that no other process has accidentally broken Calico's BPF maps or attached programs. Set to 0 to disable XDP refresh. [Default: 90s]\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] - }, + "description": "Felix Configuration contains the configuration for Felix.", + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "crd.projectcalico.org", + "kind": "FelixConfiguration", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "felixconfigurations.crd.projectcalico.org" + }, "spec": { "group": "crd.projectcalico.org", "names": { @@ -2753,6 +2542,13 @@ "description": "BPFConnectTimeLoadBalancingEnabled when in BPF mode, controls whether Felix installs the connection-time load balancer. The connect-time load balancer is required for the host to be able to reach Kubernetes services and it improves the performance of pod-to-service connections. The only reason to disable it is for debugging purposes. [Default: true]", "type": "boolean" }, + "bpfDSROptoutCIDRs": { + "description": "BPFDSROptoutCIDRs is a list of CIDRs which are excluded from DSR. That is, clients in those CIDRs will accesses nodeports as if BPFExternalServiceMode was set to Tunnel.", + "type": "array", + "items": { + "type": "string" + } + }, "bpfDataIfacePattern": { "description": "BPFDataIfacePattern is a regular expression that controls which interfaces Felix should attach BPF programs to in order to catch traffic to/from the network. This needs to match the interfaces that Calico workload traffic flows over as well as any interfaces that handle incoming traffic to nodeports and services from outside the cluster. It should not match the workload interfaces (usually named cali...).", "type": "string" @@ -2766,7 +2562,7 @@ "type": "boolean" }, "bpfEnforceRPF": { - "description": "BPFEnforceRPF enforce strict RPF on all host interfaces with BPF programs regardless of what is the per-interfaces or global setting. Possible values are Disabled, Strict or Loose. [Default: Strict]", + "description": "BPFEnforceRPF enforce strict RPF on all host interfaces with BPF programs regardless of what is the per-interfaces or global setting. Possible values are Disabled, Strict or Loose. [Default: Loose]", "type": "string" }, "bpfExtToServiceConnmark": { @@ -2977,7 +2773,7 @@ "type": "integer" }, "healthTimeoutOverrides": { - "description": "HealthTimeoutOverrides allows the internal watchdog timeouts of individual subcomponents to be overriden. This is useful for working around \"false positive\" liveness timeouts that can occur in particularly stressful workloads or if CPU is constrained. For a list of active subcomponents, see Felix's logs.", + "description": "HealthTimeoutOverrides allows the internal watchdog timeouts of individual subcomponents to be overridden. This is useful for working around \"false positive\" liveness timeouts that can occur in particularly stressful workloads or if CPU is constrained. For a list of active subcomponents, see Felix's logs.", "type": "array", "items": { "type": "object", @@ -3026,6 +2822,10 @@ "iptablesFilterAllowAction": { "type": "string" }, + "iptablesFilterDenyAction": { + "description": "IptablesFilterDenyAction controls what happens to traffic that is denied by network policy. By default Calico blocks traffic with an iptables \"DROP\" action. If you want to use \"REJECT\" action instead you can configure it in here.", + "type": "string" + }, "iptablesLockFilePath": { "description": "IptablesLockFilePath is the location of the iptables lock file. You may need to change this if the lock file is not in its standard location (for example if you have mapped it into Felix's container at a different path). [Default: /run/xtables.lock]", "type": "string" @@ -3332,27 +3132,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "felixconfigurations", "singular": "felixconfiguration", @@ -3967,82 +3750,7 @@ }, "crd": { "metadata": { - "name": "globalnetworkpolicies.crd.projectcalico.org", - "uid": "c4c99a69-b872-430d-8440-769b603cce58", - "resourceVersion": "400", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"globalnetworkpolicies.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"GlobalNetworkPolicy\",\"listKind\":\"GlobalNetworkPolicyList\",\"plural\":\"globalnetworkpolicies\",\"singular\":\"globalnetworkpolicy\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"properties\":{\"applyOnForward\":{\"description\":\"ApplyOnForward indicates to apply the rules in this policy on forward traffic.\",\"type\":\"boolean\"},\"doNotTrack\":{\"description\":\"DoNotTrack indicates whether packets matched by the rules in this policy should go through the data plane's connection tracking, such as Linux conntrack. If True, the rules in this policy are applied before any data plane connection tracking, and packets allowed by this policy are marked as not to be tracked.\",\"type\":\"boolean\"},\"egress\":{\"description\":\"The ordered set of egress rules. Each rule contains a set of packet match criteria and a corresponding action to apply.\",\"items\":{\"description\":\"A Rule encapsulates a set of match criteria and an action. Both selector-based security Policy and security Profiles reference rules - separated out as a list of rules for both ingress and egress packet matching. \\n Each positive match criteria has a negated version, prefixed with \\\"Not\\\". All the match criteria within a rule must be satisfied for a packet to match. A single rule can contain the positive and negative version of a match and both must be satisfied for the rule to match.\",\"properties\":{\"action\":{\"type\":\"string\"},\"destination\":{\"description\":\"Destination contains the match criteria that apply to destination entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"http\":{\"description\":\"HTTP contains match criteria that apply to HTTP requests.\",\"properties\":{\"methods\":{\"description\":\"Methods is an optional field that restricts the rule to apply only to HTTP requests that use one of the listed HTTP Methods (e.g. GET, PUT, etc.) Multiple methods are OR'd together.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"paths\":{\"description\":\"Paths is an optional field that restricts the rule to apply to HTTP requests that use one of the listed HTTP Paths. Multiple paths are OR'd together. e.g: - exact: /foo - prefix: /bar NOTE: Each entry may ONLY specify either a `exact` or a `prefix` match. The validator will check for it.\",\"items\":{\"description\":\"HTTPPath specifies an HTTP path to match. It may be either of the form: exact: \\u003cpath\\u003e: which matches the path exactly or prefix: \\u003cpath-prefix\\u003e: which matches the path prefix\",\"properties\":{\"exact\":{\"type\":\"string\"},\"prefix\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"},\"icmp\":{\"description\":\"ICMP is an optional field that restricts the rule to apply to a specific type and code of ICMP traffic. This should only be specified if the Protocol field is set to \\\"ICMP\\\" or \\\"ICMPv6\\\".\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"ipVersion\":{\"description\":\"IPVersion is an optional field that restricts the rule to only match a specific IP version.\",\"type\":\"integer\"},\"metadata\":{\"description\":\"Metadata contains additional information for this rule\",\"properties\":{\"annotations\":{\"additionalProperties\":{\"type\":\"string\"},\"description\":\"Annotations is a set of key value pairs that give extra information about the rule\",\"type\":\"object\"}},\"type\":\"object\"},\"notICMP\":{\"description\":\"NotICMP is the negated version of the ICMP field.\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"notProtocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"NotProtocol is the negated version of the Protocol field.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"protocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"Protocol is an optional field that restricts the rule to only apply to traffic of a specific IP protocol. Required if any of the EntityRules contain Ports (because ports only apply to certain protocols). \\n Must be one of these string values: \\\"TCP\\\", \\\"UDP\\\", \\\"ICMP\\\", \\\"ICMPv6\\\", \\\"SCTP\\\", \\\"UDPLite\\\" or an integer in the range 1-255.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"source\":{\"description\":\"Source contains the match criteria that apply to source entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"required\":[\"action\"],\"type\":\"object\"},\"type\":\"array\"},\"ingress\":{\"description\":\"The ordered set of ingress rules. Each rule contains a set of packet match criteria and a corresponding action to apply.\",\"items\":{\"description\":\"A Rule encapsulates a set of match criteria and an action. Both selector-based security Policy and security Profiles reference rules - separated out as a list of rules for both ingress and egress packet matching. \\n Each positive match criteria has a negated version, prefixed with \\\"Not\\\". All the match criteria within a rule must be satisfied for a packet to match. A single rule can contain the positive and negative version of a match and both must be satisfied for the rule to match.\",\"properties\":{\"action\":{\"type\":\"string\"},\"destination\":{\"description\":\"Destination contains the match criteria that apply to destination entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"http\":{\"description\":\"HTTP contains match criteria that apply to HTTP requests.\",\"properties\":{\"methods\":{\"description\":\"Methods is an optional field that restricts the rule to apply only to HTTP requests that use one of the listed HTTP Methods (e.g. GET, PUT, etc.) Multiple methods are OR'd together.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"paths\":{\"description\":\"Paths is an optional field that restricts the rule to apply to HTTP requests that use one of the listed HTTP Paths. Multiple paths are OR'd together. e.g: - exact: /foo - prefix: /bar NOTE: Each entry may ONLY specify either a `exact` or a `prefix` match. The validator will check for it.\",\"items\":{\"description\":\"HTTPPath specifies an HTTP path to match. It may be either of the form: exact: \\u003cpath\\u003e: which matches the path exactly or prefix: \\u003cpath-prefix\\u003e: which matches the path prefix\",\"properties\":{\"exact\":{\"type\":\"string\"},\"prefix\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"},\"icmp\":{\"description\":\"ICMP is an optional field that restricts the rule to apply to a specific type and code of ICMP traffic. This should only be specified if the Protocol field is set to \\\"ICMP\\\" or \\\"ICMPv6\\\".\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"ipVersion\":{\"description\":\"IPVersion is an optional field that restricts the rule to only match a specific IP version.\",\"type\":\"integer\"},\"metadata\":{\"description\":\"Metadata contains additional information for this rule\",\"properties\":{\"annotations\":{\"additionalProperties\":{\"type\":\"string\"},\"description\":\"Annotations is a set of key value pairs that give extra information about the rule\",\"type\":\"object\"}},\"type\":\"object\"},\"notICMP\":{\"description\":\"NotICMP is the negated version of the ICMP field.\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"notProtocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"NotProtocol is the negated version of the Protocol field.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"protocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"Protocol is an optional field that restricts the rule to only apply to traffic of a specific IP protocol. Required if any of the EntityRules contain Ports (because ports only apply to certain protocols). \\n Must be one of these string values: \\\"TCP\\\", \\\"UDP\\\", \\\"ICMP\\\", \\\"ICMPv6\\\", \\\"SCTP\\\", \\\"UDPLite\\\" or an integer in the range 1-255.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"source\":{\"description\":\"Source contains the match criteria that apply to source entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"required\":[\"action\"],\"type\":\"object\"},\"type\":\"array\"},\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field for an expression used to select a pod based on namespaces.\",\"type\":\"string\"},\"order\":{\"description\":\"Order is an optional field that specifies the order in which the policy is applied. Policies with higher \\\"order\\\" are applied after those with lower order. If the order is omitted, it may be considered to be \\\"infinite\\\" - i.e. the policy will be applied last. Policies with identical order will be applied in alphanumerical order based on the Policy \\\"Name\\\".\",\"type\":\"number\"},\"preDNAT\":{\"description\":\"PreDNAT indicates to apply the rules in this policy before any DNAT.\",\"type\":\"boolean\"},\"selector\":{\"description\":\"The selector is an expression used to pick pick out the endpoints that the policy should be applied to. \\n Selector expressions follow this syntax: \\n \\tlabel == \\\"string_literal\\\" -\\u003e comparison, e.g. my_label == \\\"foo bar\\\" \\tlabel != \\\"string_literal\\\" -\\u003e not equal; also matches if label is not present \\tlabel in { \\\"a\\\", \\\"b\\\", \\\"c\\\", ... } -\\u003e true if the value of label X is one of \\\"a\\\", \\\"b\\\", \\\"c\\\" \\tlabel not in { \\\"a\\\", \\\"b\\\", \\\"c\\\", ... } -\\u003e true if the value of label X is not one of \\\"a\\\", \\\"b\\\", \\\"c\\\" \\thas(label_name) -\\u003e True if that label is present \\t! expr -\\u003e negation of expr \\texpr \\u0026\\u0026 expr -\\u003e Short-circuit and \\texpr || expr -\\u003e Short-circuit or \\t( expr ) -\\u003e parens for grouping \\tall() or the empty selector -\\u003e matches all endpoints. \\n Label names are allowed to contain alphanumerics, -, _ and /. String literals are more permissive but they do not support escape characters. \\n Examples (with made-up labels): \\n \\ttype == \\\"webserver\\\" \\u0026\\u0026 deployment == \\\"prod\\\" \\ttype in {\\\"frontend\\\", \\\"backend\\\"} \\tdeployment != \\\"dev\\\" \\t! has(label_name)\",\"type\":\"string\"},\"serviceAccountSelector\":{\"description\":\"ServiceAccountSelector is an optional field for an expression used to select a pod based on service accounts.\",\"type\":\"string\"},\"types\":{\"description\":\"Types indicates whether this policy applies to ingress, or to egress, or to both. When not explicitly specified (and so the value on creation is empty or nil), Calico defaults Types according to what Ingress and Egress rules are present in the policy. The default is: \\n - [ PolicyTypeIngress ], if there are no Egress rules (including the case where there are also no Ingress rules) \\n - [ PolicyTypeEgress ], if there are Egress rules but no Ingress rules \\n - [ PolicyTypeIngress, PolicyTypeEgress ], if there are both Ingress and Egress rules. \\n When the policy is read back again, Types will always be one of these values, never empty or nil.\",\"items\":{\"description\":\"PolicyType enumerates the possible values of the PolicySpec Types field.\",\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "globalnetworkpolicies.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -4731,27 +4439,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "globalnetworkpolicies", "singular": "globalnetworkpolicy", @@ -4823,82 +4514,7 @@ }, "crd": { "metadata": { - "name": "globalnetworksets.crd.projectcalico.org", - "uid": "3355e383-26e2-4a98-b681-0144e7f348d6", - "resourceVersion": "403", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"globalnetworksets.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"GlobalNetworkSet\",\"listKind\":\"GlobalNetworkSetList\",\"plural\":\"globalnetworksets\",\"singular\":\"globalnetworkset\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"GlobalNetworkSet contains a set of arbitrary IP sub-networks/CIDRs that share labels to allow rules to refer to them via selectors. The labels of GlobalNetworkSet are not namespaced.\",\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"GlobalNetworkSetSpec contains the specification for a NetworkSet resource.\",\"properties\":{\"nets\":{\"description\":\"The list of IP networks that belong to this set.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "globalnetworksets.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -4948,27 +4564,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "globalnetworksets", "singular": "globalnetworkset", @@ -5078,82 +4677,7 @@ }, "crd": { "metadata": { - "name": "hostendpoints.crd.projectcalico.org", - "uid": "20bb89d5-1f5a-4b7e-81d6-33d3cd0be131", - "resourceVersion": "405", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"hostendpoints.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"HostEndpoint\",\"listKind\":\"HostEndpointList\",\"plural\":\"hostendpoints\",\"singular\":\"hostendpoint\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"HostEndpointSpec contains the specification for a HostEndpoint resource.\",\"properties\":{\"expectedIPs\":{\"description\":\"The expected IP addresses (IPv4 and IPv6) of the endpoint. If \\\"InterfaceName\\\" is not present, Calico will look for an interface matching any of the IPs in the list and apply policy to that. Note: \\tWhen using the selector match criteria in an ingress or egress security Policy \\tor Profile, Calico converts the selector into a set of IP addresses. For host \\tendpoints, the ExpectedIPs field is used for that purpose. (If only the interface \\tname is specified, Calico does not learn the IPs of the interface for use in match \\tcriteria.)\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"interfaceName\":{\"description\":\"Either \\\"*\\\", or the name of a specific Linux interface to apply policy to; or empty. \\\"*\\\" indicates that this HostEndpoint governs all traffic to, from or through the default network namespace of the host named by the \\\"Node\\\" field; entering and leaving that namespace via any interface, including those from/to non-host-networked local workloads. \\n If InterfaceName is not \\\"*\\\", this HostEndpoint only governs traffic that enters or leaves the host through the specific interface named by InterfaceName, or - when InterfaceName is empty - through the specific interface that has one of the IPs in ExpectedIPs. Therefore, when InterfaceName is empty, at least one expected IP must be specified. Only external interfaces (such as \\\"eth0\\\") are supported here; it isn't possible for a HostEndpoint to protect traffic through a specific local workload interface. \\n Note: Only some kinds of policy are implemented for \\\"*\\\" HostEndpoints; initially just pre-DNAT policy. Please check Calico documentation for the latest position.\",\"type\":\"string\"},\"node\":{\"description\":\"The node name identifying the Calico node instance.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports contains the endpoint's named ports, which may be referenced in security policy rules.\",\"items\":{\"properties\":{\"name\":{\"type\":\"string\"},\"port\":{\"type\":\"integer\"},\"protocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true}},\"required\":[\"name\",\"port\",\"protocol\"],\"type\":\"object\"},\"type\":\"array\"},\"profiles\":{\"description\":\"A list of identifiers of security Profile objects that apply to this endpoint. Each profile is applied in the order that they appear in this list. Profile rules are applied after the selector-based security policy.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "hostendpoints.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -5249,27 +4773,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "hostendpoints", "singular": "hostendpoint", @@ -5399,82 +4906,7 @@ }, "crd": { "metadata": { - "name": "ipamblocks.crd.projectcalico.org", - "uid": "ce240ac0-4bd5-42a2-bb3d-90d860d526eb", - "resourceVersion": "408", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"ipamblocks.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"IPAMBlock\",\"listKind\":\"IPAMBlockList\",\"plural\":\"ipamblocks\",\"singular\":\"ipamblock\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"IPAMBlockSpec contains the specification for an IPAMBlock resource.\",\"properties\":{\"affinity\":{\"description\":\"Affinity of the block, if this block has one. If set, it will be of the form \\\"host:\\u003chostname\\u003e\\\". If not set, this block is not affine to a host.\",\"type\":\"string\"},\"allocations\":{\"description\":\"Array of allocations in-use within this block. nil entries mean the allocation is free. For non-nil entries at index i, the index is the ordinal of the allocation within this block and the value is the index of the associated attributes in the Attributes array.\",\"items\":{\"nullable\":true,\"type\":\"integer\"},\"type\":\"array\"},\"attributes\":{\"description\":\"Attributes is an array of arbitrary metadata associated with allocations in the block. To find attributes for a given allocation, use the value of the allocation's entry in the Allocations array as the index of the element in this array.\",\"items\":{\"properties\":{\"handle_id\":{\"type\":\"string\"},\"secondary\":{\"additionalProperties\":{\"type\":\"string\"},\"type\":\"object\"}},\"type\":\"object\"},\"type\":\"array\"},\"cidr\":{\"description\":\"The block's CIDR.\",\"type\":\"string\"},\"deleted\":{\"description\":\"Deleted is an internal boolean used to workaround a limitation in the Kubernetes API whereby deletion will not return a conflict error if the block has been updated. It should not be set manually.\",\"type\":\"boolean\"},\"sequenceNumber\":{\"default\":0,\"description\":\"We store a sequence number that is updated each time the block is written. Each allocation will also store the sequence number of the block at the time of its creation. When releasing an IP, passing the sequence number associated with the allocation allows us to protect against a race condition and ensure the IP hasn't been released and re-allocated since the release request.\",\"format\":\"int64\",\"type\":\"integer\"},\"sequenceNumberForAllocation\":{\"additionalProperties\":{\"format\":\"int64\",\"type\":\"integer\"},\"description\":\"Map of allocated ordinal within the block to sequence number of the block at the time of allocation. Kubernetes does not allow numerical keys for maps, so the key is cast to a string.\",\"type\":\"object\"},\"strictAffinity\":{\"description\":\"StrictAffinity on the IPAMBlock is deprecated and no longer used by the code. Use IPAMConfig StrictAffinity instead.\",\"type\":\"boolean\"},\"unallocated\":{\"description\":\"Unallocated is an ordered list of allocations which are free in the block.\",\"items\":{\"type\":\"integer\"},\"type\":\"array\"}},\"required\":[\"allocations\",\"attributes\",\"cidr\",\"strictAffinity\",\"unallocated\"],\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ipamblocks.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -5586,27 +5018,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ipamblocks", "singular": "ipamblock", @@ -5686,82 +5101,7 @@ }, "crd": { "metadata": { - "name": "ipamconfigs.crd.projectcalico.org", - "uid": "a9f42690-576f-4fef-8348-c219c21dcc73", - "resourceVersion": "411", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"ipamconfigs.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"IPAMConfig\",\"listKind\":\"IPAMConfigList\",\"plural\":\"ipamconfigs\",\"singular\":\"ipamconfig\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"IPAMConfigSpec contains the specification for an IPAMConfig resource.\",\"properties\":{\"autoAllocateBlocks\":{\"type\":\"boolean\"},\"maxBlocksPerHost\":{\"description\":\"MaxBlocksPerHost, if non-zero, is the max number of blocks that can be affine to each host.\",\"maximum\":2147483647,\"minimum\":0,\"type\":\"integer\"},\"strictAffinity\":{\"type\":\"boolean\"}},\"required\":[\"autoAllocateBlocks\",\"strictAffinity\"],\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "ipamconfigs.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -5819,27 +5159,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ipamconfigs", "singular": "ipamconfig", @@ -5919,82 +5242,7 @@ }, "crd": { "metadata": { - "name": "ipamhandles.crd.projectcalico.org", - "uid": "ca3a2816-f7e5-4d2d-8cce-2fd3c5c5a44a", - "resourceVersion": "413", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"ipamhandles.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"IPAMHandle\",\"listKind\":\"IPAMHandleList\",\"plural\":\"ipamhandles\",\"singular\":\"ipamhandle\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"IPAMHandleSpec contains the specification for an IPAMHandle resource.\",\"properties\":{\"block\":{\"additionalProperties\":{\"type\":\"integer\"},\"type\":\"object\"},\"deleted\":{\"type\":\"boolean\"},\"handleID\":{\"type\":\"string\"}},\"required\":[\"block\",\"handleID\"],\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "ipamhandles.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -6052,27 +5300,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ipamhandles", "singular": "ipamhandle", @@ -6196,82 +5427,7 @@ }, "crd": { "metadata": { - "name": "ippools.crd.projectcalico.org", - "uid": "76132e27-19d6-40ee-b28f-5e1e2cd7dfb8", - "resourceVersion": "415", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"ippools.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"IPPool\",\"listKind\":\"IPPoolList\",\"plural\":\"ippools\",\"singular\":\"ippool\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"IPPoolSpec contains the specification for an IPPool resource.\",\"properties\":{\"allowedUses\":{\"description\":\"AllowedUse controls what the IP pool will be used for. If not specified or empty, defaults to [\\\"Tunnel\\\", \\\"Workload\\\"] for back-compatibility\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"blockSize\":{\"description\":\"The block size to use for IP address assignments from this pool. Defaults to 26 for IPv4 and 122 for IPv6.\",\"type\":\"integer\"},\"cidr\":{\"description\":\"The pool CIDR.\",\"type\":\"string\"},\"disableBGPExport\":{\"description\":\"Disable exporting routes from this IP Pool's CIDR over BGP. [Default: false]\",\"type\":\"boolean\"},\"disabled\":{\"description\":\"When disabled is true, Calico IPAM will not assign addresses from this pool.\",\"type\":\"boolean\"},\"ipip\":{\"description\":\"Deprecated: this field is only used for APIv1 backwards compatibility. Setting this field is not allowed, this field is for internal use only.\",\"properties\":{\"enabled\":{\"description\":\"When enabled is true, ipip tunneling will be used to deliver packets to destinations within this pool.\",\"type\":\"boolean\"},\"mode\":{\"description\":\"The IPIP mode. This can be one of \\\"always\\\" or \\\"cross-subnet\\\". A mode of \\\"always\\\" will also use IPIP tunneling for routing to destination IP addresses within this pool. A mode of \\\"cross-subnet\\\" will only use IPIP tunneling when the destination node is on a different subnet to the originating node. The default value (if not specified) is \\\"always\\\".\",\"type\":\"string\"}},\"type\":\"object\"},\"ipipMode\":{\"description\":\"Contains configuration for IPIP tunneling for this pool. If not specified, then this is defaulted to \\\"Never\\\" (i.e. IPIP tunneling is disabled).\",\"type\":\"string\"},\"nat-outgoing\":{\"description\":\"Deprecated: this field is only used for APIv1 backwards compatibility. Setting this field is not allowed, this field is for internal use only.\",\"type\":\"boolean\"},\"natOutgoing\":{\"description\":\"When natOutgoing is true, packets sent from Calico networked containers in this pool to destinations outside of this pool will be masqueraded.\",\"type\":\"boolean\"},\"nodeSelector\":{\"description\":\"Allows IPPool to allocate for a specific node by label selector.\",\"type\":\"string\"},\"vxlanMode\":{\"description\":\"Contains configuration for VXLAN tunneling for this pool. If not specified, then this is defaulted to \\\"Never\\\" (i.e. VXLAN tunneling is disabled).\",\"type\":\"string\"}},\"required\":[\"cidr\"],\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "ippools.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -6373,27 +5529,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ippools", "singular": "ippool", @@ -6464,84 +5603,7 @@ }, "crd": { "metadata": { - "name": "ipreservations.crd.projectcalico.org", - "uid": "873d6ca2-0eb8-48cc-ae1f-7c79dcc19401", - "resourceVersion": "417", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:22Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "(devel)", - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{\"controller-gen.kubebuilder.io/version\":\"(devel)\"},\"creationTimestamp\":null,\"name\":\"ipreservations.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"IPReservation\",\"listKind\":\"IPReservationList\",\"plural\":\"ipreservations\",\"singular\":\"ipreservation\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"IPReservationSpec contains the specification for an IPReservation resource.\",\"properties\":{\"reservedCIDRs\":{\"description\":\"ReservedCIDRs is a list of CIDRs and/or IP addresses that Calico IPAM will exclude from new allocations.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - } - ] + "name": "ipreservations.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -6590,27 +5652,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ipreservations", "singular": "ipreservation", @@ -6889,82 +5934,7 @@ }, "crd": { "metadata": { - "name": "kubecontrollersconfigurations.crd.projectcalico.org", - "uid": "b00da906-738f-420c-9348-f5c7b72bdfda", - "resourceVersion": "418", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:23Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"kubecontrollersconfigurations.