diff --git a/Makefile.version.aarch64.var b/Makefile.version.aarch64.var
index 4fa84c0b6a..e5f808cd95 100644
--- a/Makefile.version.aarch64.var
+++ b/Makefile.version.aarch64.var
@@ -1 +1 @@
-OCP_VERSION := 4.19.0-0.nightly-arm64-2025-01-20-000530
+OCP_VERSION := 4.19.0-0.nightly-arm64-2025-01-22-000530
diff --git a/Makefile.version.x86_64.var b/Makefile.version.x86_64.var
index e93204e5fb..b725953f2a 100644
--- a/Makefile.version.x86_64.var
+++ b/Makefile.version.x86_64.var
@@ -1 +1 @@
-OCP_VERSION := 4.19.0-0.nightly-2025-01-19-211100
+OCP_VERSION := 4.19.0-0.nightly-2025-01-21-163021
diff --git a/assets/optional/multus/release-multus-aarch64.json b/assets/optional/multus/release-multus-aarch64.json
index b52dbf432f..4edc927407 100644
--- a/assets/optional/multus/release-multus-aarch64.json
+++ b/assets/optional/multus/release-multus-aarch64.json
@@ -1,6 +1,6 @@
{
"release": {
- "base": "4.19.0-0.nightly-arm64-2025-01-20-000530"
+ "base": "4.19.0-0.nightly-arm64-2025-01-22-000530"
},
"images": {
"multus-cni-microshift": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:4ecfae89c530c3bc40085299a973fea1d8ec7e237212d7a7296f455ba852b478",
diff --git a/assets/optional/multus/release-multus-x86_64.json b/assets/optional/multus/release-multus-x86_64.json
index 2dfe172638..b7d4e8b15b 100644
--- a/assets/optional/multus/release-multus-x86_64.json
+++ b/assets/optional/multus/release-multus-x86_64.json
@@ -1,6 +1,6 @@
{
"release": {
- "base": "4.19.0-0.nightly-2025-01-19-211100"
+ "base": "4.19.0-0.nightly-2025-01-21-163021"
},
"images": {
"multus-cni-microshift": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:1ba87d15e49bf4b0ec404e0ad6c2ee4f2c20cfc2bdd5fb725136a157dc2ad2f1",
diff --git a/assets/optional/operator-lifecycle-manager/kustomization.aarch64.yaml b/assets/optional/operator-lifecycle-manager/kustomization.aarch64.yaml
index 8402242501..d32111806e 100644
--- a/assets/optional/operator-lifecycle-manager/kustomization.aarch64.yaml
+++ b/assets/optional/operator-lifecycle-manager/kustomization.aarch64.yaml
@@ -2,10 +2,10 @@
images:
- name: quay.io/operator-framework/olm
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
- digest: sha256:fb8a8b3aea5dbe8483b205f60bf3730c0c525fd2264d1045513c7a15a17508b4
+ digest: sha256:036e84019c195ec4fa3bb7709ef3ff267dec7e5061cdb701cfa6809ccc6b34c3
- name: quay.io/operator-framework/configmap-operator-registry
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
- digest: sha256:c6d5355654a9b51f38121fa2049fcb641d03c12d4b0163d0099290cb3c0efe31
+ digest: sha256:9a685cb45b8f38321105195418e551887db79198f8ee7581aae020ee8c7787be
- name: quay.io/openshift/origin-kube-rbac-proxy
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
digest: sha256:290478ee07daaf4795f9925609bcd24e4ddcec635a28d5f9f70da8592c4458c6
@@ -16,12 +16,12 @@ patches:
path: /spec/template/spec/containers/0/env/-
value:
name: OPERATOR_REGISTRY_IMAGE
- value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:c6d5355654a9b51f38121fa2049fcb641d03c12d4b0163d0099290cb3c0efe31
+ value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:9a685cb45b8f38321105195418e551887db79198f8ee7581aae020ee8c7787be
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: OLM_IMAGE
- value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:fb8a8b3aea5dbe8483b205f60bf3730c0c525fd2264d1045513c7a15a17508b4
+ value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:036e84019c195ec4fa3bb7709ef3ff267dec7e5061cdb701cfa6809ccc6b34c3
target:
kind: Deployment
labelSelector: app=catalog-operator
diff --git a/assets/optional/operator-lifecycle-manager/kustomization.x86_64.yaml b/assets/optional/operator-lifecycle-manager/kustomization.x86_64.yaml
index 3ceea93236..e3c89ae4ad 100644
--- a/assets/optional/operator-lifecycle-manager/kustomization.x86_64.yaml
+++ b/assets/optional/operator-lifecycle-manager/kustomization.x86_64.yaml
@@ -2,10 +2,10 @@
images:
- name: quay.io/operator-framework/olm
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
- digest: sha256:8888fbe2a8d717d3280d6a063cbad519a16dd923434175f9e1e6231880d12742
+ digest: sha256:55bd31be5bed96032d9a19fba4c5230c162717f9d68fc418be4d8796f2dfccb3
- name: quay.io/operator-framework/configmap-operator-registry
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
- digest: sha256:080b78a2bc2e04cd7477ea2ad1f6fb9f4a4eb60d0e4ccbb2db02a17a9ce06d89
+ digest: sha256:df5929656b064e258ac3014379173fc37939b3cbc97f3bbe0c9804514ad87d98
- name: quay.io/openshift/origin-kube-rbac-proxy
newName: quay.io/openshift-release-dev/ocp-v4.0-art-dev
digest: sha256:21b1ec1ffeb289a947603674cda13a84c35545b04e4940dfef055147908220ab
@@ -16,12 +16,12 @@ patches:
path: /spec/template/spec/containers/0/env/-
value:
name: OPERATOR_REGISTRY_IMAGE
- value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:080b78a2bc2e04cd7477ea2ad1f6fb9f4a4eb60d0e4ccbb2db02a17a9ce06d89
+ value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:df5929656b064e258ac3014379173fc37939b3cbc97f3bbe0c9804514ad87d98
- op: add
path: /spec/template/spec/containers/0/env/-
value:
name: OLM_IMAGE
- value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:8888fbe2a8d717d3280d6a063cbad519a16dd923434175f9e1e6231880d12742
+ value: quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:55bd31be5bed96032d9a19fba4c5230c162717f9d68fc418be4d8796f2dfccb3
target:
kind: Deployment
labelSelector: app=catalog-operator
diff --git a/assets/optional/operator-lifecycle-manager/release-olm-aarch64.json b/assets/optional/operator-lifecycle-manager/release-olm-aarch64.json
index b12225bf1c..997f25d754 100644
--- a/assets/optional/operator-lifecycle-manager/release-olm-aarch64.json
+++ b/assets/optional/operator-lifecycle-manager/release-olm-aarch64.json
@@ -1,10 +1,10 @@
{
"release": {
- "base": "4.19.0-0.nightly-arm64-2025-01-20-000530"
+ "base": "4.19.0-0.nightly-arm64-2025-01-22-000530"
},
"images": {
- "operator-lifecycle-manager": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:fb8a8b3aea5dbe8483b205f60bf3730c0c525fd2264d1045513c7a15a17508b4",
- "operator-registry": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:c6d5355654a9b51f38121fa2049fcb641d03c12d4b0163d0099290cb3c0efe31",
+ "operator-lifecycle-manager": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:036e84019c195ec4fa3bb7709ef3ff267dec7e5061cdb701cfa6809ccc6b34c3",
+ "operator-registry": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:9a685cb45b8f38321105195418e551887db79198f8ee7581aae020ee8c7787be",
"kube-rbac-proxy": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:290478ee07daaf4795f9925609bcd24e4ddcec635a28d5f9f70da8592c4458c6"
}
}
diff --git a/assets/optional/operator-lifecycle-manager/release-olm-x86_64.json b/assets/optional/operator-lifecycle-manager/release-olm-x86_64.json
index 956e573604..53ea85c4de 100644
--- a/assets/optional/operator-lifecycle-manager/release-olm-x86_64.json
+++ b/assets/optional/operator-lifecycle-manager/release-olm-x86_64.json
@@ -1,10 +1,10 @@
{
"release": {
- "base": "4.19.0-0.nightly-2025-01-19-211100"
+ "base": "4.19.0-0.nightly-2025-01-21-163021"
},
"images": {
- "operator-lifecycle-manager": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:8888fbe2a8d717d3280d6a063cbad519a16dd923434175f9e1e6231880d12742",
- "operator-registry": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:080b78a2bc2e04cd7477ea2ad1f6fb9f4a4eb60d0e4ccbb2db02a17a9ce06d89",
+ "operator-lifecycle-manager": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:55bd31be5bed96032d9a19fba4c5230c162717f9d68fc418be4d8796f2dfccb3",
+ "operator-registry": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:df5929656b064e258ac3014379173fc37939b3cbc97f3bbe0c9804514ad87d98",
"kube-rbac-proxy": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:21b1ec1ffeb289a947603674cda13a84c35545b04e4940dfef055147908220ab"
}
}
diff --git a/assets/release/release-aarch64.json b/assets/release/release-aarch64.json
index d9720a5c11..82508e2400 100644
--- a/assets/release/release-aarch64.json
+++ b/assets/release/release-aarch64.json
@@ -1,6 +1,6 @@
{
"release": {
- "base": "4.19.0-0.nightly-arm64-2025-01-20-000530"
+ "base": "4.19.0-0.nightly-arm64-2025-01-22-000530"
},
"images": {
"cli": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:79daa4255ae7d52116b206e25d1fd285967da7fce179337ba58026437005339b",
diff --git a/assets/release/release-x86_64.json b/assets/release/release-x86_64.json
index d9cf6894f9..f57f6633a8 100644
--- a/assets/release/release-x86_64.json
+++ b/assets/release/release-x86_64.json
@@ -1,6 +1,6 @@
{
"release": {
- "base": "4.19.0-0.nightly-2025-01-19-211100"
+ "base": "4.19.0-0.nightly-2025-01-21-163021"
},
"images": {
"cli": "quay.io/openshift-release-dev/ocp-v4.0-art-dev@sha256:8c0615f0b2dde5d2673cc844ee5e4d05709446073314199a296ed07b2a77942a",
diff --git a/etcd/go.mod b/etcd/go.mod
index 3d0172bf39..27b6808dcb 100644
--- a/etcd/go.mod
+++ b/etcd/go.mod
@@ -11,7 +11,7 @@ replace (
)
require (
- github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2
+ github.com/openshift/api v0.0.0-20241203091751-58d4ac495429
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f
github.com/spf13/cobra v1.8.1
go.etcd.io/etcd/server/v3 v3.5.13
@@ -31,7 +31,7 @@ require (
github.com/google/go-cmp v0.6.0 // indirect
github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0 // indirect
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f // indirect
- github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060 // indirect
+ github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0 // indirect
github.com/russross/blackfriday/v2 v2.1.0 // indirect
github.com/vishvananda/netlink v1.1.0 // indirect
github.com/vishvananda/netns v0.0.4 // indirect
diff --git a/etcd/go.sum b/etcd/go.sum
index 11b1c5bbb7..2563908bd7 100644
--- a/etcd/go.sum
+++ b/etcd/go.sum
@@ -174,8 +174,8 @@ github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J
github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
-github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2 h1:wCRdyt+nHnJsfuLMJF9RW1JK8G4Gvo//gBy6bZI5USE=
-github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2/go.mod h1:Shkl4HanLwDiiBzakv+con/aMGnVE2MAGvoKp5oyYUo=
+github.com/openshift/api v0.0.0-20241203091751-58d4ac495429 h1:fz+u78YFRL14rXqBKWIVYK04mUOy6LccHe3wQsUS3iI=
+github.com/openshift/api v0.0.0-20241203091751-58d4ac495429/go.mod h1:Shkl4HanLwDiiBzakv+con/aMGnVE2MAGvoKp5oyYUo=
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f h1:JMEDso3xFUIDULgFJmcrTfyPpigF3NyyaP07Yy8tHmI=
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f/go.mod h1:8jcm8UPtg2mCAsxfqKil1xrmRMI3a+XU2TZ9fF8A7TE=
github.com/openshift/etcd/api/v3 v3.5.1-0.20241118170732-914783cae63a h1:+zYlT8ikLojupnnbSNt3PJWKrBGroi8gSrBeHpV4t9w=
@@ -204,8 +204,8 @@ github.com/openshift/kubernetes/staging/src/k8s.io/component-base v0.0.0-2025011
github.com/openshift/kubernetes/staging/src/k8s.io/component-base v0.0.0-20250115192950-4b2db1ec33fa/go.mod h1:B0udSKuoZLeZEw3o8rNmP9ONicaSjCf/RHx2oZ/7laQ=
github.com/openshift/kubernetes/staging/src/k8s.io/kubectl v0.0.0-20250115192950-4b2db1ec33fa h1:7X0ykgD+hmZZeAKqjrN5mSu+11+kYie0Pui6BHHMEow=
github.com/openshift/kubernetes/staging/src/k8s.io/kubectl v0.0.0-20250115192950-4b2db1ec33fa/go.mod h1:ZZoyj+ofRlbElHajU0pqTd6fEinQQW/B+8RQpMJ7PlM=
-github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060 h1:jiDC7d8d+jmjv2WfiMY0+Uf55q11MGyYkGGqXnfqWTU=
-github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060/go.mod h1:9B1MYPoLtP9tqjWxcbUNVpwxy68zOH/3EIP6c31dAM0=
+github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0 h1:xf4uw8ShlOfRhtHziMv78jmEhWrWI+thDVJler1i3y4=
+github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0/go.mod h1:eGSI6tp7yUVr4V2d0WrVt2l5s3iCwAh8Hi0RC9Fo16U=
github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20241008152707-25bf9f14db44 h1:dKUAGq29JBk2oRn955gnnz3sG/UhlkUKh1ISleLiews=
github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20241008152707-25bf9f14db44/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/types_cluster_version.go b/etcd/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
index 61386a72e4..2b392298e8 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
+++ b/etcd/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
@@ -288,7 +288,7 @@ const (
)
// ClusterVersionCapability enumerates optional, core cluster components.