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"KubeControllersConfiguration\",\"listKind\":\"KubeControllersConfigurationList\",\"plural\":\"kubecontrollersconfigurations\",\"singular\":\"kubecontrollersconfiguration\"},\"preserveUnknownFields\":false,\"scope\":\"Cluster\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"KubeControllersConfigurationSpec contains the values of the Kubernetes controllers configuration.\",\"properties\":{\"controllers\":{\"description\":\"Controllers enables and configures individual Kubernetes controllers\",\"properties\":{\"namespace\":{\"description\":\"Namespace enables and configures the namespace controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"node\":{\"description\":\"Node enables and configures the node controller. Enabled by default, set to nil to disable.\",\"properties\":{\"hostEndpoint\":{\"description\":\"HostEndpoint controls syncing nodes to host endpoints. Disabled by default, set to nil to disable.\",\"properties\":{\"autoCreate\":{\"description\":\"AutoCreate enables automatic creation of host endpoints for every node. [Default: Disabled]\",\"type\":\"string\"}},\"type\":\"object\"},\"leakGracePeriod\":{\"description\":\"LeakGracePeriod is the period used by the controller to determine if an IP address has been leaked. Set to 0 to disable IP garbage collection. [Default: 15m]\",\"type\":\"string\"},\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"},\"syncLabels\":{\"description\":\"SyncLabels controls whether to copy Kubernetes node labels to Calico nodes. [Default: Enabled]\",\"type\":\"string\"}},\"type\":\"object\"},\"policy\":{\"description\":\"Policy enables and configures the policy controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"serviceAccount\":{\"description\":\"ServiceAccount enables and configures the service account controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"workloadEndpoint\":{\"description\":\"WorkloadEndpoint enables and configures the workload endpoint controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"debugProfilePort\":{\"description\":\"DebugProfilePort configures the port to serve memory and cpu profiles on. If not specified, profiling is disabled.\",\"format\":\"int32\",\"type\":\"integer\"},\"etcdV3CompactionPeriod\":{\"description\":\"EtcdV3CompactionPeriod is the period between etcdv3 compaction requests. Set to 0 to disable. [Default: 10m]\",\"type\":\"string\"},\"healthChecks\":{\"description\":\"HealthChecks enables or disables support for health checks [Default: Enabled]\",\"type\":\"string\"},\"logSeverityScreen\":{\"description\":\"LogSeverityScreen is the log severity above which logs are sent to the stdout. [Default: Info]\",\"type\":\"string\"},\"prometheusMetricsPort\":{\"description\":\"PrometheusMetricsPort is the TCP port that the Prometheus metrics server should bind to. Set to 0 to disable. [Default: 9094]\",\"type\":\"integer\"}},\"required\":[\"controllers\"],\"type\":\"object\"},\"status\":{\"description\":\"KubeControllersConfigurationStatus represents the status of the configuration. It's useful for admins to be able to see the actual config that was applied, which can be modified by environment variables on the kube-controllers process.\",\"properties\":{\"environmentVars\":{\"additionalProperties\":{\"type\":\"string\"},\"description\":\"EnvironmentVars contains the environment variables on the kube-controllers that influenced the RunningConfig.\",\"type\":\"object\"},\"runningConfig\":{\"description\":\"RunningConfig contains the effective config that is running in the kube-controllers pod, after merging the API resource with any environment variables.\",\"properties\":{\"controllers\":{\"description\":\"Controllers enables and configures individual Kubernetes controllers\",\"properties\":{\"namespace\":{\"description\":\"Namespace enables and configures the namespace controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"node\":{\"description\":\"Node enables and configures the node controller. Enabled by default, set to nil to disable.\",\"properties\":{\"hostEndpoint\":{\"description\":\"HostEndpoint controls syncing nodes to host endpoints. Disabled by default, set to nil to disable.\",\"properties\":{\"autoCreate\":{\"description\":\"AutoCreate enables automatic creation of host endpoints for every node. [Default: Disabled]\",\"type\":\"string\"}},\"type\":\"object\"},\"leakGracePeriod\":{\"description\":\"LeakGracePeriod is the period used by the controller to determine if an IP address has been leaked. Set to 0 to disable IP garbage collection. [Default: 15m]\",\"type\":\"string\"},\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"},\"syncLabels\":{\"description\":\"SyncLabels controls whether to copy Kubernetes node labels to Calico nodes. [Default: Enabled]\",\"type\":\"string\"}},\"type\":\"object\"},\"policy\":{\"description\":\"Policy enables and configures the policy controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"serviceAccount\":{\"description\":\"ServiceAccount enables and configures the service account controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"},\"workloadEndpoint\":{\"description\":\"WorkloadEndpoint enables and configures the workload endpoint controller. Enabled by default, set to nil to disable.\",\"properties\":{\"reconcilerPeriod\":{\"description\":\"ReconcilerPeriod is the period to perform reconciliation with the Calico datastore. [Default: 5m]\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"debugProfilePort\":{\"description\":\"DebugProfilePort configures the port to serve memory and cpu profiles on. If not specified, profiling is disabled.\",\"format\":\"int32\",\"type\":\"integer\"},\"etcdV3CompactionPeriod\":{\"description\":\"EtcdV3CompactionPeriod is the period between etcdv3 compaction requests. Set to 0 to disable. [Default: 10m]\",\"type\":\"string\"},\"healthChecks\":{\"description\":\"HealthChecks enables or disables support for health checks [Default: Enabled]\",\"type\":\"string\"},\"logSeverityScreen\":{\"description\":\"LogSeverityScreen is the log severity above which logs are sent to the stdout. [Default: Info]\",\"type\":\"string\"},\"prometheusMetricsPort\":{\"description\":\"PrometheusMetricsPort is the TCP port that the Prometheus metrics server should bind to. Set to 0 to disable. [Default: 9094]\",\"type\":\"integer\"}},\"required\":[\"controllers\"],\"type\":\"object\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "kubecontrollersconfigurations.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -7221,27 +6191,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "kubecontrollersconfigurations", "singular": "kubecontrollersconfiguration", @@ -7842,82 +6795,7 @@ }, "crd": { "metadata": { - "name": "networkpolicies.crd.projectcalico.org", - "uid": "4a9361da-f96c-4519-baa6-a758b81d0ba6", - "resourceVersion": "423", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:23Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"networkpolicies.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"NetworkPolicy\",\"listKind\":\"NetworkPolicyList\",\"plural\":\"networkpolicies\",\"singular\":\"networkpolicy\"},\"preserveUnknownFields\":false,\"scope\":\"Namespaced\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"properties\":{\"egress\":{\"description\":\"The ordered set of egress rules. Each rule contains a set of packet match criteria and a corresponding action to apply.\",\"items\":{\"description\":\"A Rule encapsulates a set of match criteria and an action. Both selector-based security Policy and security Profiles reference rules - separated out as a list of rules for both ingress and egress packet matching. \\n Each positive match criteria has a negated version, prefixed with \\\"Not\\\". All the match criteria within a rule must be satisfied for a packet to match. A single rule can contain the positive and negative version of a match and both must be satisfied for the rule to match.\",\"properties\":{\"action\":{\"type\":\"string\"},\"destination\":{\"description\":\"Destination contains the match criteria that apply to destination entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"http\":{\"description\":\"HTTP contains match criteria that apply to HTTP requests.\",\"properties\":{\"methods\":{\"description\":\"Methods is an optional field that restricts the rule to apply only to HTTP requests that use one of the listed HTTP Methods (e.g. GET, PUT, etc.) Multiple methods are OR'd together.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"paths\":{\"description\":\"Paths is an optional field that restricts the rule to apply to HTTP requests that use one of the listed HTTP Paths. Multiple paths are OR'd together. e.g: - exact: /foo - prefix: /bar NOTE: Each entry may ONLY specify either a `exact` or a `prefix` match. The validator will check for it.\",\"items\":{\"description\":\"HTTPPath specifies an HTTP path to match. It may be either of the form: exact: \\u003cpath\\u003e: which matches the path exactly or prefix: \\u003cpath-prefix\\u003e: which matches the path prefix\",\"properties\":{\"exact\":{\"type\":\"string\"},\"prefix\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"},\"icmp\":{\"description\":\"ICMP is an optional field that restricts the rule to apply to a specific type and code of ICMP traffic. This should only be specified if the Protocol field is set to \\\"ICMP\\\" or \\\"ICMPv6\\\".\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"ipVersion\":{\"description\":\"IPVersion is an optional field that restricts the rule to only match a specific IP version.\",\"type\":\"integer\"},\"metadata\":{\"description\":\"Metadata contains additional information for this rule\",\"properties\":{\"annotations\":{\"additionalProperties\":{\"type\":\"string\"},\"description\":\"Annotations is a set of key value pairs that give extra information about the rule\",\"type\":\"object\"}},\"type\":\"object\"},\"notICMP\":{\"description\":\"NotICMP is the negated version of the ICMP field.\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"notProtocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"NotProtocol is the negated version of the Protocol field.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"protocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"Protocol is an optional field that restricts the rule to only apply to traffic of a specific IP protocol. Required if any of the EntityRules contain Ports (because ports only apply to certain protocols). \\n Must be one of these string values: \\\"TCP\\\", \\\"UDP\\\", \\\"ICMP\\\", \\\"ICMPv6\\\", \\\"SCTP\\\", \\\"UDPLite\\\" or an integer in the range 1-255.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"source\":{\"description\":\"Source contains the match criteria that apply to source entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"required\":[\"action\"],\"type\":\"object\"},\"type\":\"array\"},\"ingress\":{\"description\":\"The ordered set of ingress rules. Each rule contains a set of packet match criteria and a corresponding action to apply.\",\"items\":{\"description\":\"A Rule encapsulates a set of match criteria and an action. Both selector-based security Policy and security Profiles reference rules - separated out as a list of rules for both ingress and egress packet matching. \\n Each positive match criteria has a negated version, prefixed with \\\"Not\\\". All the match criteria within a rule must be satisfied for a packet to match. A single rule can contain the positive and negative version of a match and both must be satisfied for the rule to match.\",\"properties\":{\"action\":{\"type\":\"string\"},\"destination\":{\"description\":\"Destination contains the match criteria that apply to destination entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"},\"http\":{\"description\":\"HTTP contains match criteria that apply to HTTP requests.\",\"properties\":{\"methods\":{\"description\":\"Methods is an optional field that restricts the rule to apply only to HTTP requests that use one of the listed HTTP Methods (e.g. GET, PUT, etc.) Multiple methods are OR'd together.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"paths\":{\"description\":\"Paths is an optional field that restricts the rule to apply to HTTP requests that use one of the listed HTTP Paths. Multiple paths are OR'd together. e.g: - exact: /foo - prefix: /bar NOTE: Each entry may ONLY specify either a `exact` or a `prefix` match. The validator will check for it.\",\"items\":{\"description\":\"HTTPPath specifies an HTTP path to match. It may be either of the form: exact: \\u003cpath\\u003e: which matches the path exactly or prefix: \\u003cpath-prefix\\u003e: which matches the path prefix\",\"properties\":{\"exact\":{\"type\":\"string\"},\"prefix\":{\"type\":\"string\"}},\"type\":\"object\"},\"type\":\"array\"}},\"type\":\"object\"},\"icmp\":{\"description\":\"ICMP is an optional field that restricts the rule to apply to a specific type and code of ICMP traffic. This should only be specified if the Protocol field is set to \\\"ICMP\\\" or \\\"ICMPv6\\\".\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"ipVersion\":{\"description\":\"IPVersion is an optional field that restricts the rule to only match a specific IP version.\",\"type\":\"integer\"},\"metadata\":{\"description\":\"Metadata contains additional information for this rule\",\"properties\":{\"annotations\":{\"additionalProperties\":{\"type\":\"string\"},\"description\":\"Annotations is a set of key value pairs that give extra information about the rule\",\"type\":\"object\"}},\"type\":\"object\"},\"notICMP\":{\"description\":\"NotICMP is the negated version of the ICMP field.\",\"properties\":{\"code\":{\"description\":\"Match on a specific ICMP code. If specified, the Type value must also be specified. This is a technical limitation imposed by the kernel's iptables firewall, which Calico uses to enforce the rule.\",\"type\":\"integer\"},\"type\":{\"description\":\"Match on a specific ICMP type. For example a value of 8 refers to ICMP Echo Request (i.e. pings).\",\"type\":\"integer\"}},\"type\":\"object\"},\"notProtocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"NotProtocol is the negated version of the Protocol field.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"protocol\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"description\":\"Protocol is an optional field that restricts the rule to only apply to traffic of a specific IP protocol. Required if any of the EntityRules contain Ports (because ports only apply to certain protocols). \\n Must be one of these string values: \\\"TCP\\\", \\\"UDP\\\", \\\"ICMP\\\", \\\"ICMPv6\\\", \\\"SCTP\\\", \\\"UDPLite\\\" or an integer in the range 1-255.\",\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"source\":{\"description\":\"Source contains the match criteria that apply to source entity.\",\"properties\":{\"namespaceSelector\":{\"description\":\"NamespaceSelector is an optional field that contains a selector expression. Only traffic that originates from (or terminates at) endpoints within the selected namespaces will be matched. When both NamespaceSelector and another selector are defined on the same rule, then only workload endpoints that are matched by both selectors will be selected by the rule. \\n For NetworkPolicy, an empty NamespaceSelector implies that the Selector is limited to selecting only workload endpoints in the same namespace as the NetworkPolicy. \\n For NetworkPolicy, `global()` NamespaceSelector implies that the Selector is limited to selecting only GlobalNetworkSet or HostEndpoint. \\n For GlobalNetworkPolicy, an empty NamespaceSelector implies the Selector applies to workload endpoints across all namespaces.\",\"type\":\"string\"},\"nets\":{\"description\":\"Nets is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) IP addresses in any of the given subnets.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notNets\":{\"description\":\"NotNets is the negated version of the Nets field.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"notPorts\":{\"description\":\"NotPorts is the negated version of the Ports field. Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"notSelector\":{\"description\":\"NotSelector is the negated version of the Selector field. See Selector field for subtleties with negated selectors.\",\"type\":\"string\"},\"ports\":{\"description\":\"Ports is an optional field that restricts the rule to only apply to traffic that has a source (destination) port that matches one of these ranges/values. This value is a list of integers or strings that represent ranges of ports. \\n Since only some protocols have ports, if any ports are specified it requires the Protocol match in the Rule to be set to \\\"TCP\\\" or \\\"UDP\\\".\",\"items\":{\"anyOf\":[{\"type\":\"integer\"},{\"type\":\"string\"}],\"pattern\":\"^.*\",\"x-kubernetes-int-or-string\":true},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that contains a selector expression (see Policy for sample syntax). Only traffic that originates from (terminates at) endpoints matching the selector will be matched. \\n Note that: in addition to the negated version of the Selector (see NotSelector below), the selector expression syntax itself supports negation. The two types of negation are subtly different. One negates the set of matched endpoints, the other negates the whole match: \\n \\tSelector = \\\"!has(my_label)\\\" matches packets that are from other Calico-controlled \\tendpoints that do not have the label \\\"my_label\\\". \\n \\tNotSelector = \\\"has(my_label)\\\" matches packets that are not from Calico-controlled \\tendpoints that do have the label \\\"my_label\\\". \\n The effect is that the latter will accept packets from non-Calico sources whereas the former is limited to packets from Calico-controlled endpoints.\",\"type\":\"string\"},\"serviceAccounts\":{\"description\":\"ServiceAccounts is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a matching service account.\",\"properties\":{\"names\":{\"description\":\"Names is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account whose name is in the list.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"},\"selector\":{\"description\":\"Selector is an optional field that restricts the rule to only apply to traffic that originates from (or terminates at) a pod running as a service account that matches the given label selector. If both Names and Selector are specified then they are AND'ed.\",\"type\":\"string\"}},\"type\":\"object\"},\"services\":{\"description\":\"Services is an optional field that contains options for matching Kubernetes Services. If specified, only traffic that originates from or terminates at endpoints within the selected service(s) will be matched, and only to/from each endpoint's port. \\n Services cannot be specified on the same rule as Selector, NotSelector, NamespaceSelector, Nets, NotNets or ServiceAccounts. \\n Ports and NotPorts can only be specified with Services on ingress rules.\",\"properties\":{\"name\":{\"description\":\"Name specifies the name of a Kubernetes Service to match.\",\"type\":\"string\"},\"namespace\":{\"description\":\"Namespace specifies the namespace of the given Service. If left empty, the rule will match within this policy's namespace.\",\"type\":\"string\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"required\":[\"action\"],\"type\":\"object\"},\"type\":\"array\"},\"order\":{\"description\":\"Order is an optional field that specifies the order in which the policy is applied. Policies with higher \\\"order\\\" are applied after those with lower order. If the order is omitted, it may be considered to be \\\"infinite\\\" - i.e. the policy will be applied last. Policies with identical order will be applied in alphanumerical order based on the Policy \\\"Name\\\".\",\"type\":\"number\"},\"selector\":{\"description\":\"The selector is an expression used to pick pick out the endpoints that the policy should be applied to. \\n Selector expressions follow this syntax: \\n \\tlabel == \\\"string_literal\\\" -\\u003e comparison, e.g. my_label == \\\"foo bar\\\" \\tlabel != \\\"string_literal\\\" -\\u003e not equal; also matches if label is not present \\tlabel in { \\\"a\\\", \\\"b\\\", \\\"c\\\", ... } -\\u003e true if the value of label X is one of \\\"a\\\", \\\"b\\\", \\\"c\\\" \\tlabel not in { \\\"a\\\", \\\"b\\\", \\\"c\\\", ... } -\\u003e true if the value of label X is not one of \\\"a\\\", \\\"b\\\", \\\"c\\\" \\thas(label_name) -\\u003e True if that label is present \\t! expr -\\u003e negation of expr \\texpr \\u0026\\u0026 expr -\\u003e Short-circuit and \\texpr || expr -\\u003e Short-circuit or \\t( expr ) -\\u003e parens for grouping \\tall() or the empty selector -\\u003e matches all endpoints. \\n Label names are allowed to contain alphanumerics, -, _ and /. String literals are more permissive but they do not support escape characters. \\n Examples (with made-up labels): \\n \\ttype == \\\"webserver\\\" \\u0026\\u0026 deployment == \\\"prod\\\" \\ttype in {\\\"frontend\\\", \\\"backend\\\"} \\tdeployment != \\\"dev\\\" \\t! has(label_name)\",\"type\":\"string\"},\"serviceAccountSelector\":{\"description\":\"ServiceAccountSelector is an optional field for an expression used to select a pod based on service accounts.\",\"type\":\"string\"},\"types\":{\"description\":\"Types indicates whether this policy applies to ingress, or to egress, or to both. When not explicitly specified (and so the value on creation is empty or nil), Calico defaults Types according to what Ingress and Egress are present in the policy. The default is: \\n - [ PolicyTypeIngress ], if there are no Egress rules (including the case where there are also no Ingress rules) \\n - [ PolicyTypeEgress ], if there are Egress rules but no Ingress rules \\n - [ PolicyTypeIngress, PolicyTypeEgress ], if there are both Ingress and Egress rules. \\n When the policy is read back again, Types will always be one of these values, never empty or nil.\",\"items\":{\"description\":\"PolicyType enumerates the possible values of the PolicySpec Types field.\",\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "networkpolicies.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -8590,27 +7468,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "networkpolicies", "singular": "networkpolicy", @@ -8682,82 +7543,7 @@ }, "crd": { "metadata": { - "name": "networksets.crd.projectcalico.org", - "uid": "57d9ed43-273c-43c0-b50d-8d731ed3d07e", - "resourceVersion": "425", - "generation": 1, - "creationTimestamp": "2023-06-29T06:16:23Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"networksets.crd.projectcalico.org\"},\"spec\":{\"group\":\"crd.projectcalico.org\",\"names\":{\"kind\":\"NetworkSet\",\"listKind\":\"NetworkSetList\",\"plural\":\"networksets\",\"singular\":\"networkset\"},\"preserveUnknownFields\":false,\"scope\":\"Namespaced\",\"versions\":[{\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"NetworkSet is the Namespaced-equivalent of the GlobalNetworkSet.\",\"properties\":{\"apiVersion\":{\"description\":\"APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources\",\"type\":\"string\"},\"kind\":{\"description\":\"Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds\",\"type\":\"string\"},\"metadata\":{\"type\":\"object\"},\"spec\":{\"description\":\"NetworkSetSpec contains the specification for a NetworkSet resource.\",\"properties\":{\"nets\":{\"description\":\"The list of IP networks that belong to this set.\",\"items\":{\"type\":\"string\"},\"type\":\"array\"}},\"type\":\"object\"}},\"type\":\"object\"}},\"served\":true,\"storage\":true}]},\"status\":{\"acceptedNames\":{\"kind\":\"\",\"plural\":\"\"},\"conditions\":[],\"storedVersions\":[]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:23Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "networksets.crd.projectcalico.org" }, "spec": { "group": "crd.projectcalico.org", @@ -8807,27 +7593,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:23Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "networksets", "singular": "networkset", diff --git a/data/rabbitmq.json b/data/rabbitmq.json index 5b86dba..893444b 100644 --- a/data/rabbitmq.json +++ b/data/rabbitmq.json @@ -6394,99 +6394,7 @@ }, "crd": { "metadata": { - "name": "rabbitmqclusters.rabbitmq.com", - "uid": "60d30f58-8571-4689-a779-38984cc0ae62", - "resourceVersion": "127259325", - "generation": 2, - "creationTimestamp": "2024-01-18T17:34:17Z", - "labels": { - "app.kubernetes.io/component": "rabbitmq-operator", - "app.kubernetes.io/name": "rabbitmq-cluster-operator", - "app.kubernetes.io/part-of": "rabbitmq", - "servicebinding.io/provisioned-service": "true" - }, - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.13.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:18Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:25Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - }, - "f:labels": { - ".": {}, - "f:app.kubernetes.io/component": {}, - "f:app.kubernetes.io/name": {}, - "f:app.kubernetes.io/part-of": {}, - "f:servicebinding.io/provisioned-service": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "rabbitmqclusters.rabbitmq.com" }, "spec": { "group": "rabbitmq.com", @@ -13358,27 +13266,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:18Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "rabbitmqclusters", "singular": "rabbitmqcluster", diff --git a/data/redis.json b/data/redis.json index 6b7233f..1769190 100644 --- a/data/redis.json +++ b/data/redis.json @@ -3577,131 +3577,7 @@ }, "crd": { "metadata": { - "name": "redis.redis.redis.opstreelabs.in", - "uid": "e438be48-8ef9-4bdb-a7cb-cc2c1e0cf500", - "resourceVersion": "144830211", - "generation": 8, - "creationTimestamp": "2023-06-29T06:18:07Z", - "annotations": { - "cert-manager.io/inject-ca-from": "vynil-dbo/redis-cert", - "controller-gen.kubebuilder.io/version": "v0.4.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": {}, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {} - } - } - }, - { - "manager": "kubectl-replace", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-11T16:21:05Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - "f:cert-manager.io/inject-ca-from": {} - } - }, - "f:spec": { - "f:conversion": { - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:path": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:versions": {} - } - } - }, - { - "manager": "cert-manager-cainjector", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T11:59:53Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {} - } - } - } - } - } - } - ] + "name": "redis.redis.redis.opstreelabs.in" }, "spec": { "group": "redis.redis.opstreelabs.in", @@ -10698,42 +10574,10 @@ } } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "vynil-dbo", - "name": "webhook-service", - "path": "/convert", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1beta2" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "redis", "singular": "redis", @@ -15605,131 +15449,7 @@ }, "crd": { "metadata": { - "name": "redisclusters.redis.redis.opstreelabs.in", - "uid": "5e7a1ff4-df27-4d5a-8792-e5eac7ab2c1c", - "resourceVersion": "144830197", - "generation": 8, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "cert-manager.io/inject-ca-from": "vynil-dbo/redis-cert", - "controller-gen.kubebuilder.io/version": "v0.4.1" - }, - "managedFields": [ - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": {}, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {} - } - } - }, - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:09Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-replace", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-11T16:21:05Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - "f:cert-manager.io/inject-ca-from": {} - } - }, - "f:spec": { - "f:conversion": { - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:path": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:versions": {} - } - } - }, - { - "manager": "cert-manager-cainjector", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T11:59:53Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {} - } - } - } - } - } - } - ] + "name": "redisclusters.redis.redis.opstreelabs.in" }, "spec": { "group": "redis.redis.opstreelabs.in", @@ -25095,42 +24815,10 @@ ] } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "vynil-dbo", - "name": "webhook-service", - "path": "/convert", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1beta2" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:09Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "redisclusters", "singular": "rediscluster", @@ -28787,131 +28475,7 @@ }, "crd": { "metadata": { - "name": "redisreplications.redis.redis.opstreelabs.in", - "uid": "459c01a4-544e-43b1-a97f-37188d26d90e", - "resourceVersion": "144830240", - "generation": 8, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "cert-manager.io/inject-ca-from": "vynil-dbo/redis-cert", - "controller-gen.kubebuilder.io/version": "v0.4.