-// +kubebuilder:validation:Enum=openshift-samples;baremetal;marketplace;Console;Insights;Storage;CSISnapshot;NodeTuning;MachineAPI;Build;DeploymentConfig;ImageRegistry;OperatorLifecycleManager;CloudCredential;Ingress;CloudControllerManager
+// +kubebuilder:validation:Enum=openshift-samples;baremetal;marketplace;Console;Insights;Storage;CSISnapshot;NodeTuning;MachineAPI;Build;DeploymentConfig;ImageRegistry;OperatorLifecycleManager;CloudCredential;Ingress;CloudControllerManager;OperatorLifecycleManagerV1
type ClusterVersionCapability string
const (
@@ -379,10 +379,14 @@ const (
// allows to distribute Docker images
ClusterVersionCapabilityImageRegistry ClusterVersionCapability = "ImageRegistry"
- // ClusterVersionCapabilityOperatorLifecycleManager manages the Operator Lifecycle Manager
+ // ClusterVersionCapabilityOperatorLifecycleManager manages the Operator Lifecycle Manager (legacy)
// which itself manages the lifecycle of operators
ClusterVersionCapabilityOperatorLifecycleManager ClusterVersionCapability = "OperatorLifecycleManager"
+ // ClusterVersionCapabilityOperatorLifecycleManagerV1 manages the Operator Lifecycle Manager (v1)
+ // which itself manages the lifecycle of operators
+ ClusterVersionCapabilityOperatorLifecycleManagerV1 ClusterVersionCapability = "OperatorLifecycleManagerV1"
+
// ClusterVersionCapabilityCloudCredential manages credentials for cloud providers
// in openshift cluster
ClusterVersionCapabilityCloudCredential ClusterVersionCapability = "CloudCredential"
@@ -422,6 +426,7 @@ var KnownClusterVersionCapabilities = []ClusterVersionCapability{
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -600,6 +605,7 @@ var ClusterVersionCapabilitySets = map[ClusterVersionCapabilitySet][]ClusterVers
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -618,6 +624,7 @@ var ClusterVersionCapabilitySets = map[ClusterVersionCapabilitySet][]ClusterVers
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -739,6 +746,16 @@ type Update struct {
// Release represents an OpenShift release image and associated metadata.
// +k8s:deepcopy-gen=true
type Release struct {
+ // architecture is an optional field that indicates the
+ // value of the cluster architecture. In this context cluster
+ // architecture means either a single architecture or a multi
+ // architecture.
+ // Valid values are 'Multi' and empty.
+ //
+ // +openshift:enable:FeatureGate=ImageStreamImportMode
+ // +optional
+ Architecture ClusterVersionArchitecture `json:"architecture,omitempty"`
+
// version is a semantic version identifying the update version. When this
// field is part of spec, version is optional if image is specified.
// +required
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/types_infrastructure.go b/etcd/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
index 392d128c11..1ebe2dfb9c 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
+++ b/etcd/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
@@ -507,6 +507,20 @@ type AWSPlatformStatus struct {
// +listType=atomic
// +optional
ResourceTags []AWSResourceTag `json:"resourceTags,omitempty"`
+
+ // cloudLoadBalancerConfig holds configuration related to DNS and cloud
+ // load balancers. It allows configuration of in-cluster DNS as an alternative
+ // to the platform default DNS implementation.
+ // When using the ClusterHosted DNS type, Load Balancer IP addresses
+ // must be provided for the API and internal API load balancers as well as the
+ // ingress load balancer.
+ //
+ // +default={"dnsType": "PlatformDefault"}
+ // +kubebuilder:default={"dnsType": "PlatformDefault"}
+ // +openshift:enable:FeatureGate=AWSClusterHostedDNS
+ // +optional
+ // +nullable
+ CloudLoadBalancerConfig *CloudLoadBalancerConfig `json:"cloudLoadBalancerConfig,omitempty"`
}
// AWSResourceTag is a tag to apply to AWS resources created for the cluster.
@@ -647,12 +661,12 @@ type GCPPlatformStatus struct {
// Tombstone the field as a reminder.
// ClusterHostedDNS ClusterHostedDNS `json:"clusterHostedDNS,omitempty"`
- // cloudLoadBalancerConfig is a union that contains the IP addresses of API,
- // API-Int and Ingress Load Balancers created on the cloud platform. These
- // values would not be populated on on-prem platforms. These Load Balancer
- // IPs are used to configure the in-cluster DNS instances for API, API-Int
- // and Ingress services. `dnsType` is expected to be set to `ClusterHosted`
- // when these Load Balancer IP addresses are populated and used.
+ // cloudLoadBalancerConfig holds configuration related to DNS and cloud
+ // load balancers. It allows configuration of in-cluster DNS as an alternative
+ // to the platform default DNS implementation.
+ // When using the ClusterHosted DNS type, Load Balancer IP addresses
+ // must be provided for the API and internal API load balancers as well as the
+ // ingress load balancer.
//
// +default={"dnsType": "PlatformDefault"}
// +kubebuilder:default={"dnsType": "PlatformDefault"}
@@ -1148,8 +1162,30 @@ type VSpherePlatformLoadBalancer struct {
Type PlatformLoadBalancerType `json:"type,omitempty"`
}
-// VSpherePlatformFailureDomainSpec holds the region and zone failure domain and
-// the vCenter topology of that failure domain.
+// The VSphereFailureDomainZoneType is a string representation of a failure domain
+// zone type. There are two supportable types HostGroup and ComputeCluster
+// +enum
+type VSphereFailureDomainZoneType string
+
+// The VSphereFailureDomainRegionType is a string representation of a failure domain
+// region type. There are two supportable types ComputeCluster and Datacenter
+// +enum
+type VSphereFailureDomainRegionType string
+
+const (
+ // HostGroupFailureDomainZone is a failure domain zone for a vCenter vm-host group.
+ HostGroupFailureDomainZone VSphereFailureDomainZoneType = "HostGroup"
+ // ComputeClusterFailureDomainZone is a failure domain zone for a vCenter compute cluster.
+ ComputeClusterFailureDomainZone VSphereFailureDomainZoneType = "ComputeCluster"
+ // DatacenterFailureDomainRegion is a failure domain region for a vCenter datacenter.
+ DatacenterFailureDomainRegion VSphereFailureDomainRegionType = "Datacenter"
+ // ComputeClusterFailureDomainRegion is a failure domain region for a vCenter compute cluster.
+ ComputeClusterFailureDomainRegion VSphereFailureDomainRegionType = "ComputeCluster"
+)
+
+// VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=VSphereHostVMGroupZonal,rule="has(self.zoneAffinity) && self.zoneAffinity.type == 'HostGroup' ? has(self.regionAffinity) && self.regionAffinity.type == 'ComputeCluster' : true",message="when zoneAffinity type is HostGroup, regionAffinity type must be ComputeCluster"
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=VSphereHostVMGroupZonal,rule="has(self.zoneAffinity) && self.zoneAffinity.type == 'ComputeCluster' ? has(self.regionAffinity) && self.regionAffinity.type == 'Datacenter' : true",message="when zoneAffinity type is ComputeCluster, regionAffinity type must be Datacenter"
type VSpherePlatformFailureDomainSpec struct {
// name defines the arbitrary but unique name
// of a failure domain.
@@ -1174,6 +1210,21 @@ type VSpherePlatformFailureDomainSpec struct {
// +kubebuilder:validation:Required
Zone string `json:"zone"`
+ // regionAffinity holds the type of region, Datacenter or ComputeCluster.
+ // When set to Datacenter, this means the region is a vCenter Datacenter as defined in topology.
+ // When set to ComputeCluster, this means the region is a vCenter Cluster as defined in topology.
+ // +openshift:validation:featureGate=VSphereHostVMGroupZonal
+ // +optional
+ RegionAffinity *VSphereFailureDomainRegionAffinity `json:"regionAffinity,omitempty"`
+
+ // zoneAffinity holds the type of the zone and the hostGroup which
+ // vmGroup and the hostGroup names in vCenter corresponds to
+ // a vm-host group of type Virtual Machine and Host respectively. Is also
+ // contains the vmHostRule which is an affinity vm-host rule in vCenter.
+ // +openshift:validation:featureGate=VSphereHostVMGroupZonal
+ // +optional
+ ZoneAffinity *VSphereFailureDomainZoneAffinity `json:"zoneAffinity,omitempty"`
+
// server is the fully-qualified domain name or the IP address of the vCenter server.
// +kubebuilder:validation:Required
// +kubebuilder:validation:MinLength=1
@@ -1263,6 +1314,74 @@ type VSpherePlatformTopology struct {
Template string `json:"template,omitempty"`
}
+// VSphereFailureDomainZoneAffinity contains the vCenter cluster vm-host group (virtual machine and host types)
+// and the vm-host affinity rule that together creates an affinity configuration for vm-host based zonal.
+// This configuration within vCenter creates the required association between a failure domain, virtual machines
+// and ESXi hosts to create a vm-host based zone.
+// +kubebuilder:validation:XValidation:rule="has(self.type) && self.type == 'HostGroup' ? has(self.hostGroup) : !has(self.hostGroup)",message="hostGroup is required when type is HostGroup, and forbidden otherwise"
+// +union
+type VSphereFailureDomainZoneAffinity struct {
+ // type determines the vSphere object type for a zone within this failure domain.
+ // Available types are ComputeCluster and HostGroup.
+ // When set to ComputeCluster, this means the vCenter cluster defined is the zone.
+ // When set to HostGroup, hostGroup must be configured with hostGroup, vmGroup and vmHostRule and
+ // this means the zone is defined by the grouping of those fields.
+ // +kubebuilder:validation:Enum:=HostGroup;ComputeCluster
+ // +kubebuilder:validation:Required
+ // +unionDiscriminator
+ Type VSphereFailureDomainZoneType `json:"type"`
+
+ // hostGroup holds the vmGroup and the hostGroup names in vCenter
+ // corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also
+ // contains the vmHostRule which is an affinity vm-host rule in vCenter.
+ // +unionMember
+ // +optional
+ HostGroup *VSphereFailureDomainHostGroup `json:"hostGroup,omitempty"`
+}
+
+// VSphereFailureDomainRegionAffinity contains the region type which is the string representation of the
+// VSphereFailureDomainRegionType with available options of Datacenter and ComputeCluster.
+// +union
+type VSphereFailureDomainRegionAffinity struct {
+ // type determines the vSphere object type for a region within this failure domain.
+ // Available types are Datacenter and ComputeCluster.
+ // When set to Datacenter, this means the vCenter Datacenter defined is the region.
+ // When set to ComputeCluster, this means the vCenter cluster defined is the region.
+ // +kubebuilder:validation:Enum:=ComputeCluster;Datacenter
+ // +kubebuilder:validation:Required
+ // +unionDiscriminator
+ Type VSphereFailureDomainRegionType `json:"type"`
+}
+
+// VSphereFailureDomainHostGroup holds the vmGroup and the hostGroup names in vCenter
+// corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also
+// contains the vmHostRule which is an affinity vm-host rule in vCenter.
+type VSphereFailureDomainHostGroup struct {
+ // vmGroup is the name of the vm-host group of type virtual machine within vCenter for this failure domain.
+ // vmGroup is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ VMGroup string `json:"vmGroup"`
+
+ // hostGroup is the name of the vm-host group of type host within vCenter for this failure domain.
+ // hostGroup is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ HostGroup string `json:"hostGroup"`
+
+ // vmHostRule is the name of the affinity vm-host rule within vCenter for this failure domain.
+ // vmHostRule is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ VMHostRule string `json:"vmHostRule"`
+}
+
// VSpherePlatformVCenterSpec stores the vCenter connection fields.
// This is used by the vSphere CCM.
type VSpherePlatformVCenterSpec struct {
@@ -1579,7 +1698,7 @@ type PowerVSServiceEndpoint struct {
// Power Cloud - https://cloud.ibm.com/apidocs/power-cloud
//
// +kubebuilder:validation:Required
- // +kubebuilder:validation:Pattern=`^[a-z0-9-]+$`
+ // +kubebuilder:validation:Enum=CIS;COS;COSConfig;DNSServices;GlobalCatalog;GlobalSearch;GlobalTagging;HyperProtect;IAM;KeyProtect;Power;ResourceController;ResourceManager;VPC
Name string `json:"name"`
// url is fully qualified URI with scheme https, that overrides the default generated
@@ -1725,6 +1844,7 @@ type NutanixPlatformSpec struct {
// failureDomains configures failure domains information for the Nutanix platform.
// When set, the failure domains defined here may be used to spread Machines across
// prism element clusters to improve fault tolerance of the cluster.
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate=NutanixMultiSubnets,maxItems=32
// +listType=map
// +listMapKey=name
// +optional
@@ -1751,13 +1871,15 @@ type NutanixFailureDomain struct {
Cluster NutanixResourceIdentifier `json:"cluster"`
// subnets holds a list of identifiers (one or more) of the cluster's network subnets
+ // If the feature gate NutanixMultiSubnets is enabled, up to 32 subnets may be configured.
// for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be
// obtained from the Prism Central console or using the prism_central API.
// +kubebuilder:validation:Required
// +kubebuilder:validation:MinItems=1
- // +kubebuilder:validation:MaxItems=1
- // +listType=map
- // +listMapKey=type
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate="",maxItems=1
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate=NutanixMultiSubnets,maxItems=32
+ // +openshift:validation:FeatureGateAwareXValidation:featureGate=NutanixMultiSubnets,rule="self.all(x, self.exists_one(y, x == y))",message="each subnet must be unique"
+ // +listType=atomic
Subnets []NutanixResourceIdentifier `json:"subnets"`
}
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/types_node.go b/etcd/vendor/github.com/openshift/api/config/v1/types_node.go
index b3b1b62c4d..a50328c91f 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/types_node.go
+++ b/etcd/vendor/github.com/openshift/api/config/v1/types_node.go
@@ -46,6 +46,25 @@ type NodeSpec struct {
// the status and corresponding reaction of the cluster
// +optional
WorkerLatencyProfile WorkerLatencyProfileType `json:"workerLatencyProfile,omitempty"`
+
+ // minimumKubeletVersion is the lowest version of a kubelet that can join the cluster.
+ // Specifically, the apiserver will deny most authorization requests of kubelets that are older
+ // than the specified version, only allowing the kubelet to get and update its node object, and perform
+ // subjectaccessreviews.
+ // This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads,
+ // and will eventually be marked as not ready.
+ // Its max length is 8, so maximum version allowed is either "9.999.99" or "99.99.99".
+ // Since the kubelet reports the version of the kubernetes release, not Openshift, this field references
+ // the underlying kubernetes version this version of Openshift is based off of.
+ // In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then
+ // they should set the minimumKubeletVersion to 1.30.0.
+ // When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version.
+ // Thus, a kubelet with version "1.0.0-ec.0" will be compatible with minimumKubeletVersion "1.0.0" or earlier.
+ // +kubebuilder:validation:XValidation:rule="self == \"\" || self.matches('^[0-9]*.[0-9]*.[0-9]*$')",message="minmumKubeletVersion must be in a semver compatible format of x.y.z, or empty"
+ // +kubebuilder:validation:MaxLength:=8
+ // +openshift:enable:FeatureGate=MinimumKubeletVersion
+ // +optional
+ MinimumKubeletVersion string `json:"minimumKubeletVersion"`
}
type NodeStatus struct {
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
index 0693469984..b013d4595e 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
+++ b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
@@ -245,6 +245,11 @@ func (in *AWSPlatformStatus) DeepCopyInto(out *AWSPlatformStatus) {
*out = make([]AWSResourceTag, len(*in))
copy(*out, *in)
}
+ if in.CloudLoadBalancerConfig != nil {
+ in, out := &in.CloudLoadBalancerConfig, &out.CloudLoadBalancerConfig
+ *out = new(CloudLoadBalancerConfig)
+ (*in).DeepCopyInto(*out)
+ }
return
}
@@ -5822,9 +5827,72 @@ func (in *UsernamePrefix) DeepCopy() *UsernamePrefix {
return out
}
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainHostGroup) DeepCopyInto(out *VSphereFailureDomainHostGroup) {
+ *out = *in
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainHostGroup.
+func (in *VSphereFailureDomainHostGroup) DeepCopy() *VSphereFailureDomainHostGroup {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainHostGroup)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainRegionAffinity) DeepCopyInto(out *VSphereFailureDomainRegionAffinity) {
+ *out = *in
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainRegionAffinity.
+func (in *VSphereFailureDomainRegionAffinity) DeepCopy() *VSphereFailureDomainRegionAffinity {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainRegionAffinity)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainZoneAffinity) DeepCopyInto(out *VSphereFailureDomainZoneAffinity) {
+ *out = *in
+ if in.HostGroup != nil {
+ in, out := &in.HostGroup, &out.HostGroup
+ *out = new(VSphereFailureDomainHostGroup)
+ **out = **in
+ }
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainZoneAffinity.
+func (in *VSphereFailureDomainZoneAffinity) DeepCopy() *VSphereFailureDomainZoneAffinity {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainZoneAffinity)
+ in.DeepCopyInto(out)
+ return out
+}
+
// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (in *VSpherePlatformFailureDomainSpec) DeepCopyInto(out *VSpherePlatformFailureDomainSpec) {
*out = *in
+ if in.RegionAffinity != nil {
+ in, out := &in.RegionAffinity, &out.RegionAffinity
+ *out = new(VSphereFailureDomainRegionAffinity)
+ **out = **in
+ }
+ if in.ZoneAffinity != nil {
+ in, out := &in.ZoneAffinity, &out.ZoneAffinity
+ *out = new(VSphereFailureDomainZoneAffinity)
+ (*in).DeepCopyInto(*out)
+ }
in.Topology.DeepCopyInto(&out.Topology)
return
}
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
index fa5dd4e31d..b2bc82e1a9 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -115,6 +115,7 @@ clusterversions.config.openshift.io:
Capability: ""
Category: ""
FeatureGates:
+ - ImageStreamImportMode
- SignatureStores
FilenameOperatorName: cluster-version-operator
FilenameOperatorOrdering: "01"
@@ -310,10 +311,13 @@ infrastructures.config.openshift.io:
Capability: ""
Category: ""
FeatureGates:
+ - AWSClusterHostedDNS
- BareMetalLoadBalancer
- GCPClusterHostedDNS
- GCPLabelsTags
+ - NutanixMultiSubnets
- VSphereControlPlaneMachineSet
+ - VSphereHostVMGroupZonal
- VSphereMultiNetworks
- VSphereMultiVCenters
FilenameOperatorName: config-operator
@@ -382,7 +386,8 @@ nodes.config.openshift.io:
CRDName: nodes.config.openshift.io
Capability: ""
Category: ""
- FeatureGates: []
+ FeatureGates:
+ - MinimumKubeletVersion
FilenameOperatorName: config-operator
FilenameOperatorOrdering: "01"
FilenameRunLevel: "0000_10"
diff --git a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
index c580bd8342..a89678edb9 100644
--- a/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
+++ b/etcd/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
@@ -772,11 +772,12 @@ func (PromQLClusterCondition) SwaggerDoc() map[string]string {
}
var map_Release = map[string]string{
- "": "Release represents an OpenShift release image and associated metadata.",
- "version": "version is a semantic version identifying the update version. When this field is part of spec, version is optional if image is specified.",
- "image": "image is a container image location that contains the update. When this field is part of spec, image is optional if version is specified and the availableUpdates field contains a matching version.",
- "url": "url contains information about this release. This URL is set by the 'url' metadata property on a release or the metadata returned by the update API and should be displayed as a link in user interfaces. The URL field may not be set for test or nightly releases.",
- "channels": "channels is the set of Cincinnati channels to which the release currently belongs.",
+ "": "Release represents an OpenShift release image and associated metadata.",
+ "architecture": "architecture is an optional field that indicates the value of the cluster architecture. In this context cluster architecture means either a single architecture or a multi architecture. Valid values are 'Multi' and empty.",
+ "version": "version is a semantic version identifying the update version. When this field is part of spec, version is optional if image is specified.",
+ "image": "image is a container image location that contains the update. When this field is part of spec, image is optional if version is specified and the availableUpdates field contains a matching version.",
+ "url": "url contains information about this release. This URL is set by the 'url' metadata property on a release or the metadata returned by the update API and should be displayed as a link in user interfaces. The URL field may not be set for test or nightly releases.",
+ "channels": "channels is the set of Cincinnati channels to which the release currently belongs.",
}
func (Release) SwaggerDoc() map[string]string {
@@ -1184,10 +1185,11 @@ func (AWSPlatformSpec) SwaggerDoc() map[string]string {
}
var map_AWSPlatformStatus = map[string]string{
- "": "AWSPlatformStatus holds the current status of the Amazon Web Services infrastructure provider.",
- "region": "region holds the default AWS region for new AWS resources created by the cluster.",
- "serviceEndpoints": "ServiceEndpoints list contains custom endpoints which will override default service endpoint of AWS Services. There must be only one ServiceEndpoint for a service.",
- "resourceTags": "resourceTags is a list of additional tags to apply to AWS resources created for the cluster. See https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html for information on tagging AWS resources. AWS supports a maximum of 50 tags per resource. OpenShift reserves 25 tags for its use, leaving 25 tags available for the user.",
+ "": "AWSPlatformStatus holds the current status of the Amazon Web Services infrastructure provider.",
+ "region": "region holds the default AWS region for new AWS resources created by the cluster.",
+ "serviceEndpoints": "ServiceEndpoints list contains custom endpoints which will override default service endpoint of AWS Services. There must be only one ServiceEndpoint for a service.",
+ "resourceTags": "resourceTags is a list of additional tags to apply to AWS resources created for the cluster. See https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html for information on tagging AWS resources. AWS supports a maximum of 50 tags per resource. OpenShift reserves 25 tags for its use, leaving 25 tags available for the user.",
+ "cloudLoadBalancerConfig": "cloudLoadBalancerConfig holds configuration related to DNS and cloud load balancers. It allows configuration of in-cluster DNS as an alternative to the platform default DNS implementation. When using the ClusterHosted DNS type, Load Balancer IP addresses must be provided for the API and internal API load balancers as well as the ingress load balancer.",
}
func (AWSPlatformStatus) SwaggerDoc() map[string]string {
@@ -1389,7 +1391,7 @@ var map_GCPPlatformStatus = map[string]string{
"region": "region holds the region for new GCP resources created for the cluster.",
"resourceLabels": "resourceLabels is a list of additional labels to apply to GCP resources created for the cluster. See https://cloud.google.com/compute/docs/labeling-resources for information on labeling GCP resources. GCP supports a maximum of 64 labels per resource. OpenShift reserves 32 labels for internal use, allowing 32 labels for user configuration.",
"resourceTags": "resourceTags is a list of additional tags to apply to GCP resources created for the cluster. See https://cloud.google.com/resource-manager/docs/tags/tags-overview for information on tagging GCP resources. GCP supports a maximum of 50 tags per resource.",
- "cloudLoadBalancerConfig": "cloudLoadBalancerConfig is a union that contains the IP addresses of API, API-Int and Ingress Load Balancers created on the cloud platform. These values would not be populated on on-prem platforms. These Load Balancer IPs are used to configure the in-cluster DNS instances for API, API-Int and Ingress services. `dnsType` is expected to be set to `ClusterHosted` when these Load Balancer IP addresses are populated and used.",
+ "cloudLoadBalancerConfig": "cloudLoadBalancerConfig holds configuration related to DNS and cloud load balancers. It allows configuration of in-cluster DNS as an alternative to the platform default DNS implementation. When using the ClusterHosted DNS type, Load Balancer IP addresses must be provided for the API and internal API load balancers as well as the ingress load balancer.",
}
func (GCPPlatformStatus) SwaggerDoc() map[string]string {
@@ -1518,7 +1520,7 @@ var map_NutanixFailureDomain = map[string]string{
"": "NutanixFailureDomain configures failure domain information for the Nutanix platform.",
"name": "name defines the unique name of a failure domain. Name is required and must be at most 64 characters in length. It must consist of only lower case alphanumeric characters and hyphens (-). It must start and end with an alphanumeric character. This value is arbitrary and is used to identify the failure domain within the platform.",