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": {}, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {} - } - } - }, - { - "manager": "kubectl-replace", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-11T16:21:05Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - "f:cert-manager.io/inject-ca-from": {} - } - }, - "f:spec": { - "f:conversion": { - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:path": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:versions": {} - } - } - }, - { - "manager": "cert-manager-cainjector", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T11:59:54Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {} - } - } - } - } - } - } - ] + "name": "redisreplications.redis.redis.opstreelabs.in" }, "spec": { "group": "redis.redis.opstreelabs.in", @@ -35916,42 +35480,10 @@ } } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "vynil-dbo", - "name": "webhook-service", - "path": "/convert", - "port": 443 - }, - "caBundle": "LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSURCVENDQWUyZ0F3SUJBZ0lSQUlmbDUwWHZWWm44Y21tWURSUDBRWVF3RFFZSktvWklodmNOQVFFTEJRQXcKQURBZUZ3MHlOREF5TWpReE5qTXlOVFJhRncweU5EQTFNalF4TmpNeU5UUmFNQUF3Z2dFaU1BMEdDU3FHU0liMwpEUUVCQVFVQUE0SUJEd0F3Z2dFS0FvSUJBUURSdEVwT24yd3JidSs5VHZWcThzSW5ETGc2OUJ0MkthVWVHV0hqCms2YU42ZGY3UFFlYXk1QU9YREhHN05BdUpOOTZWRGs4KzZYcjRvZThyK1c0Uy81bmJQd08rK3ZvaHk0R0RFL2YKQUtRK0o1MDlLMWNNUG9sVWJhTUNGZE5ZNFAwcURiajVjMUJHOE0zSjRuVmNNUko3emxoYWV2UWpzc3FhYkRyMgpUVFdvcjQweVVVMldrNEJJNWVLQk03cmFnTXBkZUQxSDhxQkl0WDB6WXJ6bE0rUVVaRlBCL3FORkxYZHY2ZU5aCjYrUExSNHc0NWdxVFhOZ1BGNS9vNk1MbHdxOTdQUnRCbDZNM0hmSzhqNGNMRjJZYzlKWjcrWXRiczFLTFpDVlkKcE43T0dSVU81dmdpQ3JQU3NXVUxIdU12SjZidWpkczFzQmZTNG5ZUk5iMWExUTl4QWdNQkFBR2plakI0TUE0RwpBMVVkRHdFQi93UUVBd0lGb0RBTUJnTlZIUk1CQWY4RUFqQUFNRmdHQTFVZEVRRUIvd1JPTUV5Q0hYZGxZbWh2CmIyc3RjMlZ5ZG1salpTNTJlVzVwYkMxa1ltOHVjM1pqZ2l0M1pXSm9iMjlyTFhObGNuWnBZMlV1ZG5sdWFXd3QKWkdKdkxuTjJZeTVqYkhWemRHVnlMbXh2WTJGc01BMEdDU3FHU0liM0RRRUJDd1VBQTRJQkFRQTJsdHJSSG04UgpoWkRWeWQvVTN1Rm9jc1RkWUo5WU1HUk1NQytSYnpiMHo5dXZMNklDWGZOOUVxck82WjdHYnZrOEtGOXJaRWRiClZVMDd2cjlZMVhDWmRvTUxyTmM1eGVERmR3eFFUUTJ2U1Frd2tKdGlkYmV1UFpNOTNVMFpGM2RXNU1HNFl0eFkKd2VQL3RNN1JwMUwwZDlqbXpnWVJUcWdEQW8zdVNCQ2pmNFN3THFnbWVGWUVwam5QU1dhODFqRnZ4Ymp0bHZTZwp0cExTc2M1SjdBYkc0N1ZxRGl5WEF0b040Y0ZPbDdpQTMvUFRzNVFVdVRiRExkMGpaU0RFU3FSaHpwbTQwcE5BCnE5QWZKSGhMN1cyS0g5ZXJzSUJ1TW5vQTF1S2k2OTNlSHVyS08wTGJiVENWcFloNjBJUGM3YUNNZnJCeUVwK1AKTkd1a1NkcWlZbUlyCi0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1beta2" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "redisreplications", "singular": "redisreplication", @@ -37981,131 +37513,7 @@ }, "crd": { "metadata": { - "name": "redissentinels.redis.redis.opstreelabs.in", - "uid": "6a9dc72e-3e37-464d-b89c-20dedff63cda", - "resourceVersion": "144830273", - "generation": 8, - "creationTimestamp": "2023-06-29T06:18:08Z", - "annotations": { - "cert-manager.io/inject-ca-from": "vynil-dbo/redis-cert", - "controller-gen.kubebuilder.io/version": "v0.4.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": {}, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {} - } - } - }, - { - "manager": "kubectl-replace", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-11T16:21:06Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - "f:cert-manager.io/inject-ca-from": {} - } - }, - "f:spec": { - "f:conversion": { - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:path": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:versions": {} - } - } - }, - { - "manager": "cert-manager-cainjector", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-19T11:59:54Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {} - } - } - } - } - } - } - ] + "name": "redissentinels.redis.redis.opstreelabs.in" }, "spec": { "group": "redis.redis.opstreelabs.in", @@ -41665,42 +41073,10 @@ } } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "vynil-dbo", - "name": "webhook-service", - "path": "/convert", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1beta2" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "redissentinels", "singular": "redissentinel", diff --git a/data/secretgenerator.json b/data/secretgenerator.json index d8f00a7..4b2027d 100644 --- a/data/secretgenerator.json +++ b/data/secretgenerator.json @@ -94,73 +94,7 @@ }, "crd": { "metadata": { - "name": "basicauths.secretgenerator.mittwald.de", - "uid": "f0c1f217-29a4-42ed-846f-17c613c6100c", - "resourceVersion": "127259538", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:07Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "basicauths.secretgenerator.mittwald.de" }, "spec": { "group": "secretgenerator.mittwald.de", @@ -267,27 +201,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:07Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "basicauths", "singular": "basicauth", @@ -412,73 +329,7 @@ }, "crd": { "metadata": { - "name": "sshkeypairs.secretgenerator.mittwald.de", - "uid": "535bcc01-0748-41d4-a076-9e2a5d8b84a7", - "resourceVersion": "127259553", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:08Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "sshkeypairs.secretgenerator.mittwald.de" }, "spec": { "group": "secretgenerator.mittwald.de", @@ -582,27 +433,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "sshkeypairs", "singular": "sshkeypair", @@ -741,73 +575,7 @@ }, "crd": { "metadata": { - "name": "stringsecrets.secretgenerator.mittwald.de", - "uid": "91597813-0b03-46bf-a0a8-9e0e4512bf99", - "resourceVersion": "127259556", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:08Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:08Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "stringsecrets.secretgenerator.mittwald.de" }, "spec": { "group": "secretgenerator.mittwald.de", @@ -925,27 +693,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:08Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "stringsecrets", "singular": "stringsecret", diff --git a/data/tekton.json b/data/tekton.json index b3c18ab..53862ec 100644 --- a/data/tekton.json +++ b/data/tekton.json @@ -242,250 +242,614 @@ } }, "pipelineSpec": { - "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", - "$ref": "#/definitions/v1.PipelineSpec" - }, - "retries": { - "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", - "type": "integer", - "format": "int32" - }, - "runAfter": { - "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "taskRef": { - "description": "TaskRef can be used to refer to a specific instance of a task.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", - "type": "string" - }, - "kind": { - "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", - "type": "string" - }, - "name": { - "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", - "type": "string" - } - } - }, - "taskSpec": { - "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "description": "PipelineSpec defines the desired state of Pipeline.", "type": "object", "properties": { - "apiVersion": { - "type": "string" - }, "description": { - "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", "type": "string" }, "displayName": { - "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", "type": "string" }, - "kind": { - "type": "string" - }, - "metadata": { - "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", - "type": "object", - "properties": { - "annotations": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "labels": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - } - } - }, - "params": { - "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", "type": "array", "items": { - "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", "type": "object", - "required": [ - "name" - ], "properties": { - "default": { - "description": "ResultValue is a type alias of ParamValue", + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", "type": "array", "items": { - "type": "string", - "default": "" + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" } } }, - "description": { - "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", - "type": "string" - }, - "enum": { - "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", - "type": "array", - "items": { - "type": "string", - "default": "" - } - }, "name": { - "description": "Name declares the name by which a parameter is referenced.", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "results": { - "description": "Results are values that this Task can output", - "type": "array", - "items": { - "description": "TaskResult used to describe the results of a task", - "type": "object", - "required": [ - "name" - ], - "properties": { - "description": { - "description": "Description is a human-readable description of the result", + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", "type": "string" }, - "name": { - "description": "Name the given name", - "type": "string", - "default": "" + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } } }, - "type": { - "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", - "type": "string" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", "type": "array", "items": { - "type": "string", - "default": "" + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "Type": { - "type": "string", - "default": "" + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" } } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "sidecars": { - "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", - "type": "array", - "items": { - "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", "type": "array", "items": { "type": "string", @@ -493,346 +857,496 @@ }, "x-kubernetes-list-type": "atomic" }, - "computeResources": { - "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Sidecar. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "lifecycle": { - "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", - "$ref": "#/definitions/v1.Lifecycle" - }, - "livenessProbe": { - "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "name": { - "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", - "type": "string", - "default": "" - }, - "ports": { - "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.ContainerPort" - }, - "x-kubernetes-list-map-keys": [ - "containerPort", - "protocol" - ], - "x-kubernetes-list-type": "map", - "x-kubernetes-patch-merge-key": "containerPort", - "x-kubernetes-patch-strategy": "merge" - }, - "readinessProbe": { - "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } }, - "startupProbe": { - "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "stdin": { - "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", - "type": "boolean" - }, - "stdinOnce": { - "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", - "type": "boolean" - }, - "terminationMessagePath": { - "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", - "type": "string" - }, - "terminationMessagePolicy": { - "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", - "type": "string" - }, - "tty": { - "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", - "type": "boolean" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Sidecar.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - }, - "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", - "type": "array", - "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", - "type": "object", - "required": [ - "name", - "mountPath" - ], - "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } }, - "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", - "type": "string", - "default": "" + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "spec": { - "description": "Spec is a specification of a custom task", - "default": {}, - "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" - }, - "stepTemplate": { - "description": "StepTemplate is a template for a Step", - "type": "object", - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - } - } - }, - "steps": { - "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", - "type": "array", - "items": { - "description": "Step runs a subcomponent of a Task", - "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "name": { - "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", - "type": "string", - "default": "" - }, - "onError": { - "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", - "type": "string" - }, - "params": { - "description": "Params declares parameters passed to this step action.", - "type": "array", - "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "type": "string", - "default": "" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", "type": "object", "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" + "name" ], "properties": { - "ArrayVal": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", "type": "array", "items": { "type": "string", @@ -840,151 +1354,347 @@ }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { "type": "string", "default": "" - } + }, + "x-kubernetes-list-type": "atomic" }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", "type": "string", "default": "" }, - "Type": { + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", "type": "string", "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" } } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "ref": { - "description": "Ref can be used to refer to a specific instance of a StepAction.", - "type": "object", - "properties": { - "name": { - "description": "Name of the referenced step", - "type": "string" + }, + "x-kubernetes-list-type": "atomic" } } }, - "results": { - "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", "type": "array", "items": { - "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", "type": "object", - "required": [ - "name" - ], "properties": { - "description": { - "description": "Description is a human-readable description of the result", + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", "type": "string" }, - "name": { - "description": "Name the given name", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" }, - "type": { - "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "operator": { + "description": "Operator that represents an Input's relationship to the values", "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" } } - }, - "x-kubernetes-list-type": "atomic" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "stderrConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } - } - }, - "stdoutConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } } }, - "timeout": { - "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", - "$ref": "#/definitions/v1.Duration" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - }, "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", "type": "array", "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", "type": "object", "required": [ - "name", - "mountPath" + "name" ], "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" - }, "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "description": "Name is the name of the workspace as declared by the task", "type": "string", "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" } } }, @@ -994,329 +1704,341 @@ }, "x-kubernetes-list-type": "atomic" }, - "volumes": { - "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", "type": "array", "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } }, "x-kubernetes-list-type": "atomic" }, - "workspaces": { - "description": "Workspaces are the volumes that this Task requires.", + "results": { + "description": "Results are values that this pipeline can output once run", "type": "array", "items": { - "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "description": "PipelineResult used to describe the results of a pipeline", "type": "object", "required": [ - "name" + "name", + "value" ], "properties": { "description": { - "description": "Description is an optional human readable description of this volume.", - "type": "string" - }, - "mountPath": { - "description": "MountPath overrides the directory that the volume will be made available at.", - "type": "string" + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" }, "name": { - "description": "Name is the name by which you can bind the volume at runtime.", + "description": "Name the given name", "type": "string", "default": "" }, - "optional": { - "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", - "type": "boolean" + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" }, - "readOnly": { - "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", - "type": "boolean" + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } } } }, "x-kubernetes-list-type": "atomic" - } - } - }, - "timeout": { - "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", - "$ref": "#/definitions/v1.Duration" - }, - "when": { - "description": "When is a list of when expressions that need to be true for the task to run", - "type": "array", - "items": { - "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", - "type": "object", - "properties": { - "cel": { - "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", - "type": "string" - }, - "input": { - "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", - "type": "string" - }, - "operator": { - "description": "Operator that represents an Input's relationship to the values", - "type": "string" - }, - "values": { - "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - } - } - } - }, - "workspaces": { - "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", - "type": "array", - "items": { - "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "name": { - "description": "Name is the name of the workspace as declared by the task", - "type": "string", - "default": "" - }, - "subPath": { - "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", - "type": "string" - }, - "workspace": { - "description": "Workspace is the name of the workspace declared by the pipeline", - "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "params": { - "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", - "type": "array", - "items": { - "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "default": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" - } - } - }, - "description": { - "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", - "type": "string" - }, - "enum": { - "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", - "type": "array", - "items": { - "type": "string", - "default": "" - } - }, - "name": { - "description": "Name declares the name by which a parameter is referenced.", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", - "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "results": { - "description": "Results are values that this pipeline can output once run", - "type": "array", - "items": { - "description": "PipelineResult used to describe the results of a pipeline", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "description": { - "description": "Description is a human-readable description of the result", - "type": "string", - "default": "" - }, - "name": { - "description": "Name the given name", - "type": "string", - "default": "" - }, - "type": { - "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", - "type": "string" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" }, - "Type": { - "type": "string", - "default": "" - } - } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "tasks": { - "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", - "type": "array", - "items": { - "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", - "type": "object", - "properties": { - "description": { - "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", - "type": "string" - }, - "displayName": { - "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", - "type": "string" - }, - "matrix": { - "description": "Matrix is used to fan out Tasks in a Pipeline", - "type": "object", - "properties": { - "include": { - "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", "type": "array", "items": { - "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", "type": "object", "properties": { - "name": { - "description": "Name the specified combination", + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", "type": "string" }, - "params": { - "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", - "type": "array", - "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "type": "string", - "default": "" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", "type": "array", "items": { - "type": "string", - "default": "" + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } }, "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", "default": "" } }, @@ -1334,102 +2056,395 @@ } }, "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "params": { - "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", - "type": "array", - "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "type": "string", - "default": "" }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", "type": "array", "items": { - "type": "string", - "default": "" + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "Type": { - "type": "string", - "default": "" + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" } } - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "name": { - "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", - "type": "string" - }, - "onError": { - "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", - "type": "string" - }, - "params": { - "description": "Parameters declares parameters passed to this task.", - "type": "array", - "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "type": "string", - "default": "" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", "type": "array", "items": { "type": "string", @@ -1437,226 +2452,1062 @@ }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", "type": "object", - "additionalProperties": { - "type": "string", - "default": "" + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } } }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" - } - } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "pipelineRef": { - "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent", - "type": "string" - }, - "name": { - "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", - "type": "string" - } - } - }, - "pipelineSpec": { - "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", - "$ref": "#/definitions/v1.PipelineSpec" - }, - "retries": { - "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", - "type": "integer", - "format": "int32" - }, - "runAfter": { - "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "taskRef": { - "description": "TaskRef can be used to refer to a specific instance of a task.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", - "type": "string" - }, - "kind": { - "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", - "type": "string" - }, - "name": { - "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", - "type": "string" - } - } - }, - "taskSpec": { - "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", - "type": "object", - "properties": { - "apiVersion": { - "type": "string" - }, - "description": { - "description": "Description is a user-facing description of the task that may be used to populate a UI.", - "type": "string" - }, - "displayName": { - "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", - "type": "string" - }, - "kind": { - "type": "string" - }, - "metadata": { - "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", - "type": "object", - "properties": { - "annotations": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "labels": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - } - } - }, - "params": { - "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", - "type": "array", - "items": { - "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "default": { - "description": "ResultValue is a type alias of ParamValue", + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", "type": "array", "items": { - "type": "string", - "default": "" + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "Type": { - "type": "string", - "default": "" - } - } + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } }, - "description": { - "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", - "type": "string" + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" }, - "enum": { - "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", "type": "array", "items": { - "type": "string", - "default": "" - } - }, - "name": { - "description": "Name declares the name by which a parameter is referenced.", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } } }, - "type": { - "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", - "type": "string" + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" } } }, "x-kubernetes-list-type": "atomic" }, - "results": { - "description": "Results are values that this Task can output", + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", "type": "array", "items": { - "description": "TaskResult used to describe the results of a task", + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", "type": "object", "required": [ "name" ], "properties": { "description": { - "description": "Description is a human-readable description of the result", + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", "type": "string" }, "name": { - "description": "Name the given name", + "description": "Name is the name of a workspace to be provided by a PipelineRun.", "type": "string", "default": "" }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", - "type": "string" - }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, "value": { "description": "ResultValue is a type alias of ParamValue", "type": "object", @@ -2338,310 +4189,110 @@ }, "x-kubernetes-list-type": "atomic" }, - "workspaces": { - "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", "type": "array", "items": { - "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", "type": "object", "required": [ "name" ], "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, "description": { - "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", "type": "string" }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, "name": { - "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "description": "Name declares the name by which a parameter is referenced.", "type": "string", "default": "" }, - "optional": { - "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", - "type": "boolean" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "status": { - "type": "object" - } - }, - "type": "object", - "x-kubernetes-group-version-kind": [ - { - "group": "tekton.dev", - "kind": "Pipeline", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "pipelines.tekton.dev", - "uid": "db4013e9-1ad0-4b2b-ac67-8200157c3784", - "resourceVersion": "149693905", - "generation": 3, - "creationTimestamp": "2024-03-20T05:58:12Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:12Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:12Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "webhook", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-25T16:45:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {}, - "f:service": { - "f:path": {} - } + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" } } - } - } - } - ] - }, - "spec": { - "group": "tekton.dev", - "names": { - "plural": "pipelines", - "singular": "pipeline", - "kind": "Pipeline", - "listKind": "PipelineList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "scope": "Namespaced", - "versions": [ - { - "name": "v1beta1", - "served": true, - "storage": false, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - } - }, - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - } - } - ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "path": "/resource-conversion", - "port": 443 }, - "caBundle": "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" + "x-kubernetes-list-type": "atomic" }, - "conversionReviewVersions": [ - "v1beta1", - "v1" - ] - } - } - }, - "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:12Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:12Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], - "acceptedNames": { - "plural": "pipelines", - "singular": "pipeline", - "kind": "Pipeline", - "listKind": "PipelineList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "storedVersions": [ - "v1" - ] - } - }, - "short": "Pipeline", - "apiGroup": "tekton.dev", - "apiKind": "Pipeline", - "apiVersion": "v1", - "readProperties": { - "spec": "spec", - "status": "status" - }, - "writeProperties": { - "spec": "spec" - }, - "group": "tekton", - "sub": "tekton", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" - }, - "namespaced": true - }, - { - "alternatives": [], - "name": "dev.tekton.v1.PipelineRun", - "definition": { - "properties": { - "spec": { - "description": "PipelineRunSpec defines the desired state of PipelineRun", - "type": "object", - "properties": { - "params": { - "description": "Params is a list of parameter names and values.", + "results": { + "description": "Results are values that this pipeline can output once run", "type": "array", "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", + "description": "PipelineResult used to describe the results of a pipeline", "type": "object", "required": [ "name", "value" ], "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, "name": { + "description": "Name the given name", "type": "string", "default": "" }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, "value": { "description": "ResultValue is a type alias of ParamValue", "type": "object", @@ -2682,1126 +4333,20697 @@ }, "x-kubernetes-list-type": "atomic" }, - "pipelineRef": { - "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent", - "type": "string" - }, - "name": { - "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", - "type": "string" - } - } - }, - "pipelineSpec": { - "$ref": "#/definitions/v1.PipelineSpec" - }, - "status": { - "description": "Used for cancelling a pipelinerun (and maybe more later on)", - "type": "string" - }, - "taskRunSpecs": { - "description": "TaskRunSpecs holds a set of runtime specs", + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", "type": "array", "items": { - "description": "PipelineTaskRunSpec can be used to configure specific specs for a concrete Task", + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", "type": "object", "properties": { - "computeResources": { - "description": "Compute resources to use for this TaskRun", - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "metadata": { - "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", - "type": "object", - "properties": { - "annotations": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "labels": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - } - } + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" }, - "pipelineTaskName": { + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", "type": "string" }, - "podTemplate": { - "description": "Template holds pod specific configuration", + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", "type": "object", "properties": { - "affinity": { - "description": "If specified, the pod's scheduling constraints", - "$ref": "#/definitions/v1.Affinity" - }, - "automountServiceAccountToken": { - "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", - "type": "boolean" - }, - "dnsConfig": { - "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", - "$ref": "#/definitions/v1.PodDNSConfig" - }, - "dnsPolicy": { - "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", - "type": "string" - }, - "enableServiceLinks": { - "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", - "type": "boolean" - }, - "env": { - "description": "List of environment variables that can be provided to the containers belonging to the pod.", + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", "type": "array", "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "hostAliases": { - "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.HostAlias" - }, - "x-kubernetes-list-type": "atomic" - }, - "hostNetwork": { - "description": "HostNetwork specifies whether the pod may use the node network namespace", - "type": "boolean" - }, - "imagePullSecrets": { - "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.LocalObjectReference" - }, - "x-kubernetes-list-type": "atomic" - }, - "nodeSelector": { - "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "priorityClassName": { - "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", - "type": "string" - }, - "runtimeClassName": { - "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", - "type": "string" - }, - "schedulerName": { - "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", - "$ref": "#/definitions/v1.PodSecurityContext" - }, - "tolerations": { - "description": "If specified, the pod's tolerations.