"cluster": "cluster is to identify the cluster (the Prism Element under management of the Prism Central), in which the Machine's VM will be created. The cluster identifier (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
- "subnets": "subnets holds a list of identifiers (one or more) of the cluster's network subnets for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
+ "subnets": "subnets holds a list of identifiers (one or more) of the cluster's network subnets If the feature gate NutanixMultiSubnets is enabled, up to 32 subnets may be configured. for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
}
func (NutanixFailureDomain) SwaggerDoc() map[string]string {
@@ -1735,13 +1737,45 @@ func (PowerVSServiceEndpoint) SwaggerDoc() map[string]string {
return map_PowerVSServiceEndpoint
}
+var map_VSphereFailureDomainHostGroup = map[string]string{
+ "": "VSphereFailureDomainHostGroup holds the vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+ "vmGroup": "vmGroup is the name of the vm-host group of type virtual machine within vCenter for this failure domain. vmGroup is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+ "hostGroup": "hostGroup is the name of the vm-host group of type host within vCenter for this failure domain. hostGroup is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+ "vmHostRule": "vmHostRule is the name of the affinity vm-host rule within vCenter for this failure domain. vmHostRule is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+}
+
+func (VSphereFailureDomainHostGroup) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainHostGroup
+}
+
+var map_VSphereFailureDomainRegionAffinity = map[string]string{
+ "": "VSphereFailureDomainRegionAffinity contains the region type which is the string representation of the VSphereFailureDomainRegionType with available options of Datacenter and ComputeCluster.",
+ "type": "type determines the vSphere object type for a region within this failure domain. Available types are Datacenter and ComputeCluster. When set to Datacenter, this means the vCenter Datacenter defined is the region. When set to ComputeCluster, this means the vCenter cluster defined is the region.",
+}
+
+func (VSphereFailureDomainRegionAffinity) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainRegionAffinity
+}
+
+var map_VSphereFailureDomainZoneAffinity = map[string]string{
+ "": "VSphereFailureDomainZoneAffinity contains the vCenter cluster vm-host group (virtual machine and host types) and the vm-host affinity rule that together creates an affinity configuration for vm-host based zonal. This configuration within vCenter creates the required association between a failure domain, virtual machines and ESXi hosts to create a vm-host based zone.",
+ "type": "type determines the vSphere object type for a zone within this failure domain. Available types are ComputeCluster and HostGroup. When set to ComputeCluster, this means the vCenter cluster defined is the zone. When set to HostGroup, hostGroup must be configured with hostGroup, vmGroup and vmHostRule and this means the zone is defined by the grouping of those fields.",
+ "hostGroup": "hostGroup holds the vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+}
+
+func (VSphereFailureDomainZoneAffinity) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainZoneAffinity
+}
+
var map_VSpherePlatformFailureDomainSpec = map[string]string{
- "": "VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.",
- "name": "name defines the arbitrary but unique name of a failure domain.",
- "region": "region defines the name of a region tag that will be attached to a vCenter datacenter. The tag category in vCenter must be named openshift-region.",
- "zone": "zone defines the name of a zone tag that will be attached to a vCenter cluster. The tag category in vCenter must be named openshift-zone.",
- "server": "server is the fully-qualified domain name or the IP address of the vCenter server.",
- "topology": "Topology describes a given failure domain using vSphere constructs",
+ "": "VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.",
+ "name": "name defines the arbitrary but unique name of a failure domain.",
+ "region": "region defines the name of a region tag that will be attached to a vCenter datacenter. The tag category in vCenter must be named openshift-region.",
+ "zone": "zone defines the name of a zone tag that will be attached to a vCenter cluster. The tag category in vCenter must be named openshift-zone.",
+ "regionAffinity": "regionAffinity holds the type of region, Datacenter or ComputeCluster. When set to Datacenter, this means the region is a vCenter Datacenter as defined in topology. When set to ComputeCluster, this means the region is a vCenter Cluster as defined in topology.",
+ "zoneAffinity": "zoneAffinity holds the type of the zone and the hostGroup which vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+ "server": "server is the fully-qualified domain name or the IP address of the vCenter server.",
+ "topology": "Topology describes a given failure domain using vSphere constructs",
}
func (VSpherePlatformFailureDomainSpec) SwaggerDoc() map[string]string {
@@ -2087,8 +2121,9 @@ func (NodeList) SwaggerDoc() map[string]string {
}
var map_NodeSpec = map[string]string{
- "cgroupMode": "CgroupMode determines the cgroups version on the node",
- "workerLatencyProfile": "WorkerLatencyProfile determins the how fast the kubelet is updating the status and corresponding reaction of the cluster",
+ "cgroupMode": "CgroupMode determines the cgroups version on the node",
+ "workerLatencyProfile": "WorkerLatencyProfile determins the how fast the kubelet is updating the status and corresponding reaction of the cluster",
+ "minimumKubeletVersion": "minimumKubeletVersion is the lowest version of a kubelet that can join the cluster. Specifically, the apiserver will deny most authorization requests of kubelets that are older than the specified version, only allowing the kubelet to get and update its node object, and perform subjectaccessreviews. This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads, and will eventually be marked as not ready. Its max length is 8, so maximum version allowed is either \"9.999.99\" or \"99.99.99\". Since the kubelet reports the version of the kubernetes release, not Openshift, this field references the underlying kubernetes version this version of Openshift is based off of. In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then they should set the minimumKubeletVersion to 1.30.0. When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version. Thus, a kubelet with version \"1.0.0-ec.0\" will be compatible with minimumKubeletVersion \"1.0.0\" or earlier.",
}
func (NodeSpec) SwaggerDoc() map[string]string {
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/register.go b/etcd/vendor/github.com/openshift/api/operator/v1/register.go
index 21919f9a8b..5920c4fca7 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/register.go
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/register.go
@@ -62,6 +62,8 @@ func addKnownTypes(scheme *runtime.Scheme) error {
&OpenShiftAPIServerList{},
&OpenShiftControllerManager{},
&OpenShiftControllerManagerList{},
+ &OLM{},
+ &OLMList{},
&ServiceCA{},
&ServiceCAList{},
&ServiceCatalogAPIServer{},
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/types.go b/etcd/vendor/github.com/openshift/api/operator/v1/types.go
index 8d6f4b7484..f04b6846ae 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/types.go
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/types.go
@@ -147,17 +147,27 @@ type GenerationStatus struct {
// group is the group of the thing you're tracking
// +kubebuilder:validation:Required
Group string `json:"group"`
+
// resource is the resource type of the thing you're tracking
// +kubebuilder:validation:Required
Resource string `json:"resource"`
+
// namespace is where the thing you're tracking is
// +kubebuilder:validation:Required
Namespace string `json:"namespace"`
+
// name is the name of the thing you're tracking
// +kubebuilder:validation:Required
Name string `json:"name"`
+
+ // TODO: Add validation for lastGeneration. The value for this field should generally increase, except when the associated
+ // resource has been deleted and re-created. To accurately validate this field, we should introduce a new UID field and only
+ // enforce an increasing value in lastGeneration when the UID remains unchanged. A change in the UID indicates that the resource
+ // was re-created, allowing the lastGeneration value to reset or decrease.
+
// lastGeneration is the last generation of the workload controller involved
LastGeneration int64 `json:"lastGeneration"`
+
// hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps
Hash string `json:"hash"`
}
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go b/etcd/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
index 0644b6a93c..fa81ea7d79 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
@@ -20,7 +20,7 @@ import (
// +kubebuilder:resource:path=clustercsidrivers,scope=Cluster
// +kubebuilder:subresource:status
// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/701
-// +openshift:file-pattern=cvoRunLevel=0000_90,operatorName=csi-driver,operatorOrdering=01
+// +openshift:file-pattern=cvoRunLevel=0000_50,operatorName=csi-driver,operatorOrdering=01
// ClusterCSIDriver object allows management and configuration of a CSI driver operator
// installed by default in OpenShift. Name of the object must be name of the CSI driver
@@ -71,7 +71,7 @@ const (
RemovedStorageClass StorageClassStateName = "Removed"
)
-// If you are adding a new driver name here, ensure that 0000_90_cluster_csi_driver_01_config.crd.yaml-merge-patch file is also updated with new driver name.
+// If you are adding a new driver name here, ensure that 0000_50_cluster_csi_driver_01_config.crd.yaml-merge-patch file is also updated with new driver name.
const (
AWSEBSCSIDriver CSIDriverName = "ebs.csi.aws.com"
AWSEFSCSIDriver CSIDriverName = "efs.csi.aws.com"
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/types_olm.go b/etcd/vendor/github.com/openshift/api/operator/v1/types_olm.go
new file mode 100644
index 0000000000..1ce349d357
--- /dev/null
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/types_olm.go
@@ -0,0 +1,61 @@
+package v1
+
+import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+// +genclient
+// +genclient:nonNamespaced
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// OLM provides information to configure an operator to manage the OLM controllers
+//
+// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
+// +openshift:compatibility-gen:level=1
+// +kubebuilder:object:root=true
+// +kubebuilder:resource:path=olms,scope=Cluster
+// +kubebuilder:subresource:status
+// +kubebuilder:metadata:annotations=include.release.openshift.io/ibm-cloud-managed=false
+// +kubebuilder:metadata:annotations=include.release.openshift.io/self-managed-high-availability=true
+// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/1504
+// +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=operator-lifecycle-manager,operatorOrdering=01
+// +openshift:enable:FeatureGate=NewOLM
+// +openshift:capability=OperatorLifecycleManagerV1
+// +kubebuilder:validation:XValidation:rule="self.metadata.name == 'cluster'",message="olm is a singleton, .metadata.name must be 'cluster'"
+type OLM struct {
+ metav1.TypeMeta `json:",inline"`
+
+ // metadata is the standard object's metadata.
+ // More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+ metav1.ObjectMeta `json:"metadata"`
+
+ //spec holds user settable values for configuration
+ //+kubebuilder:validation:Required
+ Spec OLMSpec `json:"spec"`
+ // status holds observed values from the cluster. They may not be overridden.
+ // +optional
+ Status OLMStatus `json:"status"`
+}
+
+type OLMSpec struct {
+ OperatorSpec `json:",inline"`
+}
+
+type OLMStatus struct {
+ OperatorStatus `json:",inline"`
+}
+
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// OLMList is a collection of items
+//
+// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
+// +openshift:compatibility-gen:level=1
+type OLMList struct {
+ metav1.TypeMeta `json:",inline"`
+
+ // metadata is the standard list's metadata.
+ // More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+ metav1.ListMeta `json:"metadata"`
+
+ // Items contains the items
+ Items []OLM `json:"items"`
+}
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
index 84edc0cab3..3b984f2a61 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
@@ -3834,6 +3834,101 @@ func (in *OAuthAPIServerStatus) DeepCopy() *OAuthAPIServerStatus {
return out
}
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLM) DeepCopyInto(out *OLM) {
+ *out = *in
+ out.TypeMeta = in.TypeMeta
+ in.ObjectMeta.DeepCopyInto(&out.ObjectMeta)
+ in.Spec.DeepCopyInto(&out.Spec)
+ in.Status.DeepCopyInto(&out.Status)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLM.
+func (in *OLM) DeepCopy() *OLM {
+ if in == nil {
+ return nil
+ }
+ out := new(OLM)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *OLM) DeepCopyObject() runtime.Object {
+ if c := in.DeepCopy(); c != nil {
+ return c
+ }
+ return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMList) DeepCopyInto(out *OLMList) {
+ *out = *in
+ out.TypeMeta = in.TypeMeta
+ in.ListMeta.DeepCopyInto(&out.ListMeta)
+ if in.Items != nil {
+ in, out := &in.Items, &out.Items
+ *out = make([]OLM, len(*in))
+ for i := range *in {
+ (*in)[i].DeepCopyInto(&(*out)[i])
+ }
+ }
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMList.
+func (in *OLMList) DeepCopy() *OLMList {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMList)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *OLMList) DeepCopyObject() runtime.Object {
+ if c := in.DeepCopy(); c != nil {
+ return c
+ }
+ return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMSpec) DeepCopyInto(out *OLMSpec) {
+ *out = *in
+ in.OperatorSpec.DeepCopyInto(&out.OperatorSpec)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMSpec.
+func (in *OLMSpec) DeepCopy() *OLMSpec {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMSpec)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMStatus) DeepCopyInto(out *OLMStatus) {
+ *out = *in
+ in.OperatorStatus.DeepCopyInto(&out.OperatorStatus)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMStatus.
+func (in *OLMStatus) DeepCopy() *OLMStatus {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMStatus)
+ in.DeepCopyInto(out)
+ return out
+}
+
// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (in *OVNKubernetesConfig) DeepCopyInto(out *OVNKubernetesConfig) {
*out = *in
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
index 9ed8975177..d45d8ac300 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -73,7 +73,7 @@ clustercsidrivers.operator.openshift.io:
- VSphereDriverConfiguration
FilenameOperatorName: csi-driver
FilenameOperatorOrdering: "01"
- FilenameRunLevel: "0000_90"
+ FilenameRunLevel: "0000_50"
GroupName: operator.openshift.io
HasStatus: true
KindName: ClusterCSIDriver
@@ -346,6 +346,31 @@ networks.operator.openshift.io:
TopLevelFeatureGates: []
Version: v1
+olms.operator.openshift.io:
+ Annotations:
+ include.release.openshift.io/ibm-cloud-managed: "false"
+ include.release.openshift.io/self-managed-high-availability: "true"
+ ApprovedPRNumber: https://github.com/openshift/api/pull/1504
+ CRDName: olms.operator.openshift.io
+ Capability: OperatorLifecycleManagerV1
+ Category: ""
+ FeatureGates:
+ - NewOLM
+ FilenameOperatorName: operator-lifecycle-manager
+ FilenameOperatorOrdering: "01"
+ FilenameRunLevel: "0000_10"
+ GroupName: operator.openshift.io
+ HasStatus: true
+ KindName: OLM
+ Labels: {}
+ PluralName: olms
+ PrinterColumns: []
+ Scope: Cluster
+ ShortNames: null
+ TopLevelFeatureGates:
+ - NewOLM
+ Version: v1
+
openshiftapiservers.operator.openshift.io:
Annotations: {}
ApprovedPRNumber: https://github.com/openshift/api/pull/475
diff --git a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
index 03d9e16edb..3c00fe2f03 100644
--- a/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
+++ b/etcd/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
@@ -1896,6 +1896,27 @@ func (StaticIPAMRoutes) SwaggerDoc() map[string]string {
return map_StaticIPAMRoutes
}
+var map_OLM = map[string]string{
+ "": "OLM provides information to configure an operator to manage the OLM controllers\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
+ "metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
+ "spec": "spec holds user settable values for configuration",
+ "status": "status holds observed values from the cluster. They may not be overridden.",
+}
+
+func (OLM) SwaggerDoc() map[string]string {
+ return map_OLM
+}
+
+var map_OLMList = map[string]string{
+ "": "OLMList is a collection of items\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
+ "metadata": "metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
+ "items": "Items contains the items",
+}
+
+func (OLMList) SwaggerDoc() map[string]string {
+ return map_OLMList
+}
+
var map_OpenShiftAPIServer = map[string]string{
"": "OpenShiftAPIServer provides information to configure an operator to manage openshift-apiserver.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
"metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
diff --git a/etcd/vendor/modules.txt b/etcd/vendor/modules.txt
index bcd4bd91ea..b58d12992b 100644
--- a/etcd/vendor/modules.txt
+++ b/etcd/vendor/modules.txt
@@ -189,7 +189,7 @@ github.com/munnerz/goautoneg
# github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f
## explicit
github.com/mxk/go-flowrate/flowrate
-# github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2
+# github.com/openshift/api v0.0.0-20241203091751-58d4ac495429
## explicit; go 1.22.0
github.com/openshift/api/config/v1
github.com/openshift/api/operator/v1
@@ -203,7 +203,7 @@ github.com/openshift/build-machinery-go/make/targets/golang
github.com/openshift/build-machinery-go/make/targets/openshift
github.com/openshift/build-machinery-go/make/targets/openshift/operator
github.com/openshift/build-machinery-go/scripts
-# github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060
+# github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0
## explicit; go 1.22.0
github.com/openshift/library-go/pkg/crypto
github.com/openshift/library-go/pkg/operator/apiserver/audit
diff --git a/go.mod b/go.mod
index f9ce8c6d4c..8b9db1ccb3 100644
--- a/go.mod
+++ b/go.mod
@@ -9,11 +9,11 @@ require (
github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e // openshift-controller-manager
github.com/google/go-cmp v0.6.0
github.com/miekg/dns v1.1.35 // microshift
- github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2
+ github.com/openshift/api v0.0.0-20241203091751-58d4ac495429
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f
- github.com/openshift/client-go v0.0.0-20241001162912-da6d55e4611f
- github.com/openshift/cluster-policy-controller v0.0.0-20241210163452-327d3cbd82fd
- github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060
+ github.com/openshift/client-go v0.0.0-20241203091221-452dfb8fa071
+ github.com/openshift/cluster-policy-controller v0.0.0-20250120184244-f5a25728ff43
+ github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0
github.com/openshift/route-controller-manager v0.0.0-20241218160919-bc97534a12a7
github.com/pkg/errors v0.9.1 // indirect
github.com/spf13/cobra v1.8.1
diff --git a/go.sum b/go.sum
index 68ddb48fbe..65c2999c32 100644
--- a/go.sum
+++ b/go.sum
@@ -345,16 +345,16 @@ github.com/opencontainers/runtime-spec v1.0.3-0.20220909204839-494a5a6aca78 h1:R
github.com/opencontainers/runtime-spec v1.0.3-0.20220909204839-494a5a6aca78/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
github.com/opencontainers/selinux v1.11.0 h1:+5Zbo97w3Lbmb3PeqQtpmTkMwsW5nRI3YaLpt7tQ7oU=
github.com/opencontainers/selinux v1.11.0/go.mod h1:E5dMC3VPuVvVHDYmi78qvhJp8+M586T4DlDRYpFkyec=
-github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2 h1:wCRdyt+nHnJsfuLMJF9RW1JK8G4Gvo//gBy6bZI5USE=
-github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2/go.mod h1:Shkl4HanLwDiiBzakv+con/aMGnVE2MAGvoKp5oyYUo=
+github.com/openshift/api v0.0.0-20241203091751-58d4ac495429 h1:fz+u78YFRL14rXqBKWIVYK04mUOy6LccHe3wQsUS3iI=
+github.com/openshift/api v0.0.0-20241203091751-58d4ac495429/go.mod h1:Shkl4HanLwDiiBzakv+con/aMGnVE2MAGvoKp5oyYUo=
github.com/openshift/apiserver-library-go v0.0.0-20241001175710-6064b62894a6 h1:Wban+ggY6sbg611SQSOeavUeug2cRJGz0rEeXxTxIH0=
github.com/openshift/apiserver-library-go v0.0.0-20241001175710-6064b62894a6/go.mod h1:9Anrq7+DZmmw1Brchx4zmh26hAZbe6Dv7bGXRclnhYI=
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f h1:JMEDso3xFUIDULgFJmcrTfyPpigF3NyyaP07Yy8tHmI=
github.com/openshift/build-machinery-go v0.0.0-20240910153727-5725581bdf8f/go.mod h1:8jcm8UPtg2mCAsxfqKil1xrmRMI3a+XU2TZ9fF8A7TE=
-github.com/openshift/client-go v0.0.0-20241001162912-da6d55e4611f h1:FRc0bVNWprihWS0GqQWzb3dY4dkCwpOP3mDw5NwSoR4=
-github.com/openshift/client-go v0.0.0-20241001162912-da6d55e4611f/go.mod h1:KiZi2mJRH1TOJ3FtBDYS6YvUL30s/iIXaGSUrSa36mo=
-github.com/openshift/cluster-policy-controller v0.0.0-20241210163452-327d3cbd82fd h1:jhn2PtwLCwExAr3OJk8YdSipSQf0dC5eiJQ86MWJk4g=
-github.com/openshift/cluster-policy-controller v0.0.0-20241210163452-327d3cbd82fd/go.mod h1:fa6znaoI7wWjvdbC3Nv9pLxOwyTM8EQRphC8GFg0FHM=
+github.com/openshift/client-go v0.0.0-20241203091221-452dfb8fa071 h1:l0++HnGVKBcs8kXFL/1yeozxioxPGNpp0PYe3Y+0sq4=
+github.com/openshift/client-go v0.0.0-20241203091221-452dfb8fa071/go.mod h1:gL0laCCiIaNTNw1ZsMQZXBVu2NeQFpNWm9bLtYO9+ZU=
+github.com/openshift/cluster-policy-controller v0.0.0-20250120184244-f5a25728ff43 h1:mCMqOAjUIxzQwYBY9ZDvV+tmY1yuQEh/oPFSPQl8Mtw=
+github.com/openshift/cluster-policy-controller v0.0.0-20250120184244-f5a25728ff43/go.mod h1:otpWEpVwaeCSfwHYobTDWOZHPViojyAaSylA9rJh1+Q=
github.com/openshift/etcd/api/v3 v3.5.1-0.20241118170732-914783cae63a h1:+zYlT8ikLojupnnbSNt3PJWKrBGroi8gSrBeHpV4t9w=
github.com/openshift/etcd/api/v3 v3.5.1-0.20241118170732-914783cae63a/go.mod h1:d1hvkRuXkts6PmaYk2Vrgqbv7H4ADfAKhyJqHNLJCB4=
github.com/openshift/etcd/client/pkg/v3 v3.5.1-0.20241118170732-914783cae63a h1:REahb+PGf/XXGcbvc8wLbAX+cdlv5xPof5uOjViMnG4=
@@ -415,8 +415,8 @@ github.com/openshift/kubernetes/staging/src/k8s.io/mount-utils v0.0.0-2025011519
github.com/openshift/kubernetes/staging/src/k8s.io/mount-utils v0.0.0-20250115192950-4b2db1ec33fa/go.mod h1:+OJMa3w16QOf8hZQu6Cq+pAt5nRnLWjcc1/ZGi+LTCk=
github.com/openshift/kubernetes/staging/src/k8s.io/pod-security-admission v0.0.0-20250115192950-4b2db1ec33fa h1:Zc/UkwrtkbYAGN1E6i/uTgJ+liJSvHRE50EoqmxizeU=
github.com/openshift/kubernetes/staging/src/k8s.io/pod-security-admission v0.0.0-20250115192950-4b2db1ec33fa/go.mod h1:8dzwMjAspNQcVCgZf0OSd6l0xnQ12tc5YzToLrZKNkg=
-github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060 h1:jiDC7d8d+jmjv2WfiMY0+Uf55q11MGyYkGGqXnfqWTU=
-github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060/go.mod h1:9B1MYPoLtP9tqjWxcbUNVpwxy68zOH/3EIP6c31dAM0=
+github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0 h1:xf4uw8ShlOfRhtHziMv78jmEhWrWI+thDVJler1i3y4=
+github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0/go.mod h1:eGSI6tp7yUVr4V2d0WrVt2l5s3iCwAh8Hi0RC9Fo16U=
github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20241008152707-25bf9f14db44 h1:dKUAGq29JBk2oRn955gnnz3sG/UhlkUKh1ISleLiews=
github.com/openshift/onsi-ginkgo/v2 v2.6.1-0.20241008152707-25bf9f14db44/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
github.com/openshift/route-controller-manager v0.0.0-20241218160919-bc97534a12a7 h1:5XEaTtPg1PrGzMuq1Rlc8NyEBqlRilwBDr164DamL4s=
diff --git a/scripts/auto-rebase/changelog.txt b/scripts/auto-rebase/changelog.txt
index a38dfcb9b6..fb8682ec69 100644
--- a/scripts/auto-rebase/changelog.txt
+++ b/scripts/auto-rebase/changelog.txt
@@ -1,13 +1,19 @@
-- cluster-csi-snapshot-controller-operator embedded-component 9dceffb866318acb2bb77182095a18b6f397416f to a68ffe82329d198f79508daeb6c63c6bc2a4e19a
- - 0878bc0 2025-01-08T17:39:03+01:00 Support HCP labels
+- api embedded-component 52377f09e5c9293d4694c29375b35fb202bae222 to 366ffb8c60da233a10af049e3869048531b7f6a1
+ - 4945158a 2025-01-16T13:53:23+00:00 Deprecate unused MAPO fields
-- cluster-network-operator embedded-component 722d631aab15ac726c45ad8d2d148843f3ec165b to a967bf84a777795ff47f199c5200341809d250b1
- - 91b8a78 2025-01-13T20:32:09+01:00 Fix user-defined-networks-namespace-label binding
- - 69a1624 2024-12-11T16:53:20+00:00 Add host isolation mounts to ovnkube-node
+- cluster-policy-controller embedded-component 327d3cbd82fd013a9d5d5733eb04cc0dcd97aec5 to f5a25728ff4391a4774bd67f9cc50ec72c96ba13
+ - aa49cfc 2025-01-20T17:12:29+01:00 chore: csr: Add approver for monitoring CSRs issued for metrics-server Pods