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Toleration" + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } }, "x-kubernetes-list-type": "atomic" }, - "topologySpreadConstraints": { - "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", "type": "array", "items": { - "default": {}, - "$ref": "#/definitions/v1.TopologySpreadConstraint" + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } }, "x-kubernetes-list-type": "atomic" - }, - "volumes": { - "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge,retainKeys" } } }, - "serviceAccountName": { + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", "type": "string" }, - "sidecarSpecs": { + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", "type": "array", "items": { - "description": "TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.", + "description": "Param declares an ParamValues to use for the parameter called name.", "type": "object", "required": [ "name", - "computeResources" + "value" ], "properties": { - "computeResources": { - "description": "The resource requirements to apply to the Sidecar.", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, "name": { - "description": "The name of the Sidecar to override.", "type": "string", "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } } } }, "x-kubernetes-list-type": "atomic" }, - "stepSpecs": { - "type": "array", - "items": { - "description": "TaskRunStepSpec is used to override the values of a Step in the corresponding Task.", - "type": "object", - "required": [ - "name", - "computeResources" - ], - "properties": { - "computeResources": { - "description": "The resource requirements to apply to the Step.", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "name": { - "description": "The name of the Step to override.", - "type": "string", - "default": "" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "taskRunTemplate": { - "description": "PipelineTaskRunTemplate is used to specify run specifications for all Task in pipelinerun.", - "type": "object", - "properties": { - "podTemplate": { - "description": "Template holds pod specific configuration", - "type": "object", - "properties": { - "affinity": { - "description": "If specified, the pod's scheduling constraints", - "$ref": "#/definitions/v1.Affinity" - }, - "automountServiceAccountToken": { - "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", - "type": "boolean" - }, - "dnsConfig": { - "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", - "$ref": "#/definitions/v1.PodDNSConfig" - }, - "dnsPolicy": { - "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", - "type": "string" - }, - "enableServiceLinks": { - "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", - "type": "boolean" - }, - "env": { - "description": "List of environment variables that can be provided to the containers belonging to the pod.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "hostAliases": { - "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.HostAlias" - }, - "x-kubernetes-list-type": "atomic" - }, - "hostNetwork": { - "description": "HostNetwork specifies whether the pod may use the node network namespace", - "type": "boolean" - }, - "imagePullSecrets": { - "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.LocalObjectReference" + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" }, - "x-kubernetes-list-type": "atomic" - }, - "nodeSelector": { - "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" } - }, - "priorityClassName": { - "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", - "type": "string" - }, - "runtimeClassName": { - "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", - "type": "string" - }, - "schedulerName": { - "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", - "$ref": "#/definitions/v1.PodSecurityContext" - }, - "tolerations": { - "description": "If specified, the pod's tolerations.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Toleration" - }, - "x-kubernetes-list-type": "atomic" - }, - "topologySpreadConstraints": { - "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.TopologySpreadConstraint" - }, - "x-kubernetes-list-type": "atomic" - }, - "volumes": { - "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge,retainKeys" } - } - }, - "serviceAccountName": { - "type": "string" - } - } - }, - "timeouts": { - "description": "TimeoutFields allows granular specification of pipeline, task, and finally timeouts", - "type": "object", - "properties": { - "finally": { - "description": "Finally sets the maximum allowed duration of this pipeline's finally", - "$ref": "#/definitions/v1.Duration" - }, - "pipeline": { - "description": "Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.", - "$ref": "#/definitions/v1.Duration" - }, - "tasks": { - "description": "Tasks sets the maximum allowed duration of this pipeline's tasks", - "$ref": "#/definitions/v1.Duration" - } - } - }, - "workspaces": { - "description": "Workspaces holds a set of workspace bindings that must match names with those declared in the pipeline.", - "type": "array", - "items": { - "description": "WorkspaceBinding maps a Task's declared workspace to a Volume.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "configMap": { - "description": "ConfigMap represents a configMap that should populate this workspace.", - "$ref": "#/definitions/v1.ConfigMapVolumeSource" - }, - "csi": { - "description": "CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.", - "$ref": "#/definitions/v1.CSIVolumeSource" - }, - "emptyDir": { - "description": "EmptyDir represents a temporary directory that shares a Task's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir Either this OR PersistentVolumeClaim can be used.", - "$ref": "#/definitions/v1.EmptyDirVolumeSource" - }, - "name": { - "description": "Name is the name of the workspace populated by the volume.", - "type": "string", - "default": "" - }, - "persistentVolumeClaim": { - "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.", - "$ref": "#/definitions/v1.PersistentVolumeClaimVolumeSource" - }, - "projected": { - "description": "Projected represents a projected volume that should populate this workspace.", - "$ref": "#/definitions/v1.ProjectedVolumeSource" - }, - "secret": { - "description": "Secret represents a secret that should populate this workspace.", - "$ref": "#/definitions/v1.SecretVolumeSource" - }, - "subPath": { - "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", - "type": "string" - }, - "volumeClaimTemplate": { - "description": "VolumeClaimTemplate is a template for a claim that will be created in the same namespace. The PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.", - "$ref": "#/definitions/v1.PersistentVolumeClaim" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "status": { - "description": "PipelineRunStatus defines the observed state of PipelineRun", - "type": "object", - "properties": { - "annotations": { - "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "childReferences": { - "description": "list of TaskRun and Run names, PipelineTask names, and API versions/kinds for children of this PipelineRun.", - "type": "array", - "items": { - "description": "ChildStatusReference is used to point to the statuses of individual TaskRuns and Runs within this PipelineRun.", - "type": "object", - "properties": { - "apiVersion": { - "type": "string" - }, - "kind": { - "type": "string" - }, - "name": { - "description": "Name is the name of the TaskRun or Run this is referencing.", - "type": "string" }, - "pipelineTaskName": { - "description": "PipelineTaskName is the name of the PipelineTask this is referencing.", - "type": "string" - }, - "whenExpressions": { - "description": "WhenExpressions is the list of checks guarding the execution of the PipelineTask", - "type": "array", - "items": { - "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", - "type": "object", - "properties": { - "cel": { - "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", - "type": "string" - }, - "input": { - "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", - "type": "string" - }, - "operator": { - "description": "Operator that represents an Input's relationship to the values", - "type": "string" - }, - "values": { - "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "completionTime": { - "description": "CompletionTime is the time the PipelineRun completed.", - "$ref": "#/definitions/v1.Time" - }, - "conditions": { - "description": "Conditions the latest available observations of a resource's current state.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/knative.Condition" - }, - "x-kubernetes-patch-merge-key": "type", - "x-kubernetes-patch-strategy": "merge" - }, - "finallyStartTime": { - "description": "FinallyStartTime is when all non-finally tasks have been completed and only finally tasks are being executed.", - "$ref": "#/definitions/v1.Time" - }, - "observedGeneration": { - "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", - "type": "integer", - "format": "int64" - }, - "pipelineSpec": { - "description": "PipelineRunSpec contains the exact spec used to instantiate the run", - "$ref": "#/definitions/v1.PipelineSpec" - }, - "provenance": { - "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", - "type": "object", - "properties": { - "featureFlags": { - "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", - "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" - }, - "refSource": { - "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", - "type": "object", - "properties": { - "digest": { - "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "entryPoint": { - "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", - "type": "string" - }, - "uri": { - "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", - "type": "string" - } - } - } - } - }, - "results": { - "description": "Results are the list of results written out by the pipeline task's containers", - "type": "array", - "items": { - "description": "PipelineRunResult used to describe the results of a pipeline", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "description": "Name is the result's name as declared by the Pipeline", - "type": "string", - "default": "" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" }, - "Type": { - "type": "string", - "default": "" - } - } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "skippedTasks": { - "description": "list of tasks that were skipped due to when expressions evaluating to false", - "type": "array", - "items": { - "description": "SkippedTask is used to describe the Tasks that were skipped due to their When Expressions evaluating to False. This is a struct because we are looking into including more details about the When Expressions that caused this Task to be skipped.", - "type": "object", - "required": [ - "name", - "reason" - ], - "properties": { - "name": { - "description": "Name is the Pipeline Task name", - "type": "string", - "default": "" - }, - "reason": { - "description": "Reason is the cause of the PipelineTask being skipped.", - "type": "string", - "default": "" - }, - "whenExpressions": { - "description": "WhenExpressions is the list of checks guarding the execution of the PipelineTask", - "type": "array", - "items": { - "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", - "type": "object", - "properties": { - "cel": { - "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", - "type": "string" - }, - "input": { - "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", - "type": "string" - }, - "operator": { - "description": "Operator that represents an Input's relationship to the values", - "type": "string" - }, - "values": { - "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "spanContext": { - "description": "SpanContext contains tracing span context fields", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "startTime": { - "description": "StartTime is the time the PipelineRun is actually started.", - "$ref": "#/definitions/v1.Time" - } - } - } - }, - "type": "object", - "x-kubernetes-group-version-kind": [ - { - "group": "tekton.dev", - "kind": "PipelineRun", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "pipelineruns.tekton.dev", - "uid": "dff42737-6373-4f2c-8479-318d28a7a2d3", - "resourceVersion": "149693902", - "generation": 3, - "creationTimestamp": "2024-03-20T05:58:11Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "webhook", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-25T16:45:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {}, - "f:service": { - "f:path": {} - } - } - } - } - } - } - } - ] - }, - "spec": { - "group": "tekton.dev", - "names": { - "plural": "pipelineruns", - "singular": "pipelinerun", - "shortNames": [ - "pr", - "prs" - ], - "kind": "PipelineRun", - "listKind": "PipelineRunList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "scope": "Namespaced", - "versions": [ - { - "name": "v1beta1", - "served": true, - "storage": false, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "Succeeded", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" - }, - { - "name": "Reason", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" - }, - { - "name": "StartTime", - "type": "date", - "jsonPath": ".status.startTime" - }, - { - "name": "CompletionTime", - "type": "date", - "jsonPath": ".status.completionTime" - } - ] - }, - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - }, - "additionalPrinterColumns": [ - { - "name": "Succeeded", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" - }, - { - "name": "Reason", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" - }, - { - "name": "StartTime", - "type": "date", - "jsonPath": ".status.startTime" - }, - { - "name": "CompletionTime", - "type": "date", - "jsonPath": ".status.completionTime" - } - ] - } - ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "path": "/resource-conversion", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1" - ] - } - } - }, - "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], - "acceptedNames": { - "plural": "pipelineruns", - "singular": "pipelinerun", - "shortNames": [ - "pr", - "prs" - ], - "kind": "PipelineRun", - "listKind": "PipelineRunList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "storedVersions": [ - "v1" - ] - } - }, - "additionalColumns": [ - { - "name": "Succeeded", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" - }, - { - "name": "Reason", - "type": "string", - "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" - }, - { - "name": "StartTime", - "type": "date", - "jsonPath": ".status.startTime" - }, - { - "name": "CompletionTime", - "type": "date", - "jsonPath": ".status.completionTime" - } - ], - "short": "PipelineRun", - "apiGroup": "tekton.dev", - "apiKind": "PipelineRun", - "apiVersion": "v1", - "readProperties": { - "spec": "spec", - "status": "status" - }, - "writeProperties": { - "spec": "spec" - }, - "group": "tekton", - "sub": "tekton", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" - }, - "namespaced": true - }, - { - "alternatives": [], - "name": "dev.tekton.v1.Task", - "definition": { - "properties": { - "spec": { - "description": "TaskSpec defines the desired state of Task.", - "type": "object", - "properties": { - "description": { - "description": "Description is a user-facing description of the task that may be used to populate a UI.", - "type": "string" - }, - "displayName": { - "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", - "type": "string" - }, - "params": { - "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", - "type": "array", - "items": { - "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "default": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", "type": "array", "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" - } - } - }, - "description": { - "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", - "type": "string" - }, - "enum": { - "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", - "type": "array", - "items": { - "type": "string", - "default": "" - } - }, - "name": { - "description": "Name declares the name by which a parameter is referenced.", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", - "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "results": { - "description": "Results are values that this Task can output", - "type": "array", - "items": { - "description": "TaskResult used to describe the results of a task", - "type": "object", - "required": [ - "name" - ], + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix declares parameters used to fan out this task.", + "$ref": "#/definitions/v1.Matrix" + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Param" + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef is a reference to a pipeline definition Note: PipelineRef is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineRef" + }, + "pipelineSpec": { + "description": "PipelineSpec is a specification of a pipeline Note: PipelineSpec is in preview mode and not yet supported", + "$ref": "#/definitions/v1.PipelineSpec" + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef is a reference to a task definition.", + "$ref": "#/definitions/v1.TaskRef" + }, + "taskSpec": { + "description": "TaskSpec is a specification of a task", + "$ref": "#/definitions/v1.EmbeddedTask" + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WhenExpression" + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspacePipelineTaskBinding" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "status": { + "type": "object" + } + }, + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "tekton.dev", + "kind": "Pipeline", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "pipelines.tekton.dev" + }, + "spec": { + "group": "tekton.dev", + "names": { + "plural": "pipelines", + "singular": "pipeline", + "kind": "Pipeline", + "listKind": "PipelineList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": false, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + } + }, + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "pipelines", + "singular": "pipeline", + "kind": "Pipeline", + "listKind": "PipelineList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "short": "Pipeline", + "apiGroup": "tekton.dev", + "apiKind": "Pipeline", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "tekton", + "sub": "tekton", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "dev.tekton.v1.PipelineRun", + "definition": { + "properties": { + "spec": { + "description": "PipelineRunSpec defines the desired state of PipelineRun", + "type": "object", + "properties": { + "params": { + "description": "Params is a list of parameter names and values.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "status": { + "description": "Used for cancelling a pipelinerun (and maybe more later on)", + "type": "string" + }, + "taskRunSpecs": { + "description": "TaskRunSpecs holds a set of runtime specs", + "type": "array", + "items": { + "description": "PipelineTaskRunSpec can be used to configure specific specs for a concrete Task", + "type": "object", + "properties": { + "computeResources": { + "description": "Compute resources to use for this TaskRun", + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "pipelineTaskName": { + "type": "string" + }, + "podTemplate": { + "description": "Template holds pod specific configuration", + "type": "object", + "properties": { + "affinity": { + "description": "If specified, the pod's scheduling constraints", + "$ref": "#/definitions/v1.Affinity" + }, + "automountServiceAccountToken": { + "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", + "type": "boolean" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "$ref": "#/definitions/v1.PodDNSConfig" + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", + "type": "string" + }, + "enableServiceLinks": { + "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", + "type": "boolean" + }, + "env": { + "description": "List of environment variables that can be provided to the containers belonging to the pod.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "hostAliases": { + "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.HostAlias" + }, + "x-kubernetes-list-type": "atomic" + }, + "hostNetwork": { + "description": "HostNetwork specifies whether the pod may use the node network namespace", + "type": "boolean" + }, + "imagePullSecrets": { + "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.LocalObjectReference" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "runtimeClassName": { + "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", + "type": "string" + }, + "schedulerName": { + "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", + "$ref": "#/definitions/v1.PodSecurityContext" + }, + "tolerations": { + "description": "If specified, the pod's tolerations.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Toleration" + }, + "x-kubernetes-list-type": "atomic" + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.TopologySpreadConstraint" + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge,retainKeys" + } + } + }, + "serviceAccountName": { + "type": "string" + }, + "sidecarSpecs": { + "type": "array", + "items": { + "description": "TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.", + "type": "object", + "required": [ + "name", + "computeResources" + ], + "properties": { + "computeResources": { + "description": "The resource requirements to apply to the Sidecar.", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "name": { + "description": "The name of the Sidecar to override.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "stepSpecs": { + "type": "array", + "items": { + "description": "TaskRunStepSpec is used to override the values of a Step in the corresponding Task.", + "type": "object", + "required": [ + "name", + "computeResources" + ], + "properties": { + "computeResources": { + "description": "The resource requirements to apply to the Step.", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "name": { + "description": "The name of the Step to override.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRunTemplate": { + "description": "PipelineTaskRunTemplate is used to specify run specifications for all Task in pipelinerun.", + "type": "object", + "properties": { + "podTemplate": { + "description": "Template holds pod specific configuration", + "type": "object", + "properties": { + "affinity": { + "description": "If specified, the pod's scheduling constraints", + "$ref": "#/definitions/v1.Affinity" + }, + "automountServiceAccountToken": { + "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", + "type": "boolean" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "$ref": "#/definitions/v1.PodDNSConfig" + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", + "type": "string" + }, + "enableServiceLinks": { + "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", + "type": "boolean" + }, + "env": { + "description": "List of environment variables that can be provided to the containers belonging to the pod.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "hostAliases": { + "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.HostAlias" + }, + "x-kubernetes-list-type": "atomic" + }, + "hostNetwork": { + "description": "HostNetwork specifies whether the pod may use the node network namespace", + "type": "boolean" + }, + "imagePullSecrets": { + "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.LocalObjectReference" + }, + "x-kubernetes-list-type": "atomic" + }, + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "priorityClassName": { + "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "runtimeClassName": { + "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", + "type": "string" + }, + "schedulerName": { + "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", + "$ref": "#/definitions/v1.PodSecurityContext" + }, + "tolerations": { + "description": "If specified, the pod's tolerations.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Toleration" + }, + "x-kubernetes-list-type": "atomic" + }, + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.TopologySpreadConstraint" + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge,retainKeys" + } + } + }, + "serviceAccountName": { + "type": "string" + } + } + }, + "timeouts": { + "description": "TimeoutFields allows granular specification of pipeline, task, and finally timeouts", + "type": "object", + "properties": { + "finally": { + "description": "Finally sets the maximum allowed duration of this pipeline's finally", + "$ref": "#/definitions/v1.Duration" + }, + "pipeline": { + "description": "Pipeline sets the maximum allowed duration for execution of the entire pipeline. The sum of individual timeouts for tasks and finally must not exceed this value.", + "$ref": "#/definitions/v1.Duration" + }, + "tasks": { + "description": "Tasks sets the maximum allowed duration of this pipeline's tasks", + "$ref": "#/definitions/v1.Duration" + } + } + }, + "workspaces": { + "description": "Workspaces holds a set of workspace bindings that must match names with those declared in the pipeline.", + "type": "array", + "items": { + "description": "WorkspaceBinding maps a Task's declared workspace to a Volume.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "configMap": { + "description": "ConfigMap represents a configMap that should populate this workspace.", + "$ref": "#/definitions/v1.ConfigMapVolumeSource" + }, + "csi": { + "description": "CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.", + "$ref": "#/definitions/v1.CSIVolumeSource" + }, + "emptyDir": { + "description": "EmptyDir represents a temporary directory that shares a Task's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir Either this OR PersistentVolumeClaim can be used.", + "$ref": "#/definitions/v1.EmptyDirVolumeSource" + }, + "name": { + "description": "Name is the name of the workspace populated by the volume.", + "type": "string", + "default": "" + }, + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string", + "default": "" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } + }, + "projected": { + "description": "Projected represents a projected volume that should populate this workspace.", + "$ref": "#/definitions/v1.ProjectedVolumeSource" + }, + "secret": { + "description": "Secret represents a secret that should populate this workspace.", + "$ref": "#/definitions/v1.SecretVolumeSource" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "volumeClaimTemplate": { + "description": "VolumeClaimTemplate is a template for a claim that will be created in the same namespace. The PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.", + "$ref": "#/definitions/v1.PersistentVolumeClaim" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "status": { + "description": "PipelineRunStatus defines the observed state of PipelineRun", + "type": "object", + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "childReferences": { + "description": "list of TaskRun and Run names, PipelineTask names, and API versions/kinds for children of this PipelineRun.", + "type": "array", + "items": { + "description": "ChildStatusReference is used to point to the statuses of individual TaskRuns and Runs within this PipelineRun.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "kind": { + "type": "string" + }, + "name": { + "description": "Name is the name of the TaskRun or Run this is referencing.", + "type": "string" + }, + "pipelineTaskName": { + "description": "PipelineTaskName is the name of the PipelineTask this is referencing.", + "type": "string" + }, + "whenExpressions": { + "description": "WhenExpressions is the list of checks guarding the execution of the PipelineTask", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "completionTime": { + "description": "CompletionTime is the time the PipelineRun completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "finallyStartTime": { + "description": "FinallyStartTime is when all non-finally tasks have been completed and only finally tasks are being executed.", + "$ref": "#/definitions/v1.Time" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "description": "PipelineResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string", + "default": "" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible types are 'string', 'array', and 'object', with 'string' as the default. 'array' and 'object' types are alpha features.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "description": "PipelineTask defines a task in a Pipeline, passing inputs from both Params and from the output of previous tasks.", + "type": "object", + "properties": { + "description": { + "description": "Description is the description of this task within the context of a Pipeline. This description may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is the display name of this task within the context of a Pipeline. This display name may be used to populate a UI.", + "type": "string" + }, + "matrix": { + "description": "Matrix is used to fan out Tasks in a Pipeline", + "type": "object", + "properties": { + "include": { + "description": "Include is a list of IncludeParams which allows passing in specific combinations of Parameters into the Matrix.", + "type": "array", + "items": { + "description": "IncludeParams allows passing in a specific combinations of Parameters into the Matrix.", + "type": "object", + "properties": { + "name": { + "description": "Name the specified combination", + "type": "string" + }, + "params": { + "description": "Params takes only `Parameters` of type `\"string\"` The names of the `params` must match the names of the `params` in the underlying `Task`", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params is a list of parameters used to fan out the pipelineTask Params takes only `Parameters` of type `\"array\"` Each array element is supplied to the `PipelineTask` by substituting `params` of type `\"string\"` in the underlying `Task`. The names of the `params` in the `Matrix` must match the names of the `params` in the underlying `Task` that they will be substituting.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "name": { + "description": "Name is the name of this task within the context of a Pipeline. Name is used as a coordinate with the `from` and `runAfter` fields to establish the execution order of tasks relative to one another.", + "type": "string" + }, + "onError": { + "description": "OnError defines the exiting behavior of a PipelineRun on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Parameters declares parameters passed to this task.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "pipelineRef": { + "description": "PipelineRef can be used to refer to a specific instance of a Pipeline.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "pipelineSpec": { + "description": "PipelineSpec defines the desired state of Pipeline.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the pipeline that may be used to populate a UI.", + "type": "string" + }, + "finally": { + "description": "Finally declares the list of Tasks that execute just before leaving the Pipeline i.e. either after all Tasks are finished executing successfully or after a failure which would result in ending the Pipeline", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "params": { + "description": "Params declares a list of input parameters that must be supplied when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this pipeline can output once run", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "tasks": { + "description": "Tasks declares the graph of Tasks that execute when this Pipeline is run.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineTask" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.PipelineWorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "retries": { + "description": "Retries represents how many times this task should be retried in case of task failure: ConditionSucceeded set to False", + "type": "integer", + "format": "int32" + }, + "runAfter": { + "description": "RunAfter is the list of PipelineTask names that should be executed before this Task executes. (Used to force a specific ordering in graph execution.)", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", + "type": "string" + }, + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", + "type": "string" + }, + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "EmbeddedTask is used to define a Task inline within a Pipeline's PipelineTasks.", + "type": "object", + "properties": { + "apiVersion": { + "type": "string" + }, + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "kind": { + "type": "string" + }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spec": { + "description": "Spec is a specification of a custom task", + "default": {}, + "$ref": "#/definitions/k8s.io.apimachinery.pkg.runtime.RawExtension" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "timeout": { + "description": "Time after which the TaskRun times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "when": { + "description": "When is a list of when expressions that need to be true for the task to run", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + }, + "workspaces": { + "description": "Workspaces maps workspaces from the pipeline spec to the workspaces declared in the Task.", + "type": "array", + "items": { + "description": "WorkspacePipelineTaskBinding describes how a workspace passed into the pipeline should be mapped to a task's declared workspace.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "name": { + "description": "Name is the name of the workspace as declared by the task", + "type": "string", + "default": "" + }, + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" + }, + "workspace": { + "description": "Workspace is the name of the workspace declared by the pipeline", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces declares a set of named workspaces that are expected to be provided by a PipelineRun.", + "type": "array", + "items": { + "description": "WorkspacePipelineDeclaration creates a named slot in a Pipeline that a PipelineRun is expected to populate with a workspace binding.\n\nDeprecated: use PipelineWorkspaceDeclaration type instead", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human readable string describing how the workspace will be used in the Pipeline. It can be useful to include a bit of detail about which tasks are intended to have access to the data on the workspace.", + "type": "string" + }, + "name": { + "description": "Name is the name of a workspace to be provided by a PipelineRun.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in PipelineRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", + "type": "object", + "properties": { + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", + "type": "object", + "properties": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the pipeline task's containers", + "type": "array", + "items": { + "description": "PipelineRunResult used to describe the results of a pipeline", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name is the result's name as declared by the Pipeline", + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "skippedTasks": { + "description": "list of tasks that were skipped due to when expressions evaluating to false", + "type": "array", + "items": { + "description": "SkippedTask is used to describe the Tasks that were skipped due to their When Expressions evaluating to False. This is a struct because we are looking into including more details about the When Expressions that caused this Task to be skipped.", + "type": "object", + "required": [ + "name", + "reason" + ], + "properties": { + "name": { + "description": "Name is the Pipeline Task name", + "type": "string", + "default": "" + }, + "reason": { + "description": "Reason is the cause of the PipelineTask being skipped.", + "type": "string", + "default": "" + }, + "whenExpressions": { + "description": "WhenExpressions is the list of checks guarding the execution of the PipelineTask", + "type": "array", + "items": { + "description": "WhenExpression allows a PipelineTask to declare expressions to be evaluated before the Task is run to determine whether the Task should be executed or skipped", + "type": "object", + "properties": { + "cel": { + "description": "CEL is a string of Common Language Expression, which can be used to conditionally execute the task based on the result of the expression evaluation More info about CEL syntax: https://github.com/google/cel-spec/blob/master/doc/langdef.md", + "type": "string" + }, + "input": { + "description": "Input is the string for guard checking which can be a static input or an output from a parent Task", + "type": "string" + }, + "operator": { + "description": "Operator that represents an Input's relationship to the values", + "type": "string" + }, + "values": { + "description": "Values is an array of strings, which is compared against the input, for guard checking It must be non-empty", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the PipelineRun is actually started.", + "$ref": "#/definitions/v1.Time" + } + } + } + }, + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "tekton.dev", + "kind": "PipelineRun", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "pipelineruns.tekton.dev" + }, + "spec": { + "group": "tekton.dev", + "names": { + "plural": "pipelineruns", + "singular": "pipelinerun", + "shortNames": [ + "pr", + "prs" + ], + "kind": "PipelineRun", + "listKind": "PipelineRunList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": false, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Succeeded", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" + }, + { + "name": "Reason", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" + }, + { + "name": "StartTime", + "type": "date", + "jsonPath": ".status.startTime" + }, + { + "name": "CompletionTime", + "type": "date", + "jsonPath": ".status.completionTime" + } + ] + }, + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + }, + "additionalPrinterColumns": [ + { + "name": "Succeeded", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" + }, + { + "name": "Reason", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" + }, + { + "name": "StartTime", + "type": "date", + "jsonPath": ".status.startTime" + }, + { + "name": "CompletionTime", + "type": "date", + "jsonPath": ".status.completionTime" + } + ] + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "pipelineruns", + "singular": "pipelinerun", + "shortNames": [ + "pr", + "prs" + ], + "kind": "PipelineRun", + "listKind": "PipelineRunList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "additionalColumns": [ + { + "name": "Succeeded", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].status" + }, + { + "name": "Reason", + "type": "string", + "jsonPath": ".status.conditions[?(@.type==\"Succeeded\")].reason" + }, + { + "name": "StartTime", + "type": "date", + "jsonPath": ".status.startTime" + }, + { + "name": "CompletionTime", + "type": "date", + "jsonPath": ".status.completionTime" + } + ], + "short": "PipelineRun", + "apiGroup": "tekton.dev", + "apiKind": "PipelineRun", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "tekton", + "sub": "tekton", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "dev.tekton.v1.Task", + "definition": { + "properties": { + "spec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "status": { + "type": "object" + } + }, + "type": "object", + "x-kubernetes-group-version-kind": [ + { + "group": "tekton.dev", + "kind": "Task", + "version": "v1" + } + ] + }, + "crd": { + "metadata": { + "name": "tasks.tekton.dev" + }, + "spec": { + "group": "tekton.dev", + "names": { + "plural": "tasks", + "singular": "task", + "kind": "Task", + "listKind": "TaskList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "scope": "Namespaced", + "versions": [ + { + "name": "v1beta1", + "served": true, + "storage": false, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + } + }, + { + "name": "v1", + "served": true, + "storage": true, + "schema": { + "openAPIV3Schema": { + "type": "object", + "x-kubernetes-preserve-unknown-fields": true + } + }, + "subresources": { + "status": {} + } + } + ], + "conversion": {} + }, + "status": { + "conditions": [], + "acceptedNames": { + "plural": "tasks", + "singular": "task", + "kind": "Task", + "listKind": "TaskList", + "categories": [ + "tekton", + "tekton-pipelines" + ] + }, + "storedVersions": [ + "v1" + ] + } + }, + "short": "Task", + "apiGroup": "tekton.dev", + "apiKind": "Task", + "apiVersion": "v1", + "readProperties": { + "spec": "spec", + "status": "status" + }, + "writeProperties": { + "spec": "spec" + }, + "group": "tekton", + "sub": "tekton", + "listExcludes": [], + "readExcludes": [], + "simpleExcludes": [], + "gqlDefs": { + "metadata": "metadata!", + "spec": "JSONObject", + "status": "JSONObject" + }, + "namespaced": true + }, + { + "alternatives": [], + "name": "dev.tekton.v1.TaskRun", + "definition": { + "properties": { + "spec": { + "description": "TaskRunSpec defines the desired state of TaskRun", + "type": "object", + "properties": { + "computeResources": { + "description": "Compute resources to use for this TaskRun", + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "debug": { + "description": "TaskRunDebug defines the breakpoint config for a particular TaskRun", + "type": "object", + "properties": { + "breakpoints": { + "description": "TaskBreakpoints defines the breakpoint config for a particular Task", + "type": "object", + "properties": { + "onFailure": { + "description": "if enabled, pause TaskRun on failure of a step failed step will not exit", + "type": "string" + } + } + } + } + }, + "params": { + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], "properties": { - "description": { - "description": "Description is a human-readable description of the result", - "type": "string" - }, "name": { - "description": "Name the given name", "type": "string", "default": "" }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", - "type": "string" - }, "value": { "description": "ResultValue is a type alias of ParamValue", "type": "object", @@ -3842,1621 +25064,3997 @@ }, "x-kubernetes-list-type": "atomic" }, - "sidecars": { - "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", - "type": "array", - "items": { - "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Sidecar. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "lifecycle": { - "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", - "$ref": "#/definitions/v1.Lifecycle" - }, - "livenessProbe": { - "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "name": { - "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", - "type": "string", - "default": "" - }, - "ports": { - "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.ContainerPort" - }, - "x-kubernetes-list-map-keys": [ - "containerPort", - "protocol" - ], - "x-kubernetes-list-type": "map", - "x-kubernetes-patch-merge-key": "containerPort", - "x-kubernetes-patch-strategy": "merge" - }, - "readinessProbe": { - "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "startupProbe": { - "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "stdin": { - "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", - "type": "boolean" - }, - "stdinOnce": { - "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", - "type": "boolean" - }, - "terminationMessagePath": { - "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", - "type": "string" - }, - "terminationMessagePolicy": { - "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", - "type": "string" - }, - "tty": { - "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", - "type": "boolean" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Sidecar.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - }, - "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", - "type": "array", - "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", - "type": "object", - "required": [ - "name", - "mountPath" - ], - "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" - }, - "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", - "type": "string", - "default": "" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "stepTemplate": { - "description": "StepTemplate is a template for a Step", + "podTemplate": { + "description": "Template holds pod specific configuration", "type": "object", "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "affinity": { + "description": "If specified, the pod's scheduling constraints", + "$ref": "#/definitions/v1.Affinity" + }, + "automountServiceAccountToken": { + "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", + "type": "boolean" + }, + "dnsConfig": { + "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", + "$ref": "#/definitions/v1.PodDNSConfig" + }, + "dnsPolicy": { + "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", + "type": "string" + }, + "enableServiceLinks": { + "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", + "type": "boolean" + }, + "env": { + "description": "List of environment variables that can be provided to the containers belonging to the pod.", "type": "array", "items": { - "type": "string", - "default": "" + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "hostAliases": { + "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.HostAlias" }, "x-kubernetes-list-type": "atomic" }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "hostNetwork": { + "description": "HostNetwork specifies whether the pod may use the node network namespace", + "type": "boolean" + }, + "imagePullSecrets": { + "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", "type": "array", "items": { - "type": "string", - "default": "" + "default": {}, + "$ref": "#/definitions/v1.LocalObjectReference" }, "x-kubernetes-list-type": "atomic" }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" + "nodeSelector": { + "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", + "priorityClassName": { + "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", + "type": "string" + }, + "runtimeClassName": { + "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", + "type": "string" + }, + "schedulerName": { + "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", + "$ref": "#/definitions/v1.PodSecurityContext" + }, + "tolerations": { + "description": "If specified, the pod's tolerations.", "type": "array", "items": { "default": {}, - "$ref": "#/definitions/v1.EnvVar" + "$ref": "#/definitions/v1.Toleration" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" + "x-kubernetes-list-type": "atomic" }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "topologySpreadConstraints": { + "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", "type": "array", "items": { "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" + "$ref": "#/definitions/v1.TopologySpreadConstraint" }, "x-kubernetes-list-type": "atomic" }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "volumes": { + "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge,retainKeys" + } + } + }, + "retries": { + "description": "Retries represents how many times this TaskRun should be retried in the event of task failure.", + "type": "integer", + "format": "int32" + }, + "serviceAccountName": { + "type": "string", + "default": "" + }, + "sidecarSpecs": { + "description": "Specs to apply to Sidecars in this TaskRun. If a field is specified in both a Sidecar and a SidecarSpec, the value from the SidecarSpec will be used. This field is only supported when the alpha feature gate is enabled.", + "type": "array", + "items": { + "description": "TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.", + "type": "object", + "required": [ + "name", + "computeResources" + ], + "properties": { + "computeResources": { + "description": "The resource requirements to apply to the Sidecar.", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "name": { + "description": "The name of the Sidecar to override.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "status": { + "description": "Used for cancelling a TaskRun (and maybe more later on)", + "type": "string" + }, + "statusMessage": { + "description": "Status message for cancellation.", + "type": "string" + }, + "stepSpecs": { + "description": "Specs to apply to Steps in this TaskRun. If a field is specified in both a Step and a StepSpec, the value from the StepSpec will be used. This field is only supported when the alpha feature gate is enabled.", + "type": "array", + "items": { + "description": "TaskRunStepSpec is used to override the values of a Step in the corresponding Task.", + "type": "object", + "required": [ + "name", + "computeResources" + ], + "properties": { + "computeResources": { + "description": "The resource requirements to apply to the Step.", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "name": { + "description": "The name of the Step to override.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskRef": { + "description": "TaskRef can be used to refer to a specific instance of a task.", + "type": "object", + "properties": { + "apiVersion": { + "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", "type": "string" }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "kind": { + "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", "type": "string" }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" + "name": { + "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", + "type": "string" + } + } + }, + "taskSpec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", + "results": { + "description": "Results are values that this Task can output", "type": "array", "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" + "x-kubernetes-list-type": "atomic" }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", "type": "array", "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" + "x-kubernetes-list-type": "atomic" }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - } - } - }, - "steps": { - "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", - "type": "array", - "items": { - "description": "Step runs a subcomponent of a Task", - "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", - "type": "array", - "items": { + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", "default": {}, - "$ref": "#/definitions/v1.EnvVar" + "$ref": "#/definitions/v1.ResourceRequirements" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "name": { - "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", - "type": "string", - "default": "" - }, - "onError": { - "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", - "type": "string" - }, - "params": { - "description": "Params declares parameters passed to this step action.", - "type": "array", - "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { "type": "string", "default": "" }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", "type": "object", "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" + "name" ], "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" }, - "ObjectVal": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", "type": "object", "additionalProperties": { - "type": "string", - "default": "" + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" } }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" } } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "ref": { - "description": "Ref can be used to refer to a specific instance of a StepAction.", - "type": "object", - "properties": { - "name": { - "description": "Name of the referenced step", - "type": "string" - } - } - }, - "results": { - "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", - "type": "array", - "items": { - "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "description": { - "description": "Description is a human-readable description of the result", - "type": "string" - }, - "name": { - "description": "Name the given name", - "type": "string", - "default": "" }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" } - }, - "type": { - "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", - "type": "string" } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "stderrConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } - } - }, - "stdoutConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } - } - }, - "timeout": { - "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", - "$ref": "#/definitions/v1.Duration" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - }, - "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", - "type": "array", - "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", - "type": "object", - "required": [ - "name", - "mountPath" - ], - "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" }, - "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", - "type": "string", - "default": "" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "volumes": { - "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" - }, - "x-kubernetes-list-type": "atomic" - }, - "workspaces": { - "description": "Workspaces are the volumes that this Task requires.", - "type": "array", - "items": { - "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "description": { - "description": "Description is an optional human readable description of this volume.", - "type": "string" - }, - "mountPath": { - "description": "MountPath overrides the directory that the volume will be made available at.", - "type": "string" - }, - "name": { - "description": "Name is the name by which you can bind the volume at runtime.", - "type": "string", - "default": "" - }, - "optional": { - "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", - "type": "boolean" - }, - "readOnly": { - "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", - "type": "boolean" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "status": { - "type": "object" - } - }, - "type": "object", - "x-kubernetes-group-version-kind": [ - { - "group": "tekton.dev", - "kind": "Task", - "version": "v1" - } - ] - }, - "crd": { - "metadata": { - "name": "tasks.tekton.dev", - "uid": "b492d57f-f22b-4f13-b45c-b8b9915237a9", - "resourceVersion": "149693903", - "generation": 3, - "creationTimestamp": "2024-03-20T05:58:21Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:21Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:21Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "webhook", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-25T16:45:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {}, - "f:service": { - "f:path": {} + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" } } - } - } - } - } - } - ] - }, - "spec": { - "group": "tekton.dev", - "names": { - "plural": "tasks", - "singular": "task", - "kind": "Task", - "listKind": "TaskList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "scope": "Namespaced", - "versions": [ - { - "name": "v1beta1", - "served": true, - "storage": false, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - } - }, - { - "name": "v1", - "served": true, - "storage": true, - "schema": { - "openAPIV3Schema": { - "type": "object", - "x-kubernetes-preserve-unknown-fields": true - } - }, - "subresources": { - "status": {} - } - } - ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "path": "/resource-conversion", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1" - ] - } - } - }, - "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:21Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:21Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], - "acceptedNames": { - "plural": "tasks", - "singular": "task", - "kind": "Task", - "listKind": "TaskList", - "categories": [ - "tekton", - "tekton-pipelines" - ] - }, - "storedVersions": [ - "v1" - ] - } - }, - "short": "Task", - "apiGroup": "tekton.dev", - "apiKind": "Task", - "apiVersion": "v1", - "readProperties": { - "spec": "spec", - "status": "status" - }, - "writeProperties": { - "spec": "spec" - }, - "group": "tekton", - "sub": "tekton", - "listExcludes": [], - "readExcludes": [], - "simpleExcludes": [], - "gqlDefs": { - "metadata": "metadata!", - "spec": "JSONObject", - "status": "JSONObject" - }, - "namespaced": true - }, - { - "alternatives": [], - "name": "dev.tekton.v1.TaskRun", - "definition": { - "properties": { - "spec": { - "description": "TaskRunSpec defines the desired state of TaskRun", - "type": "object", - "properties": { - "computeResources": { - "description": "Compute resources to use for this TaskRun", - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "debug": { - "description": "TaskRunDebug defines the breakpoint config for a particular TaskRun", - "type": "object", - "properties": { - "breakpoints": { - "description": "TaskBreakpoints defines the breakpoint config for a particular Task", - "type": "object", - "properties": { - "onFailure": { - "description": "if enabled, pause TaskRun on failure of a step failed step will not exit", - "type": "string" + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } } - } + }, + "x-kubernetes-list-type": "atomic" } } }, - "params": { + "timeout": { + "description": "Time after which one retry attempt times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "workspaces": { + "description": "Workspaces is a list of WorkspaceBindings from volumes to workspaces.", "type": "array", "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", + "description": "WorkspaceBinding maps a Task's declared workspace to a Volume.", "type": "object", "required": [ - "name", - "value" + "name" ], "properties": { + "configMap": { + "description": "ConfigMap represents a configMap that should populate this workspace.", + "$ref": "#/definitions/v1.ConfigMapVolumeSource" + }, + "csi": { + "description": "CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.", + "$ref": "#/definitions/v1.CSIVolumeSource" + }, + "emptyDir": { + "description": "EmptyDir represents a temporary directory that shares a Task's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir Either this OR PersistentVolumeClaim can be used.", + "$ref": "#/definitions/v1.EmptyDirVolumeSource" + }, "name": { + "description": "Name is the name of the workspace populated by the volume.", "type": "string", "default": "" }, - "value": { - "description": "ResultValue is a type alias of ParamValue", + "persistentVolumeClaim": { + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", "type": "object", "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" + "claimName" ], "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", "type": "string", "default": "" }, - "Type": { - "type": "string", - "default": "" + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" } } - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "podTemplate": { - "description": "Template holds pod specific configuration", - "type": "object", - "properties": { - "affinity": { - "description": "If specified, the pod's scheduling constraints", - "$ref": "#/definitions/v1.Affinity" - }, - "automountServiceAccountToken": { - "description": "AutomountServiceAccountToken indicates whether pods running as this service account should have an API token automatically mounted.", - "type": "boolean" - }, - "dnsConfig": { - "description": "Specifies the DNS parameters of a pod. Parameters specified here will be merged to the generated DNS configuration based on DNSPolicy.", - "$ref": "#/definitions/v1.PodDNSConfig" - }, - "dnsPolicy": { - "description": "Set DNS policy for the pod. Defaults to \"ClusterFirst\". Valid values are 'ClusterFirst', 'Default' or 'None'. DNS parameters given in DNSConfig will be merged with the policy selected with DNSPolicy.", - "type": "string" - }, - "enableServiceLinks": { - "description": "EnableServiceLinks indicates whether information about services should be injected into pod's environment variables, matching the syntax of Docker links. Optional: Defaults to true.", - "type": "boolean" - }, - "env": { - "description": "List of environment variables that can be provided to the containers belonging to the pod.