+ - 412617d 2025-01-20T17:12:29+01:00 chore: update library-go dep and adjust the code accordingly
-- router image-amd64 7a688b0eab5a27fe13988a21022c774cdeb964b2 to 20f7f41430f7c660438c32532ccd7b453b014b68
- - ee12f18 2025-01-09T11:22:57-05:00 OCPBUGS-47761: Update default_pub_keys.pem to use SHA256
+- machine-config-operator embedded-component 2a5d118838ed91860f4c371f378397670c86f5c2 to 0082265a118b9a01664b726fb25d40719c699409
+ - 2d4bca03 2025-01-20T14:27:48-05:00 feat: add arbiter node role assets and logic
+ - 302b6f0c 2025-01-16T10:59:49+04:00 OCPEDGE-1419 Add ksan-storage extension
-- router image-arm64 7a688b0eab5a27fe13988a21022c774cdeb964b2 to 20f7f41430f7c660438c32532ccd7b453b014b68
- - ee12f18 2025-01-09T11:22:57-05:00 OCPBUGS-47761: Update default_pub_keys.pem to use SHA256
+- operator-framework-olm embedded-component 34e05d48c055b317af82867fed6a5ab4448ee5cd to bdee5d97472604a99d90537969fbe4dc103b94a6
+ - a6ec135c 2025-01-20T19:43:42+00:00 sort lists of identifiers and conflict messages to reduce SAT solver non-determinism (#3491)
+ - 66df0604 2025-01-20T19:42:30+00:00 Add more logging around catalog source sync (#3414)
+ - 3e6b5f89 2025-01-20T19:42:04+00:00 :bug: use operator cache provider for deprecation updates to limit calls to GRPC server (#3490)
+ - 7b5944f6 2025-01-20T14:50:15+01:00 [CARRY] address lint issues in namespace labeler plugin
+ - bb78d033 2025-01-16T11:31:51+01:00 [CARRY] fixup ns labeler plugin
+ - 72fee4d8 2025-01-16T11:28:02+01:00 :bug: Switch queue informer to use types.Namespace name; relocate deletion handler (#3483)
diff --git a/scripts/auto-rebase/commits.txt b/scripts/auto-rebase/commits.txt
index 0f7e72beb6..16efcedd4e 100644
--- a/scripts/auto-rebase/commits.txt
+++ b/scripts/auto-rebase/commits.txt
@@ -1,4 +1,4 @@
-https://github.com/openshift/api embedded-component 52377f09e5c9293d4694c29375b35fb202bae222
+https://github.com/openshift/api embedded-component 366ffb8c60da233a10af049e3869048531b7f6a1
https://github.com/openshift/cluster-csi-snapshot-controller-operator embedded-component a68ffe82329d198f79508daeb6c63c6bc2a4e19a
https://github.com/openshift/cluster-dns-operator embedded-component 0a9deeea4c335e259747b35267811a4a040289fd
https://github.com/openshift/cluster-ingress-operator embedded-component 2856e6ddee396b3cb5492ac128c3015956651b51
@@ -7,14 +7,14 @@ https://github.com/openshift/cluster-kube-controller-manager-operator embedded-c
https://github.com/openshift/cluster-kube-scheduler-operator embedded-component b1cc4471e2f6c5dc81b2b9471f4634f1ecdb88b4
https://github.com/openshift/cluster-network-operator embedded-component a967bf84a777795ff47f199c5200341809d250b1
https://github.com/openshift/cluster-openshift-controller-manager-operator embedded-component 91369d1d6c1e6196425c2f8742068c03bda1457d
-https://github.com/openshift/cluster-policy-controller embedded-component 327d3cbd82fd013a9d5d5733eb04cc0dcd97aec5
+https://github.com/openshift/cluster-policy-controller embedded-component f5a25728ff4391a4774bd67f9cc50ec72c96ba13
https://github.com/openshift/csi-external-snapshotter embedded-component 1fc6ee158070b34f84a94489b33accb333714727
https://github.com/openshift/etcd embedded-component 914783cae63a13b90971c65e28c3349c1ecb7dfb
https://github.com/openshift/kubernetes embedded-component 4b2db1ec33faa3ffc305e5ffa7376908cc955370
https://github.com/openshift/kubernetes-kube-storage-version-migrator embedded-component 4c521b09f4dc55ac69234419e083f3815646f4a9
-https://github.com/openshift/machine-config-operator embedded-component 2a5d118838ed91860f4c371f378397670c86f5c2
+https://github.com/openshift/machine-config-operator embedded-component 0082265a118b9a01664b726fb25d40719c699409
https://github.com/openshift/openshift-controller-manager embedded-component 29531eafbff8b466bbee6a02c345f43245053482
-https://github.com/openshift/operator-framework-olm embedded-component 34e05d48c055b317af82867fed6a5ab4448ee5cd
+https://github.com/openshift/operator-framework-olm embedded-component bdee5d97472604a99d90537969fbe4dc103b94a6
https://github.com/openshift/route-controller-manager embedded-component bc97534a12a7a6bac096e4ed488b29535c8d4f33
https://github.com/openshift/service-ca-operator embedded-component 1e65678429c82df5ae97da4dde8dbe03d75062e6
https://github.com/openshift/oc image-amd64 e005223acd7c478bac070134c16f5533a258be12
diff --git a/scripts/auto-rebase/last_rebase.sh b/scripts/auto-rebase/last_rebase.sh
index 6ce9448f22..ecc345b99b 100755
--- a/scripts/auto-rebase/last_rebase.sh
+++ b/scripts/auto-rebase/last_rebase.sh
@@ -1,2 +1,2 @@
#!/bin/bash -x
-./scripts/auto-rebase/rebase.sh to "registry.ci.openshift.org/ocp/release:4.19.0-0.nightly-2025-01-19-211100" "registry.ci.openshift.org/ocp-arm64/release-arm64:4.19.0-0.nightly-arm64-2025-01-20-000530"
+./scripts/auto-rebase/rebase.sh to "registry.ci.openshift.org/ocp/release:4.19.0-0.nightly-2025-01-21-163021" "registry.ci.openshift.org/ocp-arm64/release-arm64:4.19.0-0.nightly-arm64-2025-01-22-000530"
diff --git a/vendor/github.com/openshift/api/config/v1/types_cluster_version.go b/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
index 61386a72e4..2b392298e8 100644
--- a/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
+++ b/vendor/github.com/openshift/api/config/v1/types_cluster_version.go
@@ -288,7 +288,7 @@ const (
)
// ClusterVersionCapability enumerates optional, core cluster components.
-// +kubebuilder:validation:Enum=openshift-samples;baremetal;marketplace;Console;Insights;Storage;CSISnapshot;NodeTuning;MachineAPI;Build;DeploymentConfig;ImageRegistry;OperatorLifecycleManager;CloudCredential;Ingress;CloudControllerManager
+// +kubebuilder:validation:Enum=openshift-samples;baremetal;marketplace;Console;Insights;Storage;CSISnapshot;NodeTuning;MachineAPI;Build;DeploymentConfig;ImageRegistry;OperatorLifecycleManager;CloudCredential;Ingress;CloudControllerManager;OperatorLifecycleManagerV1
type ClusterVersionCapability string
const (
@@ -379,10 +379,14 @@ const (
// allows to distribute Docker images
ClusterVersionCapabilityImageRegistry ClusterVersionCapability = "ImageRegistry"
- // ClusterVersionCapabilityOperatorLifecycleManager manages the Operator Lifecycle Manager
+ // ClusterVersionCapabilityOperatorLifecycleManager manages the Operator Lifecycle Manager (legacy)
// which itself manages the lifecycle of operators
ClusterVersionCapabilityOperatorLifecycleManager ClusterVersionCapability = "OperatorLifecycleManager"
+ // ClusterVersionCapabilityOperatorLifecycleManagerV1 manages the Operator Lifecycle Manager (v1)
+ // which itself manages the lifecycle of operators
+ ClusterVersionCapabilityOperatorLifecycleManagerV1 ClusterVersionCapability = "OperatorLifecycleManagerV1"
+
// ClusterVersionCapabilityCloudCredential manages credentials for cloud providers
// in openshift cluster
ClusterVersionCapabilityCloudCredential ClusterVersionCapability = "CloudCredential"
@@ -422,6 +426,7 @@ var KnownClusterVersionCapabilities = []ClusterVersionCapability{
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -600,6 +605,7 @@ var ClusterVersionCapabilitySets = map[ClusterVersionCapabilitySet][]ClusterVers
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -618,6 +624,7 @@ var ClusterVersionCapabilitySets = map[ClusterVersionCapabilitySet][]ClusterVers
ClusterVersionCapabilityDeploymentConfig,
ClusterVersionCapabilityImageRegistry,
ClusterVersionCapabilityOperatorLifecycleManager,
+ ClusterVersionCapabilityOperatorLifecycleManagerV1,
ClusterVersionCapabilityCloudCredential,
ClusterVersionCapabilityIngress,
ClusterVersionCapabilityCloudControllerManager,
@@ -739,6 +746,16 @@ type Update struct {
// Release represents an OpenShift release image and associated metadata.
// +k8s:deepcopy-gen=true
type Release struct {
+ // architecture is an optional field that indicates the
+ // value of the cluster architecture. In this context cluster
+ // architecture means either a single architecture or a multi
+ // architecture.
+ // Valid values are 'Multi' and empty.
+ //
+ // +openshift:enable:FeatureGate=ImageStreamImportMode
+ // +optional
+ Architecture ClusterVersionArchitecture `json:"architecture,omitempty"`
+
// version is a semantic version identifying the update version. When this
// field is part of spec, version is optional if image is specified.
// +required
diff --git a/vendor/github.com/openshift/api/config/v1/types_infrastructure.go b/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
index 392d128c11..1ebe2dfb9c 100644
--- a/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
+++ b/vendor/github.com/openshift/api/config/v1/types_infrastructure.go
@@ -507,6 +507,20 @@ type AWSPlatformStatus struct {
// +listType=atomic
// +optional
ResourceTags []AWSResourceTag `json:"resourceTags,omitempty"`
+
+ // cloudLoadBalancerConfig holds configuration related to DNS and cloud
+ // load balancers. It allows configuration of in-cluster DNS as an alternative
+ // to the platform default DNS implementation.
+ // When using the ClusterHosted DNS type, Load Balancer IP addresses
+ // must be provided for the API and internal API load balancers as well as the
+ // ingress load balancer.
+ //
+ // +default={"dnsType": "PlatformDefault"}
+ // +kubebuilder:default={"dnsType": "PlatformDefault"}
+ // +openshift:enable:FeatureGate=AWSClusterHostedDNS
+ // +optional
+ // +nullable
+ CloudLoadBalancerConfig *CloudLoadBalancerConfig `json:"cloudLoadBalancerConfig,omitempty"`
}
// AWSResourceTag is a tag to apply to AWS resources created for the cluster.
@@ -647,12 +661,12 @@ type GCPPlatformStatus struct {
// Tombstone the field as a reminder.
// ClusterHostedDNS ClusterHostedDNS `json:"clusterHostedDNS,omitempty"`
- // cloudLoadBalancerConfig is a union that contains the IP addresses of API,
- // API-Int and Ingress Load Balancers created on the cloud platform. These
- // values would not be populated on on-prem platforms. These Load Balancer
- // IPs are used to configure the in-cluster DNS instances for API, API-Int
- // and Ingress services. `dnsType` is expected to be set to `ClusterHosted`
- // when these Load Balancer IP addresses are populated and used.
+ // cloudLoadBalancerConfig holds configuration related to DNS and cloud
+ // load balancers. It allows configuration of in-cluster DNS as an alternative
+ // to the platform default DNS implementation.
+ // When using the ClusterHosted DNS type, Load Balancer IP addresses
+ // must be provided for the API and internal API load balancers as well as the
+ // ingress load balancer.
//
// +default={"dnsType": "PlatformDefault"}
// +kubebuilder:default={"dnsType": "PlatformDefault"}
@@ -1148,8 +1162,30 @@ type VSpherePlatformLoadBalancer struct {
Type PlatformLoadBalancerType `json:"type,omitempty"`
}
-// VSpherePlatformFailureDomainSpec holds the region and zone failure domain and
-// the vCenter topology of that failure domain.