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "hostAliases": { - "description": "HostAliases is an optional list of hosts and IPs that will be injected into the pod's hosts file if specified. This is only valid for non-hostNetwork pods.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.HostAlias" - }, - "x-kubernetes-list-type": "atomic" - }, - "hostNetwork": { - "description": "HostNetwork specifies whether the pod may use the node network namespace", - "type": "boolean" - }, - "imagePullSecrets": { - "description": "ImagePullSecrets gives the name of the secret used by the pod to pull the image if specified", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.LocalObjectReference" }, - "x-kubernetes-list-type": "atomic" - }, - "nodeSelector": { - "description": "NodeSelector is a selector which must be true for the pod to fit on a node. Selector which must match a node's labels for the pod to be scheduled on that node. More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "priorityClassName": { - "description": "If specified, indicates the pod's priority. \"system-node-critical\" and \"system-cluster-critical\" are two special keywords which indicate the highest priorities with the former being the highest priority. Any other name must be defined by creating a PriorityClass object with that name. If not specified, the pod priority will be default or zero if there is no default.", - "type": "string" - }, - "runtimeClassName": { - "description": "RuntimeClassName refers to a RuntimeClass object in the node.k8s.io group, which should be used to run this pod. If no RuntimeClass resource matches the named class, the pod will not be run. If unset or empty, the \"legacy\" RuntimeClass will be used, which is an implicit class with an empty definition that uses the default runtime handler. More info: https://git.k8s.io/enhancements/keps/sig-node/runtime-class.md This is a beta feature as of Kubernetes v1.14.", - "type": "string" - }, - "schedulerName": { - "description": "SchedulerName specifies the scheduler to be used to dispatch the Pod", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext holds pod-level security attributes and common container settings. Optional: Defaults to empty. See type description for default values of each field.", - "$ref": "#/definitions/v1.PodSecurityContext" - }, - "tolerations": { - "description": "If specified, the pod's tolerations.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Toleration" + "projected": { + "description": "Projected represents a projected volume that should populate this workspace.", + "$ref": "#/definitions/v1.ProjectedVolumeSource" }, - "x-kubernetes-list-type": "atomic" - }, - "topologySpreadConstraints": { - "description": "TopologySpreadConstraints controls how Pods are spread across your cluster among failure-domains such as regions, zones, nodes, and other user-defined topology domains.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.TopologySpreadConstraint" + "secret": { + "description": "Secret represents a secret that should populate this workspace.", + "$ref": "#/definitions/v1.SecretVolumeSource" }, - "x-kubernetes-list-type": "atomic" - }, - "volumes": { - "description": "List of volumes that can be mounted by containers belonging to the pod. More info: https://kubernetes.io/docs/concepts/storage/volumes", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" + "subPath": { + "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", + "type": "string" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge,retainKeys" + "volumeClaimTemplate": { + "description": "VolumeClaimTemplate is a template for a claim that will be created in the same namespace. The PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.", + "$ref": "#/definitions/v1.PersistentVolumeClaim" + } } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "status": { + "description": "TaskRunStatus defines the observed state of TaskRun", + "type": "object", + "required": [ + "podName" + ], + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" } }, - "retries": { - "description": "Retries represents how many times this TaskRun should be retried in the event of task failure.", + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", "type": "integer", - "format": "int32" + "format": "int64" }, - "serviceAccountName": { + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", "type": "string", "default": "" }, - "sidecarSpecs": { - "description": "Specs to apply to Sidecars in this TaskRun. If a field is specified in both a Sidecar and a SidecarSpec, the value from the SidecarSpec will be used. This field is only supported when the alpha feature gate is enabled.", + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", + "type": "object", + "properties": { + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", + "type": "object", + "properties": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the task's containers", "type": "array", "items": { - "description": "TaskRunSidecarSpec is used to override the values of a Sidecar in the corresponding Task.", + "description": "TaskRunStepResult is a type alias of TaskRunResult", "type": "object", "required": [ "name", - "computeResources" + "value" ], "properties": { - "computeResources": { - "description": "The resource requirements to apply to the Sidecar.", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, "name": { - "description": "The name of the Sidecar to override.", + "description": "Name the given name", "type": "string", "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } } } }, "x-kubernetes-list-type": "atomic" }, - "status": { - "description": "Used for cancelling a TaskRun (and maybe more later on)", - "type": "string" - }, - "statusMessage": { - "description": "Status message for cancellation.", - "type": "string" - }, - "stepSpecs": { - "description": "Specs to apply to Steps in this TaskRun. If a field is specified in both a Step and a StepSpec, the value from the StepSpec will be used. This field is only supported when the alpha feature gate is enabled.", + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", "type": "array", "items": { - "description": "TaskRunStepSpec is used to override the values of a Step in the corresponding Task.", + "description": "TaskRunStatus defines the observed state of TaskRun", "type": "object", "required": [ - "name", - "computeResources" + "podName" ], "properties": { - "computeResources": { - "description": "The resource requirements to apply to the Step.", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } }, - "name": { - "description": "The name of the Step to override.", + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", "type": "string", "default": "" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "taskRef": { - "description": "TaskRef can be used to refer to a specific instance of a task.", - "type": "object", - "properties": { - "apiVersion": { - "description": "API version of the referent Note: A Task with non-empty APIVersion and Kind is considered a Custom Task", - "type": "string" - }, - "kind": { - "description": "TaskKind indicates the Kind of the Task: 1. Namespaced Task when Kind is set to \"Task\". If Kind is \"\", it defaults to \"Task\". 2. Custom Task when Kind is non-empty and APIVersion is non-empty", - "type": "string" - }, - "name": { - "description": "Name of the referent; More info: http://kubernetes.io/docs/user-guide/identifiers#names", - "type": "string" - } - } - }, - "taskSpec": { - "description": "TaskSpec defines the desired state of Task.", - "type": "object", - "properties": { - "description": { - "description": "Description is a user-facing description of the task that may be used to populate a UI.", - "type": "string" - }, - "displayName": { - "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", - "type": "string" - }, - "params": { - "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", - "type": "array", - "items": { - "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + }, + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", "type": "object", - "required": [ - "name" - ], "properties": { - "default": { - "description": "ResultValue is a type alias of ParamValue", + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], "properties": { - "ArrayVal": { - "type": "array", - "items": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the task's containers", + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { "type": "string", "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", + "type": "array", + "items": { + "description": "TaskRunStatus defines the observed state of TaskRun", + "type": "object", + "required": [ + "podName" + ], + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", + "type": "string", + "default": "" + }, + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", + "type": "object", + "properties": { + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", + "type": "object", + "properties": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the task's containers", + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", + "type": "array", + "items": { + "description": "TaskRunStatus defines the observed state of TaskRun", + "type": "object", + "required": [ + "podName" + ], + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", + "type": "string", + "default": "" + }, + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", + "type": "object", + "properties": { + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", + "type": "object", + "properties": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the task's containers", + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", + "type": "array", + "items": { + "description": "TaskRunStatus defines the observed state of TaskRun", + "type": "object", + "required": [ + "podName" + ], + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", + "type": "string", + "default": "" + }, + "provenance": { + "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", + "type": "object", + "properties": { + "featureFlags": { + "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", + "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" + }, + "refSource": { + "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", + "type": "object", + "properties": { + "digest": { + "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "entryPoint": { + "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", + "type": "string" + }, + "uri": { + "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", + "type": "string" + } + } + } + } + }, + "results": { + "description": "Results are the list of results written out by the task's containers", + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", + "type": "array", + "items": { + "description": "TaskRunStatus defines the observed state of TaskRun", + "type": "object", + "required": [ + "podName" + ], + "properties": { + "annotations": { + "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "completionTime": { + "description": "CompletionTime is the time the build completed.", + "$ref": "#/definitions/v1.Time" + }, + "conditions": { + "description": "Conditions the latest available observations of a resource's current state.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/knative.Condition" + }, + "x-kubernetes-patch-merge-key": "type", + "x-kubernetes-patch-strategy": "merge" + }, + "observedGeneration": { + "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", + "type": "integer", + "format": "int64" + }, + "podName": { + "description": "PodName is the name of the pod responsible for executing this task's steps.", + "type": "string", + "default": "" + }, + "provenance": { + "description": "Provenance contains some key authenticated metadata about how a software artifact was built (what sources, what inputs/outputs, etc.).", + "$ref": "#/definitions/v1.Provenance" + }, + "results": { + "description": "Results are the list of results written out by the task's containers", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.TaskRunResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "retriesStatus": { + "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.TaskRunStatus" + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.SidecarState" + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the build is actually started.", + "$ref": "#/definitions/v1.Time" + }, + "steps": { + "description": "Steps describes the state of each build step container.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.StepState" + }, + "x-kubernetes-list-type": "atomic" + }, + "taskSpec": { + "description": "TaskSpec contains the Spec from the dereferenced Task definition used to instantiate this TaskRun.", + "$ref": "#/definitions/v1.TaskSpec" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", + "type": "array", + "items": { + "description": "SidecarState reports the results of running a sidecar in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the build is actually started.", + "$ref": "#/definitions/v1.Time" + }, + "steps": { + "description": "Steps describes the state of each build step container.", + "type": "array", + "items": { + "description": "StepState reports the results of running a step in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "results": { + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + } + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "terminationReason": { + "type": "string" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskSpec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ParamSpec" + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.TaskResult" + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Sidecar" + }, + "x-kubernetes-list-type": "atomic" + }, + "stepTemplate": { + "description": "StepTemplate can be used as the basis for all step containers within the Task, so that the steps inherit settings on the base container.", + "$ref": "#/definitions/v1.StepTemplate" + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Step" + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.WorkspaceDeclaration" + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", + "type": "array", + "items": { + "description": "SidecarState reports the results of running a sidecar in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the build is actually started.", + "$ref": "#/definitions/v1.Time" + }, + "steps": { + "description": "Steps describes the state of each build step container.", + "type": "array", + "items": { + "description": "StepState reports the results of running a step in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "results": { + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + } + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "terminationReason": { + "type": "string" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskSpec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", + "type": "array", + "items": { + "description": "SidecarState reports the results of running a sidecar in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the build is actually started.", + "$ref": "#/definitions/v1.Time" + }, + "steps": { + "description": "Steps describes the state of each build step container.", + "type": "array", + "items": { + "description": "StepState reports the results of running a step in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "results": { + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + } + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "terminationReason": { + "type": "string" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskSpec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" + }, + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", + "type": "string" + }, + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", + "type": "array", + "items": { + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } + }, + "name": { + "description": "Name declares the name by which a parameter is referenced.", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "results": { + "description": "Results are values that this Task can output", + "type": "array", + "items": { + "description": "TaskResult used to describe the results of a task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" - } - } - }, - "description": { - "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", - "type": "string" - }, - "enum": { - "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", - "type": "array", - "items": { - "type": "string", - "default": "" - } - }, - "name": { - "description": "Name declares the name by which a parameter is referenced.", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", - "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "results": { - "description": "Results are values that this Task can output", - "type": "array", - "items": { - "description": "TaskResult used to describe the results of a task", - "type": "object", - "required": [ - "name" - ], - "properties": { - "description": { - "description": "Description is a human-readable description of the result", - "type": "string" - }, - "name": { - "description": "Name the given name", - "type": "string", - "default": "" - }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", - "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" - } - }, - "type": { - "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", - "type": "string" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { - "type": "array", - "items": { - "type": "string", - "default": "" + "stepTemplate": { + "description": "StepTemplate is a template for a Step", + "type": "object", + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + } + } + }, + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", + "type": "array", + "items": { + "description": "Step runs a subcomponent of a Task", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "name": { + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", + "type": "string", + "default": "" + }, + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", + "type": "object", + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } + } + }, + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "x-kubernetes-list-type": "atomic" - }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.Volume" + }, + "x-kubernetes-list-type": "atomic" + }, + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" } } } - } + }, + "x-kubernetes-list-type": "atomic" }, - "x-kubernetes-list-type": "atomic" - }, - "sidecars": { - "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", - "type": "array", - "items": { - "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "sidecars": { + "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", + "type": "array", + "items": { + "description": "SidecarState reports the results of running a sidecar in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" + }, + "imageID": { + "type": "string" + }, + "name": { + "type": "string" + }, + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" + }, + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" + }, + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "spanContext": { + "description": "SpanContext contains tracing span context fields", "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "startTime": { + "description": "StartTime is the time the build is actually started.", + "$ref": "#/definitions/v1.Time" + }, + "steps": { + "description": "Steps describes the state of each build step container.", + "type": "array", + "items": { + "description": "StepState reports the results of running a step in a Task.", + "type": "object", + "properties": { + "container": { + "type": "string" }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" + "imageID": { + "type": "string" }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Sidecar. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" + "name": { + "type": "string" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" + "results": { + "type": "array", + "items": { + "description": "TaskRunStepResult is a type alias of TaskRunResult", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + } }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "lifecycle": { - "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", - "$ref": "#/definitions/v1.Lifecycle" - }, - "livenessProbe": { - "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "name": { - "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", - "type": "string", - "default": "" - }, - "ports": { - "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.ContainerPort" + "running": { + "description": "Details about a running container", + "$ref": "#/definitions/v1.ContainerStateRunning" }, - "x-kubernetes-list-map-keys": [ - "containerPort", - "protocol" - ], - "x-kubernetes-list-type": "map", - "x-kubernetes-patch-merge-key": "containerPort", - "x-kubernetes-patch-strategy": "merge" - }, - "readinessProbe": { - "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "startupProbe": { - "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", - "$ref": "#/definitions/v1.Probe" - }, - "stdin": { - "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", - "type": "boolean" - }, - "stdinOnce": { - "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", - "type": "boolean" - }, - "terminationMessagePath": { - "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", - "type": "string" - }, - "terminationMessagePolicy": { - "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", - "type": "string" - }, - "tty": { - "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", - "type": "boolean" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Sidecar.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" + "terminated": { + "description": "Details about a terminated container", + "$ref": "#/definitions/v1.ContainerStateTerminated" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" + "terminationReason": { + "type": "string" }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" + "waiting": { + "description": "Details about a waiting container", + "$ref": "#/definitions/v1.ContainerStateWaiting" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "taskSpec": { + "description": "TaskSpec defines the desired state of Task.", + "type": "object", + "properties": { + "description": { + "description": "Description is a user-facing description of the task that may be used to populate a UI.", + "type": "string" }, - "workingDir": { - "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "displayName": { + "description": "DisplayName is a user-facing name of the task that may be used to populate a UI.", "type": "string" }, - "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "params": { + "description": "Params is a list of input parameters required to run the task. Params must be supplied as inputs in TaskRuns unless they declare a default value.", "type": "array", "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "description": "ParamSpec defines arbitrary parameters needed beyond typed inputs (such as resources). Parameter values are provided by users as inputs on a TaskRun or PipelineRun.", "type": "object", "required": [ - "name", - "mountPath" + "name" ], "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" + "default": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + }, + "description": { + "description": "Description is a user-facing description of the parameter that may be used to populate a UI.", + "type": "string" + }, + "enum": { + "description": "Enum declares a set of allowed param input values for tasks/pipelines that can be validated. If Enum is not set, no input validation is performed for the param.", + "type": "array", + "items": { + "type": "string", + "default": "" + } }, "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "description": "Name declares the name by which a parameter is referenced.", "type": "string", "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs parameter.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the parameter. The possible types are currently \"string\", \"array\" and \"object\", and \"string\" is the default.", + "type": "string" } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "stepTemplate": { - "description": "StepTemplate is a template for a Step", - "type": "object", - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - } - } - }, - "steps": { - "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", - "type": "array", - "items": { - "description": "Step runs a subcomponent of a Task", - "type": "object", - "required": [ - "name" - ], - "properties": { - "args": { - "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "command": { - "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", - "type": "array", - "items": { - "type": "string", - "default": "" - }, - "x-kubernetes-list-type": "atomic" - }, - "computeResources": { - "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", - "default": {}, - "$ref": "#/definitions/v1.ResourceRequirements" - }, - "env": { - "description": "List of environment variables to set in the Step. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvVar" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "name", - "x-kubernetes-patch-strategy": "merge" - }, - "envFrom": { - "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.EnvFromSource" - }, - "x-kubernetes-list-type": "atomic" - }, - "image": { - "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", - "type": "string" - }, - "imagePullPolicy": { - "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", - "type": "string" - }, - "name": { - "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", - "type": "string", - "default": "" - }, - "onError": { - "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", - "type": "string" + } + }, + "x-kubernetes-list-type": "atomic" }, - "params": { - "description": "Params declares parameters passed to this step action.", + "results": { + "description": "Results are values that this Task can output", "type": "array", "items": { - "description": "Param declares an ParamValues to use for the parameter called name.", + "description": "TaskResult used to describe the results of a task", "type": "object", "required": [ - "name", - "value" + "name" ], "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, "name": { + "description": "Name the given name", "type": "string", "default": "" }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", + "type": "string" + }, "value": { "description": "ResultValue is a type alias of ParamValue", "type": "object", @@ -5497,365 +29095,573 @@ }, "x-kubernetes-list-type": "atomic" }, - "ref": { - "description": "Ref can be used to refer to a specific instance of a StepAction.", + "sidecars": { + "description": "Sidecars are run alongside the Task's step containers. They begin before the steps start and end after the steps complete.", + "type": "array", + "items": { + "description": "Sidecar has nearly the same data structure as Step but does not have the ability to timeout.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Sidecar's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Sidecar. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Sidecar. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Sidecar. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the container is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "lifecycle": { + "description": "Actions that the management system should take in response to Sidecar lifecycle events. Cannot be updated.", + "$ref": "#/definitions/v1.Lifecycle" + }, + "livenessProbe": { + "description": "Periodic probe of Sidecar liveness. Container will be restarted if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "name": { + "description": "Name of the Sidecar specified as a DNS_LABEL. Each Sidecar in a Task must have a unique name (DNS_LABEL). Cannot be updated.", + "type": "string", + "default": "" + }, + "ports": { + "description": "List of ports to expose from the Sidecar. Exposing a port here gives the system additional information about the network connections a container uses, but is primarily informational. Not specifying a port here DOES NOT prevent that port from being exposed. Any port which is listening on the default \"0.0.0.0\" address inside a container will be accessible from the network. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.ContainerPort" + }, + "x-kubernetes-list-map-keys": [ + "containerPort", + "protocol" + ], + "x-kubernetes-list-type": "map", + "x-kubernetes-patch-merge-key": "containerPort", + "x-kubernetes-patch-strategy": "merge" + }, + "readinessProbe": { + "description": "Periodic probe of Sidecar service readiness. Container will be removed from service endpoints if the probe fails. Cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command or Args.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Sidecar should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "startupProbe": { + "description": "StartupProbe indicates that the Pod the Sidecar is running in has successfully initialized. If specified, no other probes are executed until this completes successfully. If this probe fails, the Pod will be restarted, just as if the livenessProbe failed. This can be used to provide different probe parameters at the beginning of a Pod's lifecycle, when it might take a long time to load data or warm a cache, than during steady-state operation. This cannot be updated. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probes", + "$ref": "#/definitions/v1.Probe" + }, + "stdin": { + "description": "Whether this Sidecar should allocate a buffer for stdin in the container runtime. If this is not set, reads from stdin in the Sidecar will always result in EOF. Default is false.", + "type": "boolean" + }, + "stdinOnce": { + "description": "Whether the container runtime should close the stdin channel after it has been opened by a single attach. When stdin is true the stdin stream will remain open across multiple attach sessions. If stdinOnce is set to true, stdin is opened on Sidecar start, is empty until the first client attaches to stdin, and then remains open and accepts data until the client disconnects, at which time stdin is closed and remains closed until the Sidecar is restarted. If this flag is false, a container processes that reads from stdin will never receive an EOF. Default is false", + "type": "boolean" + }, + "terminationMessagePath": { + "description": "Optional: Path at which the file to which the Sidecar's termination message will be written is mounted into the Sidecar's filesystem. Message written is intended to be brief final status, such as an assertion failure message. Will be truncated by the node if greater than 4096 bytes. The total message length across all containers will be limited to 12kb. Defaults to /dev/termination-log. Cannot be updated.", + "type": "string" + }, + "terminationMessagePolicy": { + "description": "Indicate how the termination message should be populated. File will use the contents of terminationMessagePath to populate the Sidecar status message on both success and failure. FallbackToLogsOnError will use the last chunk of Sidecar log output if the termination message file is empty and the Sidecar exited with an error. The log output is limited to 2048 bytes or 80 lines, whichever is smaller. Defaults to File. Cannot be updated.", + "type": "string" + }, + "tty": { + "description": "Whether this Sidecar should allocate a TTY for itself, also requires 'stdin' to be true. Default is false.", + "type": "boolean" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Sidecar.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Sidecar's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Sidecar's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Sidecar wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "stepTemplate": { + "description": "StepTemplate is a template for a Step", "type": "object", "properties": { - "name": { - "description": "Name of the referenced step", + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the Step's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Image reference name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", "type": "string" } } }, - "results": { - "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "steps": { + "description": "Steps are the steps of the build; each step is run sequentially with the source mounted into /workspace.", "type": "array", "items": { - "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "description": "Step runs a subcomponent of a Task", "type": "object", "required": [ "name" ], "properties": { - "description": { - "description": "Description is a human-readable description of the result", + "args": { + "description": "Arguments to the entrypoint. The image's CMD is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "command": { + "description": "Entrypoint array. Not executed within a shell. The image's ENTRYPOINT is used if this is not provided. Variable references $(VAR_NAME) are expanded using the container's environment. If a variable cannot be resolved, the reference in the input string will be unchanged. Double $$ are reduced to a single $, which allows for escaping the $(VAR_NAME) syntax: i.e. \"$$(VAR_NAME)\" will produce the string literal \"$(VAR_NAME)\". Escaped references will never be expanded, regardless of whether the variable exists or not. Cannot be updated. More info: https://kubernetes.io/docs/tasks/inject-data-application/define-command-argument-container/#running-a-command-in-a-shell", + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "computeResources": { + "description": "ComputeResources required by this Step. Cannot be updated. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/", + "default": {}, + "$ref": "#/definitions/v1.ResourceRequirements" + }, + "env": { + "description": "List of environment variables to set in the Step. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvVar" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "name", + "x-kubernetes-patch-strategy": "merge" + }, + "envFrom": { + "description": "List of sources to populate environment variables in the Step. The keys defined within a source must be a C_IDENTIFIER. All invalid keys will be reported as an event when the Step is starting. When a key exists in multiple sources, the value associated with the last source will take precedence. Values defined by an Env with a duplicate key will take precedence. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.EnvFromSource" + }, + "x-kubernetes-list-type": "atomic" + }, + "image": { + "description": "Docker image name. More info: https://kubernetes.io/docs/concepts/containers/images", + "type": "string" + }, + "imagePullPolicy": { + "description": "Image pull policy. One of Always, Never, IfNotPresent. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated. More info: https://kubernetes.io/docs/concepts/containers/images#updating-images", "type": "string" }, "name": { - "description": "Name the given name", + "description": "Name of the Step specified as a DNS_LABEL. Each Step in a Task must have a unique name.", "type": "string", "default": "" }, - "properties": { - "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "onError": { + "description": "OnError defines the exiting behavior of a container on error can be set to [ continue | stopAndFail ]", + "type": "string" + }, + "params": { + "description": "Params declares parameters passed to this step action.", + "type": "array", + "items": { + "description": "Param declares an ParamValues to use for the parameter called name.", + "type": "object", + "required": [ + "name", + "value" + ], + "properties": { + "name": { + "type": "string", + "default": "" + }, + "value": { + "description": "ResultValue is a type alias of ParamValue", + "type": "object", + "required": [ + "Type", + "StringVal", + "ArrayVal", + "ObjectVal" + ], + "properties": { + "ArrayVal": { + "type": "array", + "items": { + "type": "string", + "default": "" + }, + "x-kubernetes-list-type": "atomic" + }, + "ObjectVal": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "StringVal": { + "description": "Represents the stored type of ParamValues.", + "type": "string", + "default": "" + }, + "Type": { + "type": "string", + "default": "" + } + } + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "ref": { + "description": "Ref can be used to refer to a specific instance of a StepAction.", "type": "object", - "additionalProperties": { - "default": {}, - "$ref": "#/definitions/v1.PropertySpec" + "properties": { + "name": { + "description": "Name of the referenced step", + "type": "string" + } } }, - "type": { - "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", - "type": "string" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "script": { - "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", - "type": "string" - }, - "securityContext": { - "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", - "$ref": "#/definitions/v1.SecurityContext" - }, - "stderrConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } - } - }, - "stdoutConfig": { - "description": "StepOutputConfig stores configuration for a step output stream.", - "type": "object", - "properties": { - "path": { - "description": "Path to duplicate stdout stream to on container's local filesystem.", - "type": "string" - } - } - }, - "timeout": { - "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", - "$ref": "#/definitions/v1.Duration" - }, - "volumeDevices": { - "description": "volumeDevices is the list of block devices to be used by the Step.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeDevice" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "devicePath", - "x-kubernetes-patch-strategy": "merge" - }, - "volumeMounts": { - "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.VolumeMount" - }, - "x-kubernetes-list-type": "atomic", - "x-kubernetes-patch-merge-key": "mountPath", - "x-kubernetes-patch-strategy": "merge" - }, - "workingDir": { - "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", - "type": "string" - }, - "workspaces": { - "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", - "type": "array", - "items": { - "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", - "type": "object", - "required": [ - "name", - "mountPath" - ], - "properties": { - "mountPath": { - "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", - "type": "string", - "default": "" + "results": { + "description": "Results declares StepResults produced by the Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.\n\nIt can be used in an inlined Step when used to store Results to $(step.results.resultName.path). It cannot be used when referencing StepActions using [v1.Step.Ref]. The Results declared by the StepActions will be stored here instead.", + "type": "array", + "items": { + "description": "StepResult used to describe the Results of a Step.\n\nThis is field is at an ALPHA stability level and gated by \"enable-step-actions\" feature flag.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is a human-readable description of the result", + "type": "string" + }, + "name": { + "description": "Name the given name", + "type": "string", + "default": "" + }, + "properties": { + "description": "Properties is the JSON Schema properties to support key-value pairs results.", + "type": "object", + "additionalProperties": { + "default": {}, + "$ref": "#/definitions/v1.PropertySpec" + } + }, + "type": { + "description": "The possible types are 'string', 'array', and 'object', with 'string' as the default.", + "type": "string" + } + } + }, + "x-kubernetes-list-type": "atomic" }, - "name": { - "description": "Name is the name of the workspace this Step or Sidecar wants access to.", - "type": "string", - "default": "" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "x-kubernetes-list-type": "atomic" - }, - "volumes": { - "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.Volume" - }, - "x-kubernetes-list-type": "atomic" - }, - "workspaces": { - "description": "Workspaces are the volumes that this Task requires.", - "type": "array", - "items": { - "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "description": { - "description": "Description is an optional human readable description of this volume.", - "type": "string" - }, - "mountPath": { - "description": "MountPath overrides the directory that the volume will be made available at.", - "type": "string" - }, - "name": { - "description": "Name is the name by which you can bind the volume at runtime.", - "type": "string", - "default": "" - }, - "optional": { - "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", - "type": "boolean" - }, - "readOnly": { - "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", - "type": "boolean" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "timeout": { - "description": "Time after which one retry attempt times out. Defaults to 1 hour. Refer Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", - "$ref": "#/definitions/v1.Duration" - }, - "workspaces": { - "description": "Workspaces is a list of WorkspaceBindings from volumes to workspaces.", - "type": "array", - "items": { - "description": "WorkspaceBinding maps a Task's declared workspace to a Volume.", - "type": "object", - "required": [ - "name" - ], - "properties": { - "configMap": { - "description": "ConfigMap represents a configMap that should populate this workspace.", - "$ref": "#/definitions/v1.ConfigMapVolumeSource" - }, - "csi": { - "description": "CSI (Container Storage Interface) represents ephemeral storage that is handled by certain external CSI drivers.", - "$ref": "#/definitions/v1.CSIVolumeSource" - }, - "emptyDir": { - "description": "EmptyDir represents a temporary directory that shares a Task's lifetime. More info: https://kubernetes.io/docs/concepts/storage/volumes#emptydir Either this OR PersistentVolumeClaim can be used.", - "$ref": "#/definitions/v1.EmptyDirVolumeSource" - }, - "name": { - "description": "Name is the name of the workspace populated by the volume.", - "type": "string", - "default": "" - }, - "persistentVolumeClaim": { - "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.", - "$ref": "#/definitions/v1.PersistentVolumeClaimVolumeSource" - }, - "projected": { - "description": "Projected represents a projected volume that should populate this workspace.", - "$ref": "#/definitions/v1.ProjectedVolumeSource" - }, - "secret": { - "description": "Secret represents a secret that should populate this workspace.", - "$ref": "#/definitions/v1.SecretVolumeSource" - }, - "subPath": { - "description": "SubPath is optionally a directory on the volume which should be used for this binding (i.e. the volume will be mounted at this sub directory).", - "type": "string" - }, - "volumeClaimTemplate": { - "description": "VolumeClaimTemplate is a template for a claim that will be created in the same namespace. The PipelineRun controller is responsible for creating a unique claim for each instance of PipelineRun.", - "$ref": "#/definitions/v1.PersistentVolumeClaim" - } - } - }, - "x-kubernetes-list-type": "atomic" - } - } - }, - "status": { - "description": "TaskRunStatus defines the observed state of TaskRun", - "type": "object", - "required": [ - "podName" - ], - "properties": { - "annotations": { - "description": "Annotations is additional Status fields for the Resource to save some additional State as well as convey more information to the user. This is roughly akin to Annotations on any k8s resource, just the reconciler conveying richer information outwards.", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "completionTime": { - "description": "CompletionTime is the time the build completed.", - "$ref": "#/definitions/v1.Time" - }, - "conditions": { - "description": "Conditions the latest available observations of a resource's current state.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/knative.Condition" - }, - "x-kubernetes-patch-merge-key": "type", - "x-kubernetes-patch-strategy": "merge" - }, - "observedGeneration": { - "description": "ObservedGeneration is the 'Generation' of the Service that was last processed by the controller.", - "type": "integer", - "format": "int64" - }, - "podName": { - "description": "PodName is the name of the pod responsible for executing this task's steps.", - "type": "string", - "default": "" - }, - "provenance": { - "description": "Provenance contains metadata about resources used in the TaskRun/PipelineRun such as the source from where a remote build definition was fetched. This field aims to carry minimum amoumt of metadata in *Run status so that Tekton Chains can capture them in the provenance.", - "type": "object", - "properties": { - "featureFlags": { - "description": "FeatureFlags identifies the feature flags that were used during the task/pipeline run", - "$ref": "#/definitions/github.com.tektoncd.pipeline.pkg.apis.config.FeatureFlags" - }, - "refSource": { - "description": "RefSource contains the information that can uniquely identify where a remote built definition came from i.e. Git repositories, Tekton Bundles in OCI registry and hub.", - "type": "object", - "properties": { - "digest": { - "description": "Digest is a collection of cryptographic digests for the contents of the artifact specified by URI. Example: {\"sha1\": \"f99d13e554ffcb696dee719fa85b695cb5b0f428\"}", - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "entryPoint": { - "description": "EntryPoint identifies the entry point into the build. This is often a path to a build definition file and/or a target label within that file. Example: \"task/git-clone/0.8/git-clone.yaml\"", - "type": "string" - }, - "uri": { - "description": "URI indicates the identity of the source of the build definition. Example: \"https://github.com/tektoncd/catalog\"", - "type": "string" - } - } - } - } - }, - "results": { - "description": "Results are the list of results written out by the task's containers", - "type": "array", - "items": { - "description": "TaskRunStepResult is a type alias of TaskRunResult", - "type": "object", - "required": [ - "name", - "value" - ], - "properties": { - "name": { - "description": "Name the given name", - "type": "string", - "default": "" - }, - "type": { - "description": "Type is the user-specified type of the result. The possible type is currently \"string\" and will support \"array\" in following work.", - "type": "string" - }, - "value": { - "description": "ResultValue is a type alias of ParamValue", - "type": "object", - "required": [ - "Type", - "StringVal", - "ArrayVal", - "ObjectVal" - ], - "properties": { - "ArrayVal": { + "script": { + "description": "Script is the contents of an executable file to execute.\n\nIf Script is not empty, the Step cannot have an Command and the Args will be passed to the Script.", + "type": "string" + }, + "securityContext": { + "description": "SecurityContext defines the security options the Step should be run with. If set, the fields of SecurityContext override the equivalent fields of PodSecurityContext. More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/", + "$ref": "#/definitions/v1.SecurityContext" + }, + "stderrConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "stdoutConfig": { + "description": "StepOutputConfig stores configuration for a step output stream.", + "type": "object", + "properties": { + "path": { + "description": "Path to duplicate stdout stream to on container's local filesystem.", + "type": "string" + } + } + }, + "timeout": { + "description": "Timeout is the time after which the step times out. Defaults to never. Refer to Go's ParseDuration documentation for expected format: https://golang.org/pkg/time/#ParseDuration", + "$ref": "#/definitions/v1.Duration" + }, + "volumeDevices": { + "description": "volumeDevices is the list of block devices to be used by the Step.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeDevice" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "devicePath", + "x-kubernetes-patch-strategy": "merge" + }, + "volumeMounts": { + "description": "Volumes to mount into the Step's filesystem. Cannot be updated.", + "type": "array", + "items": { + "default": {}, + "$ref": "#/definitions/v1.VolumeMount" + }, + "x-kubernetes-list-type": "atomic", + "x-kubernetes-patch-merge-key": "mountPath", + "x-kubernetes-patch-strategy": "merge" + }, + "workingDir": { + "description": "Step's working directory. If not specified, the container runtime's default will be used, which might be configured in the container image. Cannot be updated.", + "type": "string" + }, + "workspaces": { + "description": "This is an alpha field. You must set the \"enable-api-fields\" feature flag to \"alpha\" for this field to be supported.\n\nWorkspaces is a list of workspaces from the Task that this Step wants exclusive access to. Adding a workspace to this list means that any other Step or Sidecar that does not also request this Workspace will not have access to it.", + "type": "array", + "items": { + "description": "WorkspaceUsage is used by a Step or Sidecar to declare that it wants isolated access to a Workspace defined in a Task.", + "type": "object", + "required": [ + "name", + "mountPath" + ], + "properties": { + "mountPath": { + "description": "MountPath is the path that the workspace should be mounted to inside the Step or Sidecar, overriding any MountPath specified in the Task's WorkspaceDeclaration.", + "type": "string", + "default": "" + }, + "name": { + "description": "Name is the name of the workspace this Step or Sidecar wants access to.", + "type": "string", + "default": "" + } + } + }, + "x-kubernetes-list-type": "atomic" + } + } + }, + "x-kubernetes-list-type": "atomic" + }, + "volumes": { + "description": "Volumes is a collection of volumes that are available to mount into the steps of the build.", "type": "array", "items": { - "type": "string", - "default": "" + "default": {}, + "$ref": "#/definitions/v1.Volume" }, "x-kubernetes-list-type": "atomic" }, - "ObjectVal": { - "type": "object", - "additionalProperties": { - "type": "string", - "default": "" - } - }, - "StringVal": { - "description": "Represents the stored type of ParamValues.", - "type": "string", - "default": "" - }, - "Type": { - "type": "string", - "default": "" + "workspaces": { + "description": "Workspaces are the volumes that this Task requires.", + "type": "array", + "items": { + "description": "WorkspaceDeclaration is a declaration of a volume that a Task requires.", + "type": "object", + "required": [ + "name" + ], + "properties": { + "description": { + "description": "Description is an optional human readable description of this volume.", + "type": "string" + }, + "mountPath": { + "description": "MountPath overrides the directory that the volume will be made available at.", + "type": "string" + }, + "name": { + "description": "Name is the name by which you can bind the volume at runtime.", + "type": "string", + "default": "" + }, + "optional": { + "description": "Optional marks a Workspace as not being required in TaskRuns. By default this field is false and so declared workspaces are required.", + "type": "boolean" + }, + "readOnly": { + "description": "ReadOnly dictates whether a mounted volume is writable. By default this field is false and so mounted volumes are writable.", + "type": "boolean" + } + } + }, + "x-kubernetes-list-type": "atomic" } } } @@ -5863,15 +29669,6 @@ }, "x-kubernetes-list-type": "atomic" }, - "retriesStatus": { - "description": "RetriesStatus contains the history of TaskRunStatus in case of a retry in order to keep record of failures. All TaskRunStatus stored in RetriesStatus will have no date within the RetriesStatus as is redundant.", - "type": "array", - "items": { - "default": {}, - "$ref": "#/definitions/v1.TaskRunStatus" - }, - "x-kubernetes-list-type": "atomic" - }, "sidecars": { "description": "The list has one entry per sidecar in the manifest. Each entry is represents the imageid of the corresponding sidecar.", "type": "array", @@ -6755,126 +30552,7 @@ }, "crd": { "metadata": { - "name": "taskruns.tekton.dev", - "uid": "2b0cef6e-0668-443f-9cf9-eebfa8dd8a7e", - "resourceVersion": "149693906", - "generation": 3, - "creationTimestamp": "2024-03-20T05:58:18Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:18Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:18Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "webhook", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-25T16:45:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {}, - "f:service": { - "f:path": {} - } - } - } - } - } - } - } - ] + "name": "taskruns.tekton.dev" }, "spec": { "group": "tekton.dev", @@ -6967,42 +30645,10 @@ ] } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "path": "/resource-conversion", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1beta1", - "v1" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:18Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:18Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "taskruns", "singular": "taskrun", @@ -7263,90 +30909,7 @@ }, "crd": { "metadata": { - "name": "stepactions.tekton.dev", - "uid": "f0848bb2-32bf-49d1-91f9-9369098d8120", - "resourceVersion": "145322355", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:17Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "stepactions.tekton.dev" }, "spec": { "group": "tekton.dev", @@ -7377,27 +30940,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "stepactions", "singular": "stepaction", @@ -7525,90 +31071,7 @@ }, "crd": { "metadata": { - "name": "verificationpolicies.tekton.dev", - "uid": "0a0631f4-031f-4f4d-8281-95f647eff502", - "resourceVersion": "145322463", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:22Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:22Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "verificationpolicies.tekton.dev" }, "spec": { "group": "tekton.dev", @@ -7636,27 +31099,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:22Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:22Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "verificationpolicies", "singular": "verificationpolicy", @@ -7716,103 +31162,7 @@ }, "crd": { "metadata": { - "name": "clustertasks.tekton.dev", - "uid": "2981162f-6fd3-4c71-978d-94bdf8e5a760", - "resourceVersion": "145322095", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:06Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:06Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:06Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clustertasks.tekton.dev" }, "spec": { "group": "tekton.dev", @@ -7838,44 +31188,15 @@ "x-kubernetes-preserve-unknown-fields": true } }, - "subresources": { - "status": {} - } - } - ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "port": 443 - } - }, - "conversionReviewVersions": [ - "v1beta1" - ] - } - } - }, - "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:06Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:06Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" + "subresources": { + "status": {} + } } ], + "conversion": {} + }, + "status": { + "conditions": [], "acceptedNames": { "plural": "clustertasks", "singular": "clustertask", @@ -7955,6 +31276,26 @@ "kind": { "type": "string" }, + "metadata": { + "description": "PipelineTaskMetadata contains the labels or annotations for an EmbeddedTask", + "type": "object", + "properties": { + "annotations": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + }, + "labels": { + "type": "object", + "additionalProperties": { + "type": "string", + "default": "" + } + } + } + }, "spec": { "description": "Spec is a specification of a custom task", "default": {}, @@ -8065,8 +31406,26 @@ "default": "" }, "persistentVolumeClaim": { - "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Either this OR EmptyDir can be used.", - "$ref": "#/definitions/v1.PersistentVolumeClaimVolumeSource" + "description": "PersistentVolumeClaimVolumeSource represents a reference to a PersistentVolumeClaim in the same namespace. Directly attached to the vmi via qemu. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "object", + "required": [ + "claimName" + ], + "properties": { + "claimName": { + "description": "claimName is the name of a PersistentVolumeClaim in the same namespace as the pod using this volume. More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims", + "type": "string", + "default": "" + }, + "hotpluggable": { + "description": "Hotpluggable indicates whether the volume can be hotplugged and hotunplugged.", + "type": "boolean" + }, + "readOnly": { + "description": "readOnly Will force the ReadOnly setting in VolumeMounts. Default false.", + "type": "boolean" + } + } }, "projected": { "description": "Projected represents a projected volume that should populate this workspace.", @@ -8105,90 +31464,7 @@ }, "crd": { "metadata": { - "name": "customruns.tekton.dev", - "uid": "f404a7a4-4585-4714-bb48-e19a7e2a8515", - "resourceVersion": "145322119", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:07Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-pipelines", - "pipeline.tekton.dev/release": "v0.57.0", - "version": "v0.57.0" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:07Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:pipeline.