+// The VSphereFailureDomainZoneType is a string representation of a failure domain
+// zone type. There are two supportable types HostGroup and ComputeCluster
+// +enum
+type VSphereFailureDomainZoneType string
+
+// The VSphereFailureDomainRegionType is a string representation of a failure domain
+// region type. There are two supportable types ComputeCluster and Datacenter
+// +enum
+type VSphereFailureDomainRegionType string
+
+const (
+ // HostGroupFailureDomainZone is a failure domain zone for a vCenter vm-host group.
+ HostGroupFailureDomainZone VSphereFailureDomainZoneType = "HostGroup"
+ // ComputeClusterFailureDomainZone is a failure domain zone for a vCenter compute cluster.
+ ComputeClusterFailureDomainZone VSphereFailureDomainZoneType = "ComputeCluster"
+ // DatacenterFailureDomainRegion is a failure domain region for a vCenter datacenter.
+ DatacenterFailureDomainRegion VSphereFailureDomainRegionType = "Datacenter"
+ // ComputeClusterFailureDomainRegion is a failure domain region for a vCenter compute cluster.
+ ComputeClusterFailureDomainRegion VSphereFailureDomainRegionType = "ComputeCluster"
+)
+
+// VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=VSphereHostVMGroupZonal,rule="has(self.zoneAffinity) && self.zoneAffinity.type == 'HostGroup' ? has(self.regionAffinity) && self.regionAffinity.type == 'ComputeCluster' : true",message="when zoneAffinity type is HostGroup, regionAffinity type must be ComputeCluster"
+// +openshift:validation:FeatureGateAwareXValidation:featureGate=VSphereHostVMGroupZonal,rule="has(self.zoneAffinity) && self.zoneAffinity.type == 'ComputeCluster' ? has(self.regionAffinity) && self.regionAffinity.type == 'Datacenter' : true",message="when zoneAffinity type is ComputeCluster, regionAffinity type must be Datacenter"
type VSpherePlatformFailureDomainSpec struct {
// name defines the arbitrary but unique name
// of a failure domain.
@@ -1174,6 +1210,21 @@ type VSpherePlatformFailureDomainSpec struct {
// +kubebuilder:validation:Required
Zone string `json:"zone"`
+ // regionAffinity holds the type of region, Datacenter or ComputeCluster.
+ // When set to Datacenter, this means the region is a vCenter Datacenter as defined in topology.
+ // When set to ComputeCluster, this means the region is a vCenter Cluster as defined in topology.
+ // +openshift:validation:featureGate=VSphereHostVMGroupZonal
+ // +optional
+ RegionAffinity *VSphereFailureDomainRegionAffinity `json:"regionAffinity,omitempty"`
+
+ // zoneAffinity holds the type of the zone and the hostGroup which
+ // vmGroup and the hostGroup names in vCenter corresponds to
+ // a vm-host group of type Virtual Machine and Host respectively. Is also
+ // contains the vmHostRule which is an affinity vm-host rule in vCenter.
+ // +openshift:validation:featureGate=VSphereHostVMGroupZonal
+ // +optional
+ ZoneAffinity *VSphereFailureDomainZoneAffinity `json:"zoneAffinity,omitempty"`
+
// server is the fully-qualified domain name or the IP address of the vCenter server.
// +kubebuilder:validation:Required
// +kubebuilder:validation:MinLength=1
@@ -1263,6 +1314,74 @@ type VSpherePlatformTopology struct {
Template string `json:"template,omitempty"`
}
+// VSphereFailureDomainZoneAffinity contains the vCenter cluster vm-host group (virtual machine and host types)
+// and the vm-host affinity rule that together creates an affinity configuration for vm-host based zonal.
+// This configuration within vCenter creates the required association between a failure domain, virtual machines
+// and ESXi hosts to create a vm-host based zone.
+// +kubebuilder:validation:XValidation:rule="has(self.type) && self.type == 'HostGroup' ? has(self.hostGroup) : !has(self.hostGroup)",message="hostGroup is required when type is HostGroup, and forbidden otherwise"
+// +union
+type VSphereFailureDomainZoneAffinity struct {
+ // type determines the vSphere object type for a zone within this failure domain.
+ // Available types are ComputeCluster and HostGroup.
+ // When set to ComputeCluster, this means the vCenter cluster defined is the zone.
+ // When set to HostGroup, hostGroup must be configured with hostGroup, vmGroup and vmHostRule and
+ // this means the zone is defined by the grouping of those fields.
+ // +kubebuilder:validation:Enum:=HostGroup;ComputeCluster
+ // +kubebuilder:validation:Required
+ // +unionDiscriminator
+ Type VSphereFailureDomainZoneType `json:"type"`
+
+ // hostGroup holds the vmGroup and the hostGroup names in vCenter
+ // corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also
+ // contains the vmHostRule which is an affinity vm-host rule in vCenter.
+ // +unionMember
+ // +optional
+ HostGroup *VSphereFailureDomainHostGroup `json:"hostGroup,omitempty"`
+}
+
+// VSphereFailureDomainRegionAffinity contains the region type which is the string representation of the
+// VSphereFailureDomainRegionType with available options of Datacenter and ComputeCluster.
+// +union
+type VSphereFailureDomainRegionAffinity struct {
+ // type determines the vSphere object type for a region within this failure domain.
+ // Available types are Datacenter and ComputeCluster.
+ // When set to Datacenter, this means the vCenter Datacenter defined is the region.
+ // When set to ComputeCluster, this means the vCenter cluster defined is the region.
+ // +kubebuilder:validation:Enum:=ComputeCluster;Datacenter
+ // +kubebuilder:validation:Required
+ // +unionDiscriminator
+ Type VSphereFailureDomainRegionType `json:"type"`
+}
+
+// VSphereFailureDomainHostGroup holds the vmGroup and the hostGroup names in vCenter
+// corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also
+// contains the vmHostRule which is an affinity vm-host rule in vCenter.
+type VSphereFailureDomainHostGroup struct {
+ // vmGroup is the name of the vm-host group of type virtual machine within vCenter for this failure domain.
+ // vmGroup is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ VMGroup string `json:"vmGroup"`
+
+ // hostGroup is the name of the vm-host group of type host within vCenter for this failure domain.
+ // hostGroup is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ HostGroup string `json:"hostGroup"`
+
+ // vmHostRule is the name of the affinity vm-host rule within vCenter for this failure domain.
+ // vmHostRule is limited to 80 characters.
+ // This field is required when the VSphereFailureDomain ZoneType is HostGroup
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=80
+ // +kubebuilder:validation:Required
+ VMHostRule string `json:"vmHostRule"`
+}
+
// VSpherePlatformVCenterSpec stores the vCenter connection fields.
// This is used by the vSphere CCM.
type VSpherePlatformVCenterSpec struct {
@@ -1579,7 +1698,7 @@ type PowerVSServiceEndpoint struct {
// Power Cloud - https://cloud.ibm.com/apidocs/power-cloud
//
// +kubebuilder:validation:Required
- // +kubebuilder:validation:Pattern=`^[a-z0-9-]+$`
+ // +kubebuilder:validation:Enum=CIS;COS;COSConfig;DNSServices;GlobalCatalog;GlobalSearch;GlobalTagging;HyperProtect;IAM;KeyProtect;Power;ResourceController;ResourceManager;VPC
Name string `json:"name"`
// url is fully qualified URI with scheme https, that overrides the default generated
@@ -1725,6 +1844,7 @@ type NutanixPlatformSpec struct {
// failureDomains configures failure domains information for the Nutanix platform.
// When set, the failure domains defined here may be used to spread Machines across
// prism element clusters to improve fault tolerance of the cluster.
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate=NutanixMultiSubnets,maxItems=32
// +listType=map
// +listMapKey=name
// +optional
@@ -1751,13 +1871,15 @@ type NutanixFailureDomain struct {
Cluster NutanixResourceIdentifier `json:"cluster"`
// subnets holds a list of identifiers (one or more) of the cluster's network subnets
+ // If the feature gate NutanixMultiSubnets is enabled, up to 32 subnets may be configured.
// for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be
// obtained from the Prism Central console or using the prism_central API.
// +kubebuilder:validation:Required
// +kubebuilder:validation:MinItems=1
- // +kubebuilder:validation:MaxItems=1
- // +listType=map
- // +listMapKey=type
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate="",maxItems=1
+ // +openshift:validation:FeatureGateAwareMaxItems:featureGate=NutanixMultiSubnets,maxItems=32
+ // +openshift:validation:FeatureGateAwareXValidation:featureGate=NutanixMultiSubnets,rule="self.all(x, self.exists_one(y, x == y))",message="each subnet must be unique"
+ // +listType=atomic
Subnets []NutanixResourceIdentifier `json:"subnets"`
}
diff --git a/vendor/github.com/openshift/api/config/v1/types_node.go b/vendor/github.com/openshift/api/config/v1/types_node.go
index b3b1b62c4d..a50328c91f 100644
--- a/vendor/github.com/openshift/api/config/v1/types_node.go
+++ b/vendor/github.com/openshift/api/config/v1/types_node.go
@@ -46,6 +46,25 @@ type NodeSpec struct {
// the status and corresponding reaction of the cluster
// +optional
WorkerLatencyProfile WorkerLatencyProfileType `json:"workerLatencyProfile,omitempty"`
+
+ // minimumKubeletVersion is the lowest version of a kubelet that can join the cluster.
+ // Specifically, the apiserver will deny most authorization requests of kubelets that are older
+ // than the specified version, only allowing the kubelet to get and update its node object, and perform
+ // subjectaccessreviews.
+ // This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads,
+ // and will eventually be marked as not ready.
+ // Its max length is 8, so maximum version allowed is either "9.999.99" or "99.99.99".
+ // Since the kubelet reports the version of the kubernetes release, not Openshift, this field references
+ // the underlying kubernetes version this version of Openshift is based off of.
+ // In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then
+ // they should set the minimumKubeletVersion to 1.30.0.
+ // When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version.
+ // Thus, a kubelet with version "1.0.0-ec.0" will be compatible with minimumKubeletVersion "1.0.0" or earlier.
+ // +kubebuilder:validation:XValidation:rule="self == \"\" || self.matches('^[0-9]*.[0-9]*.[0-9]*$')",message="minmumKubeletVersion must be in a semver compatible format of x.y.z, or empty"
+ // +kubebuilder:validation:MaxLength:=8
+ // +openshift:enable:FeatureGate=MinimumKubeletVersion
+ // +optional
+ MinimumKubeletVersion string `json:"minimumKubeletVersion"`
}
type NodeStatus struct {
diff --git a/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go b/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
index 0693469984..b013d4595e 100644
--- a/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
+++ b/vendor/github.com/openshift/api/config/v1/zz_generated.deepcopy.go
@@ -245,6 +245,11 @@ func (in *AWSPlatformStatus) DeepCopyInto(out *AWSPlatformStatus) {
*out = make([]AWSResourceTag, len(*in))
copy(*out, *in)
}
+ if in.CloudLoadBalancerConfig != nil {
+ in, out := &in.CloudLoadBalancerConfig, &out.CloudLoadBalancerConfig
+ *out = new(CloudLoadBalancerConfig)
+ (*in).DeepCopyInto(*out)
+ }
return
}
@@ -5822,9 +5827,72 @@ func (in *UsernamePrefix) DeepCopy() *UsernamePrefix {
return out
}
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainHostGroup) DeepCopyInto(out *VSphereFailureDomainHostGroup) {
+ *out = *in
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainHostGroup.
+func (in *VSphereFailureDomainHostGroup) DeepCopy() *VSphereFailureDomainHostGroup {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainHostGroup)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainRegionAffinity) DeepCopyInto(out *VSphereFailureDomainRegionAffinity) {
+ *out = *in
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainRegionAffinity.
+func (in *VSphereFailureDomainRegionAffinity) DeepCopy() *VSphereFailureDomainRegionAffinity {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainRegionAffinity)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *VSphereFailureDomainZoneAffinity) DeepCopyInto(out *VSphereFailureDomainZoneAffinity) {
+ *out = *in
+ if in.HostGroup != nil {
+ in, out := &in.HostGroup, &out.HostGroup
+ *out = new(VSphereFailureDomainHostGroup)
+ **out = **in
+ }
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new VSphereFailureDomainZoneAffinity.