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "customruns.tekton.dev" }, "spec": { "group": "tekton.dev", @@ -8241,27 +31517,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:07Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:07Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "customruns", "singular": "customrun", @@ -8483,120 +31742,7 @@ }, "crd": { "metadata": { - "name": "resolutionrequests.resolution.tekton.dev", - "uid": "ac07f8e2-8262-4baf-8f38-c29ec2fc3e72", - "resourceVersion": "149693904", - "generation": 3, - "creationTimestamp": "2024-03-20T05:58:14Z", - "labels": { - "resolution.tekton.dev/release": "devel" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:resolution.tekton.dev/release": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {}, - "f:webhook": { - ".": {}, - "f:clientConfig": { - ".": {}, - "f:service": { - ".": {}, - "f:name": {}, - "f:namespace": {}, - "f:port": {} - } - }, - "f:conversionReviewVersions": {} - } - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - }, - { - "manager": "webhook", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-25T16:45:14Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - "f:webhook": { - "f:clientConfig": { - "f:caBundle": {}, - "f:service": { - "f:path": {} - } - } - } - } - } - } - } - ] + "name": "resolutionrequests.resolution.tekton.dev" }, "spec": { "group": "resolution.tekton.dev", @@ -8690,42 +31836,10 @@ ] } ], - "conversion": { - "strategy": "Webhook", - "webhook": { - "clientConfig": { - "service": { - "namespace": "tekton", - "name": "tekton-pipelines-webhook", - "path": "/resource-conversion", - "port": 443 - }, - "caBundle": "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" - }, - "conversionReviewVersions": [ - "v1alpha1", - "v1beta1" - ] - } - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:14Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:14Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "resolutionrequests", "singular": "resolutionrequest", @@ -8823,92 +31937,7 @@ }, "crd": { "metadata": { - "name": "clusterinterceptors.triggers.tekton.dev", - "uid": "52b5aa04-99af-4a1b-81fb-34d973a4d34f", - "resourceVersion": "145322744", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:33Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:33Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:33Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clusterinterceptors.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -8942,27 +31971,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:33Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:33Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusterinterceptors", "singular": "clusterinterceptor", @@ -9027,92 +32039,7 @@ }, "crd": { "metadata": { - "name": "interceptors.triggers.tekton.dev", - "uid": "6f9c1572-a697-42fb-be3d-13bcae5a4a9a", - "resourceVersion": "145322796", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:36Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:36Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:36Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "interceptors.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -9146,27 +32073,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:36Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:36Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "interceptors", "singular": "interceptor", @@ -9231,92 +32141,7 @@ }, "crd": { "metadata": { - "name": "clustertriggerbindings.triggers.tekton.dev", - "uid": "2eb3f587-3b2d-4be1-b6ee-26c464e411a7", - "resourceVersion": "145322757", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:33Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:33Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:33Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clustertriggerbindings.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -9364,27 +32189,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:33Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:33Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clustertriggerbindings", "singular": "clustertriggerbinding", @@ -9449,92 +32257,7 @@ }, "crd": { "metadata": { - "name": "eventlisteners.triggers.tekton.dev", - "uid": "63c40797-d756-4f4a-b21d-d15056ba0e73", - "resourceVersion": "145322763", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:34Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:34Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:34Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "eventlisteners.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -9636,27 +32359,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:34Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:34Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "eventlisteners", "singular": "eventlistener", @@ -9748,92 +32454,7 @@ }, "crd": { "metadata": { - "name": "triggers.triggers.tekton.dev", - "uid": "14cc5569-b8fe-4b6c-a452-23a631e2fb4a", - "resourceVersion": "145322927", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:40Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:40Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:40Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "triggers.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -9881,27 +32502,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:40Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:40Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "triggers", "singular": "trigger", @@ -9966,92 +32570,7 @@ }, "crd": { "metadata": { - "name": "triggerbindings.triggers.tekton.dev", - "uid": "757180b7-d810-4996-b380-2fc3d1937dbe", - "resourceVersion": "145322917", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:40Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:40Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:40Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "triggerbindings.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -10099,27 +32618,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:40Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:40Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "triggerbindings", "singular": "triggerbinding", @@ -10184,92 +32686,7 @@ }, "crd": { "metadata": { - "name": "triggertemplates.triggers.tekton.dev", - "uid": "49767410-43ac-4710-8a1b-e0a08f40dfd9", - "resourceVersion": "145322947", - "generation": 1, - "creationTimestamp": "2024-03-20T05:58:41Z", - "labels": { - "app.kubernetes.io/instance": "default", - "app.kubernetes.io/part-of": "tekton-triggers", - "triggers.tekton.dev/release": "v0.26.1", - "version": "v0.26.1" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:41Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-03-20T05:58:41Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:labels": { - ".": {}, - "f:app.kubernetes.io/instance": {}, - "f:app.kubernetes.io/part-of": {}, - "f:triggers.tekton.dev/release": {}, - "f:version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "triggertemplates.triggers.tekton.dev" }, "spec": { "group": "triggers.tekton.dev", @@ -10317,27 +32734,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:41Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-03-20T05:58:41Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "triggertemplates", "singular": "triggertemplate", diff --git a/data/traefik.json b/data/traefik.json index bdaa94f..55b4675 100644 --- a/data/traefik.json +++ b/data/traefik.json @@ -262,82 +262,7 @@ }, "crd": { "metadata": { - "name": "ingressroutes.traefik.io", - "uid": "24ef3a94-9267-4836-b2ca-c4a4ae99fc68", - "resourceVersion": "127259335", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutes.traefik.io" }, "spec": { "group": "traefik.io", @@ -616,27 +541,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutes", "singular": "ingressroute", @@ -928,82 +836,7 @@ }, "crd": { "metadata": { - "name": "ingressroutes.traefik.containo.us", - "uid": "1e86305d-5c75-4773-8c8d-1973da7f198d", - "resourceVersion": "127259320", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutes.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -1282,27 +1115,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutes", "singular": "ingressroute", @@ -1594,82 +1410,7 @@ }, "crd": { "metadata": { - "name": "ingressroutes.traefik.io", - "uid": "24ef3a94-9267-4836-b2ca-c4a4ae99fc68", - "resourceVersion": "127259335", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutes.traefik.io" }, "spec": { "group": "traefik.io", @@ -1948,27 +1689,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutes", "singular": "ingressroute", @@ -2211,82 +1935,7 @@ }, "crd": { "metadata": { - "name": "ingressroutetcps.traefik.io", - "uid": "45ec47de-5e0e-4832-8683-d5dfc4d7d176", - "resourceVersion": "127259351", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutetcps.traefik.io" }, "spec": { "group": "traefik.io", @@ -2514,27 +2163,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutetcps", "singular": "ingressroutetcp", @@ -2775,82 +2407,7 @@ }, "crd": { "metadata": { - "name": "ingressroutetcps.traefik.containo.us", - "uid": "aaec32a9-fbd4-404e-9a0f-b82e30e9bc04", - "resourceVersion": "127259342", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutetcps.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -3078,27 +2635,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutetcps", "singular": "ingressroutetcp", @@ -3339,82 +2879,7 @@ }, "crd": { "metadata": { - "name": "ingressroutetcps.traefik.io", - "uid": "45ec47de-5e0e-4832-8683-d5dfc4d7d176", - "resourceVersion": "127259351", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressroutetcps.traefik.io" }, "spec": { "group": "traefik.io", @@ -3642,27 +3107,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressroutetcps", "singular": "ingressroutetcp", @@ -3786,82 +3234,7 @@ }, "crd": { "metadata": { - "name": "ingressrouteudps.traefik.io", - "uid": "c317a95a-2741-4379-aff6-4e0b214a6eb9", - "resourceVersion": "127259372", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressrouteudps.traefik.io" }, "spec": { "group": "traefik.io", @@ -3970,27 +3343,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressrouteudps", "singular": "ingressrouteudp", @@ -4112,82 +3468,7 @@ }, "crd": { "metadata": { - "name": "ingressrouteudps.traefik.containo.us", - "uid": "4d652a63-d013-469b-a785-bf6654ce23e1", - "resourceVersion": "127259360", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressrouteudps.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -4296,27 +3577,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressrouteudps", "singular": "ingressrouteudp", @@ -4438,82 +3702,7 @@ }, "crd": { "metadata": { - "name": "ingressrouteudps.traefik.io", - "uid": "c317a95a-2741-4379-aff6-4e0b214a6eb9", - "resourceVersion": "127259372", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "ingressrouteudps.traefik.io" }, "spec": { "group": "traefik.io", @@ -4622,27 +3811,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "ingressrouteudps", "singular": "ingressrouteudp", @@ -5537,82 +4709,7 @@ }, "crd": { "metadata": { - "name": "middlewares.traefik.io", - "uid": "7fac2a0b-f1d8-4b6f-ba4b-f708956b4890", - "resourceVersion": "127259400", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "middlewares.traefik.io" }, "spec": { "group": "traefik.io", @@ -6532,27 +5629,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewares", "singular": "middleware", @@ -7445,82 +6525,7 @@ }, "crd": { "metadata": { - "name": "middlewares.traefik.containo.us", - "uid": "1ef7b5d4-9104-424a-9af6-0d4017d957b0", - "resourceVersion": "127259382", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "middlewares.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -8440,27 +7445,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewares", "singular": "middleware", @@ -9353,93 +8341,18 @@ }, "crd": { "metadata": { - "name": "middlewares.traefik.io", - "uid": "7fac2a0b-f1d8-4b6f-ba4b-f708956b4890", - "resourceVersion": "127259400", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" + "name": "middlewares.traefik.io" + }, + "spec": { + "group": "traefik.io", + "names": { + "plural": "middlewares", + "singular": "middleware", + "kind": "Middleware", + "listKind": "MiddlewareList" }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] - }, - "spec": { - "group": "traefik.io", - "names": { - "plural": "middlewares", - "singular": "middleware", - "kind": "Middleware", - "listKind": "MiddlewareList" - }, - "scope": "Namespaced", - "versions": [ + "scope": "Namespaced", + "versions": [ { "name": "v1alpha1", "served": true, @@ -10348,27 +9261,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewares", "singular": "middleware", @@ -10462,82 +9358,7 @@ }, "crd": { "metadata": { - "name": "middlewaretcps.traefik.io", - "uid": "e1cda2f2-7785-407c-a81e-8fbff2975693", - "resourceVersion": "127259431", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "middlewaretcps.traefik.io" }, "spec": { "group": "traefik.io", @@ -10608,27 +9429,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewaretcps", "singular": "middlewaretcp", @@ -10720,82 +9524,7 @@ }, "crd": { "metadata": { - "name": "middlewaretcps.traefik.containo.us", - "uid": "51aee58c-6b32-44cb-9e83-7f9ef7abd25a", - "resourceVersion": "127259409", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "middlewaretcps.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -10866,27 +9595,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewaretcps", "singular": "middlewaretcp", @@ -10978,82 +9690,7 @@ }, "crd": { "metadata": { - "name": "middlewaretcps.traefik.io", - "uid": "e1cda2f2-7785-407c-a81e-8fbff2975693", - "resourceVersion": "127259431", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "middlewaretcps.traefik.io" }, "spec": { "group": "traefik.io", @@ -11124,27 +9761,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "middlewaretcps", "singular": "middlewaretcp", @@ -11274,82 +9894,7 @@ }, "crd": { "metadata": { - "name": "serverstransports.traefik.io", - "uid": "9274dcdb-49e0-4fc5-9c1c-33580ba384f3", - "resourceVersion": "127259447", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "serverstransports.traefik.io" }, "spec": { "group": "traefik.io", @@ -11496,27 +10041,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "serverstransports", "singular": "serverstransport", @@ -11644,82 +10172,7 @@ }, "crd": { "metadata": { - "name": "serverstransports.traefik.containo.us", - "uid": "986f1c56-c1f5-4841-aaed-a4ec196f739b", - "resourceVersion": "127259441", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "serverstransports.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -11866,27 +10319,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "serverstransports", "singular": "serverstransport", @@ -12014,82 +10450,7 @@ }, "crd": { "metadata": { - "name": "serverstransports.traefik.io", - "uid": "9274dcdb-49e0-4fc5-9c1c-33580ba384f3", - "resourceVersion": "127259447", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "serverstransports.traefik.io" }, "spec": { "group": "traefik.io", @@ -12236,27 +10597,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "serverstransports", "singular": "serverstransport", @@ -12387,82 +10731,7 @@ }, "crd": { "metadata": { - "name": "tlsoptions.traefik.io", - "uid": "18e029bb-37e7-4b01-972b-032c8033df3e", - "resourceVersion": "127259480", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsoptions.traefik.io" }, "spec": { "group": "traefik.io", @@ -12570,27 +10839,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsoptions", "singular": "tlsoption", @@ -12719,82 +10971,7 @@ }, "crd": { "metadata": { - "name": "tlsoptions.traefik.containo.us", - "uid": "31d7fef3-7cba-48ac-9164-0667ade68716", - "resourceVersion": "127259468", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsoptions.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -12902,27 +11079,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsoptions", "singular": "tlsoption", @@ -13051,82 +11211,7 @@ }, "crd": { "metadata": { - "name": "tlsoptions.traefik.io", - "uid": "18e029bb-37e7-4b01-972b-032c8033df3e", - "resourceVersion": "127259480", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsoptions.traefik.io" }, "spec": { "group": "traefik.io", @@ -13234,27 +11319,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsoptions", "singular": "tlsoption", @@ -13381,82 +11449,7 @@ }, "crd": { "metadata": { - "name": "tlsstores.traefik.io", - "uid": "b172383a-d8db-42ac-bc9c-cad64d153f9e", - "resourceVersion": "127259504", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsstores.traefik.io" }, "spec": { "group": "traefik.io", @@ -13560,27 +11553,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsstores", "singular": "tlsstore", @@ -13705,82 +11681,7 @@ }, "crd": { "metadata": { - "name": "tlsstores.traefik.containo.us", - "uid": "ef4a710a-ac8f-4e2c-aea9-85bb9f63a711", - "resourceVersion": "127259489", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsstores.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -13884,27 +11785,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsstores", "singular": "tlsstore", @@ -14029,82 +11913,7 @@ }, "crd": { "metadata": { - "name": "tlsstores.traefik.io", - "uid": "b172383a-d8db-42ac-bc9c-cad64d153f9e", - "resourceVersion": "127259504", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "tlsstores.traefik.io" }, "spec": { "group": "traefik.io", @@ -14208,27 +12017,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "tlsstores", "singular": "tlsstore", @@ -14622,82 +12414,7 @@ }, "crd": { "metadata": { - "name": "traefikservices.traefik.io", - "uid": "305cd8a7-da1b-4a34-b9ff-e1312baa5400", - "resourceVersion": "127259531", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "traefikservices.traefik.io" }, "spec": { "group": "traefik.io", @@ -15092,27 +12809,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "traefikservices", "singular": "traefikservice", @@ -15504,82 +13204,7 @@ }, "crd": { "metadata": { - "name": "traefikservices.traefik.containo.us", - "uid": "48866bd9-3084-489c-bceb-211fa2f1f610", - "resourceVersion": "127259518", - "generation": 2, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "traefikservices.traefik.containo.us" }, "spec": { "group": "traefik.containo.us", @@ -15974,27 +13599,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "traefikservices", "singular": "traefikservice", @@ -16386,82 +13994,7 @@ }, "crd": { "metadata": { - "name": "traefikservices.traefik.io", - "uid": "305cd8a7-da1b-4a34-b9ff-e1312baa5400", - "resourceVersion": "127259531", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:11Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:11Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "traefikservices.traefik.io" }, "spec": { "group": "traefik.io", @@ -16856,27 +14389,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:11Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "traefikservices", "singular": "traefikservice", @@ -17006,82 +14522,7 @@ }, "crd": { "metadata": { - "name": "serverstransporttcps.traefik.io", - "uid": "fdb7f35e-cd59-4769-a730-a0ad7a4adcde", - "resourceVersion": "127259462", - "generation": 1, - "creationTimestamp": "2024-02-22T09:46:20Z", - "annotations": { - "controller-gen.kubebuilder.io/version": "v0.6.2" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-22T09:46:20Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:controller-gen.kubebuilder.io/version": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "serverstransporttcps.traefik.io" }, "spec": { "group": "traefik.io", @@ -17213,27 +14654,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-02-22T09:46:20Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-02-22T09:46:20Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "serverstransporttcps", "singular": "serverstransporttcp", diff --git a/data/vynil.json b/data/vynil.json index b3149c2..7fec067 100644 --- a/data/vynil.json +++ b/data/vynil.json @@ -65,84 +65,7 @@ }, "crd": { "metadata": { - "name": "distribs.vynil.solidite.fr", - "uid": "e4052365-8341-4618-80de-154057cf5613", - "resourceVersion": "118456240", - "generation": 2, - "creationTimestamp": "2023-06-29T06:16:28Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"distribs.vynil.solidite.fr\"},\"spec\":{\"group\":\"vynil.solidite.fr\",\"names\":{\"categories\":[],\"kind\":\"Distrib\",\"plural\":\"distribs\",\"shortNames\":[\"dist\"],\"singular\":\"distrib\"},\"scope\":\"Cluster\",\"versions\":[{\"additionalPrinterColumns\":[{\"description\":\"Git url\",\"jsonPath\":\".spec.url\",\"name\":\"url\",\"type\":\"string\"},{\"description\":\"Update schedule\",\"jsonPath\":\".spec.schedule\",\"name\":\"schedule\",\"type\":\"string\"},{\"description\":\"Last update date\",\"format\":\"date-time\",\"jsonPath\":\".status.last_updated\",\"name\":\"last_updated\",\"type\":\"string\"}],\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"Auto-generated derived type for DistribSpec via `CustomResource`\",\"properties\":{\"spec\":{\"description\":\"Distrib:\\n\\nDescribe a source of components distribution git repository\",\"properties\":{\"branch\":{\"description\":\"Git branch\",\"nullable\":true,\"type\":\"string\"},\"insecure\":{\"description\":\"Git clone URL\",\"nullable\":true,\"type\":\"boolean\"},\"login\":{\"description\":\"Git authentication\",\"nullable\":true,\"properties\":{\"git_credentials\":{\"description\":\"a git-credentials store file (format: https://\\u003cusername\\u003e:\\u003cpassword|token\\u003e@\\u003curl\\u003e/\\u003crepo\\u003e)\",\"nullable\":true,\"properties\":{\"key\":{\"description\":\"Key of the secret containing the file\",\"type\":\"string\"},\"name\":{\"description\":\"Name of the secret\",\"type\":\"string\"}},\"required\":[\"key\",\"name\"],\"type\":\"object\"},\"ssh_key\":{\"description\":\"SSH private key\",\"nullable\":true,\"properties\":{\"key\":{\"description\":\"Key of the secret containing the file\",\"type\":\"string\"},\"name\":{\"description\":\"Name of the secret\",\"type\":\"string\"}},\"required\":[\"key\",\"name\"],\"type\":\"object\"}},\"type\":\"object\"},\"schedule\":{\"description\":\"Actual cron-type expression that defines the interval of the updates.\",\"type\":\"string\"},\"url\":{\"description\":\"Git clone URL\",\"type\":\"string\"}},\"required\":[\"schedule\",\"url\"],\"type\":\"object\"},\"status\":{\"description\":\"The status object of `Distrib`\",\"nullable\":true,\"properties\":{\"components\":{\"description\":\"List of known category-\\u003ecomponents\",\"type\":\"object\",\"x-kubernetes-preserve-unknown-fields\":true},\"errors\":{\"description\":\"Set with the messages if any error occured\",\"items\":{\"type\":\"string\"},\"nullable\":true,\"type\":\"array\"},\"last_updated\":{\"description\":\"Last update date\",\"format\":\"date-time\",\"type\":\"string\"}},\"required\":[\"components\",\"last_updated\"],\"type\":\"object\"}},\"required\":[\"spec\"],\"title\":\"Distrib\",\"type\":\"object\"}},\"served\":true,\"storage\":true,\"subresources\":{\"status\":{}}}]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-09T16:26:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "distribs.vynil.solidite.fr" }, "spec": { "group": "vynil.solidite.fr", @@ -301,27 +224,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:28Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:28Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "distribs", "singular": "distrib", @@ -449,84 +355,7 @@ }, "crd": { "metadata": { - "name": "installs.vynil.solidite.fr", - "uid": "71b0970d-55e3-4a31-8505-1143ffd8713f", - "resourceVersion": "118456241", - "generation": 2, - "creationTimestamp": "2023-06-29T06:16:28Z", - "annotations": { - "kubectl.kubernetes.io/last-applied-configuration": "{\"apiVersion\":\"apiextensions.k8s.io/v1\",\"kind\":\"CustomResourceDefinition\",\"metadata\":{\"annotations\":{},\"name\":\"installs.vynil.solidite.fr\"},\"spec\":{\"group\":\"vynil.solidite.fr\",\"names\":{\"categories\":[],\"kind\":\"Install\",\"plural\":\"installs\",\"shortNames\":[\"inst\"],\"singular\":\"install\"},\"scope\":\"Namespaced\",\"versions\":[{\"additionalPrinterColumns\":[{\"description\":\"Distribution\",\"jsonPath\":\".spec.distrib\",\"name\":\"dist\",\"type\":\"string\"},{\"description\":\"Category\",\"jsonPath\":\".spec.category\",\"name\":\"cat\",\"type\":\"string\"},{\"description\":\"Component\",\"jsonPath\":\".spec.component\",\"name\":\"comp\",\"type\":\"string\"},{\"description\":\"Status\",\"jsonPath\":\".status.status\",\"name\":\"status\",\"type\":\"string\"},{\"description\":\"Errors\",\"jsonPath\":\".status.errors[*]\",\"name\":\"errors\",\"type\":\"string\"},{\"description\":\"Last update date\",\"format\":\"date-time\",\"jsonPath\":\".status.last_updated\",\"name\":\"last_updated\",\"type\":\"string\"}],\"name\":\"v1\",\"schema\":{\"openAPIV3Schema\":{\"description\":\"Auto-generated derived type for InstallSpec via `CustomResource`\",\"properties\":{\"spec\":{\"description\":\"Generate the Kubernetes wrapper struct `Install` from our Spec and Status struct\\n\\nThis provides a hook for generating the CRD yaml (in crdgen.rs) Maybe\",\"properties\":{\"auto_upgrade\":{\"description\":\"Should we automatically upgrade the package\",\"nullable\":true,\"type\":\"boolean\"},\"category\":{\"description\":\"The category name\",\"type\":\"string\"},\"component\":{\"description\":\"The package name\",\"type\":\"string\"},\"distrib\":{\"description\":\"The distribution source name\",\"type\":\"string\"},\"options\":{\"description\":\"Parameters\",\"nullable\":true,\"type\":\"object\",\"x-kubernetes-preserve-unknown-fields\":true}},\"required\":[\"category\",\"component\",\"distrib\"],\"type\":\"object\"},\"status\":{\"description\":\"The status object of `Install`\",\"nullable\":true,\"properties\":{\"commit_id\":{\"description\":\"component version applied\",\"type\":\"string\"},\"digest\":{\"description\":\"Options digests\",\"type\":\"string\"},\"errors\":{\"description\":\"Set with the messages if any error occured\",\"items\":{\"type\":\"string\"},\"nullable\":true,\"type\":\"array\"},\"last_updated\":{\"description\":\"Last update date\",\"format\":\"date-time\",\"type\":\"string\"},\"plan\":{\"description\":\"Currently planned changed, only set if planned is true\",\"nullable\":true,\"type\":\"object\",\"x-kubernetes-preserve-unknown-fields\":true},\"status\":{\"description\":\"Current high-level status of the installation\",\"type\":\"string\"},\"tfstate\":{\"description\":\"Current terraform status\",\"nullable\":true,\"type\":\"object\",\"x-kubernetes-preserve-unknown-fields\":true}},\"required\":[\"commit_id\",\"digest\",\"last_updated\",\"status\"],\"type\":\"object\"}},\"required\":[\"spec\"],\"title\":\"Install\",\"type\":\"object\"}},\"served\":true,\"storage\":true,\"subresources\":{\"status\":{}}}]}}\n" - }, - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:16:28Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-client-side-apply", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-02-09T16:26:15Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:metadata": { - "f:annotations": { - ".": {}, - "f:kubectl.kubernetes.io/last-applied-configuration": {} - } - }, - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "installs.vynil.solidite.fr" }, "spec": { "group": "vynil.solidite.fr", @@ -685,27 +514,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:28Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:16:28Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "installs", "singular": "install", diff --git a/data/zalando.json b/data/zalando.json index a6ccce7..0d8176d 100644 --- a/data/zalando.json +++ b/data/zalando.json @@ -730,77 +730,7 @@ }, "crd": { "metadata": { - "name": "postgresqls.acid.zalan.do", - "uid": "2ad1a541-c3a4-49e7-bb1b-da93a4f193a9", - "resourceVersion": "2176", - "generation": 1, - "creationTimestamp": "2023-06-29T06:18:16Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "postgres-operator", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2023-06-29T06:18:16Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:categories": {}, - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:shortNames": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "postgresqls.acid.zalan.do" }, "spec": { "group": "acid.zalan.do", @@ -1706,27 +1636,10 @@ ] } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:16Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2023-06-29T06:18:16Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "postgresqls", "singular": "postgresql", @@ -1844,73 +1757,7 @@ }, "crd": { "metadata": { - "name": "clusterkopfpeerings.zalando.org", - "uid": "db255947-d5ac-431f-bf01-f4cebc7e5527", - "resourceVersion": "104674813", - "generation": 1, - "creationTimestamp": "2024-01-18T17:34:17Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "clusterkopfpeerings.zalando.org" }, "spec": { "group": "zalando.org", @@ -1939,27 +1786,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "clusterkopfpeerings", "singular": "clusterkopfpeering", @@ -2018,73 +1848,7 @@ }, "crd": { "metadata": { - "name": "kopfpeerings.zalando.org", - "uid": "a331063c-7e02-4081-9deb-e4f16139e917", - "resourceVersion": "104674814", - "generation": 1, - "creationTimestamp": "2024-01-18T17:34:17Z", - "managedFields": [ - { - "manager": "kube-apiserver", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:status": { - "f:acceptedNames": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:conditions": { - "k:{\"type\":\"Established\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - }, - "k:{\"type\":\"NamesAccepted\"}": { - ".": {}, - "f:lastTransitionTime": {}, - "f:message": {}, - "f:reason": {}, - "f:status": {}, - "f:type": {} - } - } - } - }, - "subresource": "status" - }, - { - "manager": "kubectl-create", - "operation": "Update", - "apiVersion": "apiextensions.k8s.io/v1", - "time": "2024-01-18T17:34:17Z", - "fieldsType": "FieldsV1", - "fieldsV1": { - "f:spec": { - "f:conversion": { - ".": {}, - "f:strategy": {} - }, - "f:group": {}, - "f:names": { - "f:kind": {}, - "f:listKind": {}, - "f:plural": {}, - "f:singular": {} - }, - "f:scope": {}, - "f:versions": {} - } - } - } - ] + "name": "kopfpeerings.zalando.org" }, "spec": { "group": "zalando.org", @@ -2113,27 +1877,10 @@ } } ], - "conversion": { - "strategy": "None" - } + "conversion": {} }, "status": { - "conditions": [ - { - "type": "NamesAccepted", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "NoConflicts", - "message": "no conflicts found" - }, - { - "type": "Established", - "status": "True", - "lastTransitionTime": "2024-01-18T17:34:17Z", - "reason": "InitialNamesAccepted", - "message": "the initial names have been accepted" - } - ], + "conditions": [], "acceptedNames": { "plural": "kopfpeerings", "singular": "kopfpeering", diff --git a/front/components/core/EventList.vue b/front/components/core/EventList.vue index 34654c3..9fad732 100644 --- a/front/components/core/EventList.vue +++ b/front/components/core/EventList.vue @@ -8,7 +8,6 @@ const props=withDefaults(defineProps<{model: object[], useAction?:boolean, useRe showNamespace: false, showKind: true, }); -console.log('EventList',props.model)