+func (in *VSphereFailureDomainZoneAffinity) DeepCopy() *VSphereFailureDomainZoneAffinity {
+ if in == nil {
+ return nil
+ }
+ out := new(VSphereFailureDomainZoneAffinity)
+ in.DeepCopyInto(out)
+ return out
+}
+
// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (in *VSpherePlatformFailureDomainSpec) DeepCopyInto(out *VSpherePlatformFailureDomainSpec) {
*out = *in
+ if in.RegionAffinity != nil {
+ in, out := &in.RegionAffinity, &out.RegionAffinity
+ *out = new(VSphereFailureDomainRegionAffinity)
+ **out = **in
+ }
+ if in.ZoneAffinity != nil {
+ in, out := &in.ZoneAffinity, &out.ZoneAffinity
+ *out = new(VSphereFailureDomainZoneAffinity)
+ (*in).DeepCopyInto(*out)
+ }
in.Topology.DeepCopyInto(&out.Topology)
return
}
diff --git a/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml b/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
index fa5dd4e31d..b2bc82e1a9 100644
--- a/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/vendor/github.com/openshift/api/config/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -115,6 +115,7 @@ clusterversions.config.openshift.io:
Capability: ""
Category: ""
FeatureGates:
+ - ImageStreamImportMode
- SignatureStores
FilenameOperatorName: cluster-version-operator
FilenameOperatorOrdering: "01"
@@ -310,10 +311,13 @@ infrastructures.config.openshift.io:
Capability: ""
Category: ""
FeatureGates:
+ - AWSClusterHostedDNS
- BareMetalLoadBalancer
- GCPClusterHostedDNS
- GCPLabelsTags
+ - NutanixMultiSubnets
- VSphereControlPlaneMachineSet
+ - VSphereHostVMGroupZonal
- VSphereMultiNetworks
- VSphereMultiVCenters
FilenameOperatorName: config-operator
@@ -382,7 +386,8 @@ nodes.config.openshift.io:
CRDName: nodes.config.openshift.io
Capability: ""
Category: ""
- FeatureGates: []
+ FeatureGates:
+ - MinimumKubeletVersion
FilenameOperatorName: config-operator
FilenameOperatorOrdering: "01"
FilenameRunLevel: "0000_10"
diff --git a/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
index c580bd8342..a89678edb9 100644
--- a/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/config/v1/zz_generated.swagger_doc_generated.go
@@ -772,11 +772,12 @@ func (PromQLClusterCondition) SwaggerDoc() map[string]string {
}
var map_Release = map[string]string{
- "": "Release represents an OpenShift release image and associated metadata.",
- "version": "version is a semantic version identifying the update version. When this field is part of spec, version is optional if image is specified.",
- "image": "image is a container image location that contains the update. When this field is part of spec, image is optional if version is specified and the availableUpdates field contains a matching version.",
- "url": "url contains information about this release. This URL is set by the 'url' metadata property on a release or the metadata returned by the update API and should be displayed as a link in user interfaces. The URL field may not be set for test or nightly releases.",
- "channels": "channels is the set of Cincinnati channels to which the release currently belongs.",
+ "": "Release represents an OpenShift release image and associated metadata.",
+ "architecture": "architecture is an optional field that indicates the value of the cluster architecture. In this context cluster architecture means either a single architecture or a multi architecture. Valid values are 'Multi' and empty.",
+ "version": "version is a semantic version identifying the update version. When this field is part of spec, version is optional if image is specified.",
+ "image": "image is a container image location that contains the update. When this field is part of spec, image is optional if version is specified and the availableUpdates field contains a matching version.",
+ "url": "url contains information about this release. This URL is set by the 'url' metadata property on a release or the metadata returned by the update API and should be displayed as a link in user interfaces. The URL field may not be set for test or nightly releases.",
+ "channels": "channels is the set of Cincinnati channels to which the release currently belongs.",
}
func (Release) SwaggerDoc() map[string]string {
@@ -1184,10 +1185,11 @@ func (AWSPlatformSpec) SwaggerDoc() map[string]string {
}
var map_AWSPlatformStatus = map[string]string{
- "": "AWSPlatformStatus holds the current status of the Amazon Web Services infrastructure provider.",
- "region": "region holds the default AWS region for new AWS resources created by the cluster.",
- "serviceEndpoints": "ServiceEndpoints list contains custom endpoints which will override default service endpoint of AWS Services. There must be only one ServiceEndpoint for a service.",
- "resourceTags": "resourceTags is a list of additional tags to apply to AWS resources created for the cluster. See https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html for information on tagging AWS resources. AWS supports a maximum of 50 tags per resource. OpenShift reserves 25 tags for its use, leaving 25 tags available for the user.",
+ "": "AWSPlatformStatus holds the current status of the Amazon Web Services infrastructure provider.",
+ "region": "region holds the default AWS region for new AWS resources created by the cluster.",
+ "serviceEndpoints": "ServiceEndpoints list contains custom endpoints which will override default service endpoint of AWS Services. There must be only one ServiceEndpoint for a service.",
+ "resourceTags": "resourceTags is a list of additional tags to apply to AWS resources created for the cluster. See https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html for information on tagging AWS resources. AWS supports a maximum of 50 tags per resource. OpenShift reserves 25 tags for its use, leaving 25 tags available for the user.",
+ "cloudLoadBalancerConfig": "cloudLoadBalancerConfig holds configuration related to DNS and cloud load balancers. It allows configuration of in-cluster DNS as an alternative to the platform default DNS implementation. When using the ClusterHosted DNS type, Load Balancer IP addresses must be provided for the API and internal API load balancers as well as the ingress load balancer.",
}
func (AWSPlatformStatus) SwaggerDoc() map[string]string {
@@ -1389,7 +1391,7 @@ var map_GCPPlatformStatus = map[string]string{
"region": "region holds the region for new GCP resources created for the cluster.",
"resourceLabels": "resourceLabels is a list of additional labels to apply to GCP resources created for the cluster. See https://cloud.google.com/compute/docs/labeling-resources for information on labeling GCP resources. GCP supports a maximum of 64 labels per resource. OpenShift reserves 32 labels for internal use, allowing 32 labels for user configuration.",
"resourceTags": "resourceTags is a list of additional tags to apply to GCP resources created for the cluster. See https://cloud.google.com/resource-manager/docs/tags/tags-overview for information on tagging GCP resources. GCP supports a maximum of 50 tags per resource.",
- "cloudLoadBalancerConfig": "cloudLoadBalancerConfig is a union that contains the IP addresses of API, API-Int and Ingress Load Balancers created on the cloud platform. These values would not be populated on on-prem platforms. These Load Balancer IPs are used to configure the in-cluster DNS instances for API, API-Int and Ingress services. `dnsType` is expected to be set to `ClusterHosted` when these Load Balancer IP addresses are populated and used.",
+ "cloudLoadBalancerConfig": "cloudLoadBalancerConfig holds configuration related to DNS and cloud load balancers. It allows configuration of in-cluster DNS as an alternative to the platform default DNS implementation. When using the ClusterHosted DNS type, Load Balancer IP addresses must be provided for the API and internal API load balancers as well as the ingress load balancer.",
}
func (GCPPlatformStatus) SwaggerDoc() map[string]string {
@@ -1518,7 +1520,7 @@ var map_NutanixFailureDomain = map[string]string{
"": "NutanixFailureDomain configures failure domain information for the Nutanix platform.",
"name": "name defines the unique name of a failure domain. Name is required and must be at most 64 characters in length. It must consist of only lower case alphanumeric characters and hyphens (-). It must start and end with an alphanumeric character. This value is arbitrary and is used to identify the failure domain within the platform.",
"cluster": "cluster is to identify the cluster (the Prism Element under management of the Prism Central), in which the Machine's VM will be created. The cluster identifier (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
- "subnets": "subnets holds a list of identifiers (one or more) of the cluster's network subnets for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
+ "subnets": "subnets holds a list of identifiers (one or more) of the cluster's network subnets If the feature gate NutanixMultiSubnets is enabled, up to 32 subnets may be configured. for the Machine's VM to connect to. The subnet identifiers (uuid or name) can be obtained from the Prism Central console or using the prism_central API.",
}
func (NutanixFailureDomain) SwaggerDoc() map[string]string {
@@ -1735,13 +1737,45 @@ func (PowerVSServiceEndpoint) SwaggerDoc() map[string]string {
return map_PowerVSServiceEndpoint
}
+var map_VSphereFailureDomainHostGroup = map[string]string{
+ "": "VSphereFailureDomainHostGroup holds the vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+ "vmGroup": "vmGroup is the name of the vm-host group of type virtual machine within vCenter for this failure domain. vmGroup is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+ "hostGroup": "hostGroup is the name of the vm-host group of type host within vCenter for this failure domain. hostGroup is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+ "vmHostRule": "vmHostRule is the name of the affinity vm-host rule within vCenter for this failure domain. vmHostRule is limited to 80 characters. This field is required when the VSphereFailureDomain ZoneType is HostGroup",
+}
+
+func (VSphereFailureDomainHostGroup) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainHostGroup
+}
+
+var map_VSphereFailureDomainRegionAffinity = map[string]string{
+ "": "VSphereFailureDomainRegionAffinity contains the region type which is the string representation of the VSphereFailureDomainRegionType with available options of Datacenter and ComputeCluster.",
+ "type": "type determines the vSphere object type for a region within this failure domain. Available types are Datacenter and ComputeCluster. When set to Datacenter, this means the vCenter Datacenter defined is the region. When set to ComputeCluster, this means the vCenter cluster defined is the region.",
+}
+
+func (VSphereFailureDomainRegionAffinity) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainRegionAffinity
+}
+
+var map_VSphereFailureDomainZoneAffinity = map[string]string{
+ "": "VSphereFailureDomainZoneAffinity contains the vCenter cluster vm-host group (virtual machine and host types) and the vm-host affinity rule that together creates an affinity configuration for vm-host based zonal. This configuration within vCenter creates the required association between a failure domain, virtual machines and ESXi hosts to create a vm-host based zone.",
+ "type": "type determines the vSphere object type for a zone within this failure domain. Available types are ComputeCluster and HostGroup. When set to ComputeCluster, this means the vCenter cluster defined is the zone. When set to HostGroup, hostGroup must be configured with hostGroup, vmGroup and vmHostRule and this means the zone is defined by the grouping of those fields.",
+ "hostGroup": "hostGroup holds the vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+}
+
+func (VSphereFailureDomainZoneAffinity) SwaggerDoc() map[string]string {
+ return map_VSphereFailureDomainZoneAffinity
+}
+
var map_VSpherePlatformFailureDomainSpec = map[string]string{
- "": "VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.",
- "name": "name defines the arbitrary but unique name of a failure domain.",
- "region": "region defines the name of a region tag that will be attached to a vCenter datacenter. The tag category in vCenter must be named openshift-region.",
- "zone": "zone defines the name of a zone tag that will be attached to a vCenter cluster. The tag category in vCenter must be named openshift-zone.",
- "server": "server is the fully-qualified domain name or the IP address of the vCenter server.",
- "topology": "Topology describes a given failure domain using vSphere constructs",
+ "": "VSpherePlatformFailureDomainSpec holds the region and zone failure domain and the vCenter topology of that failure domain.",
+ "name": "name defines the arbitrary but unique name of a failure domain.",
+ "region": "region defines the name of a region tag that will be attached to a vCenter datacenter. The tag category in vCenter must be named openshift-region.",
+ "zone": "zone defines the name of a zone tag that will be attached to a vCenter cluster. The tag category in vCenter must be named openshift-zone.",
+ "regionAffinity": "regionAffinity holds the type of region, Datacenter or ComputeCluster. When set to Datacenter, this means the region is a vCenter Datacenter as defined in topology. When set to ComputeCluster, this means the region is a vCenter Cluster as defined in topology.",
+ "zoneAffinity": "zoneAffinity holds the type of the zone and the hostGroup which vmGroup and the hostGroup names in vCenter corresponds to a vm-host group of type Virtual Machine and Host respectively. Is also contains the vmHostRule which is an affinity vm-host rule in vCenter.",
+ "server": "server is the fully-qualified domain name or the IP address of the vCenter server.",
+ "topology": "Topology describes a given failure domain using vSphere constructs",
}
func (VSpherePlatformFailureDomainSpec) SwaggerDoc() map[string]string {
@@ -2087,8 +2121,9 @@ func (NodeList) SwaggerDoc() map[string]string {
}
var map_NodeSpec = map[string]string{
- "cgroupMode": "CgroupMode determines the cgroups version on the node",
- "workerLatencyProfile": "WorkerLatencyProfile determins the how fast the kubelet is updating the status and corresponding reaction of the cluster",
+ "cgroupMode": "CgroupMode determines the cgroups version on the node",
+ "workerLatencyProfile": "WorkerLatencyProfile determins the how fast the kubelet is updating the status and corresponding reaction of the cluster",
+ "minimumKubeletVersion": "minimumKubeletVersion is the lowest version of a kubelet that can join the cluster. Specifically, the apiserver will deny most authorization requests of kubelets that are older than the specified version, only allowing the kubelet to get and update its node object, and perform subjectaccessreviews. This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads, and will eventually be marked as not ready. Its max length is 8, so maximum version allowed is either \"9.999.99\" or \"99.99.99\". Since the kubelet reports the version of the kubernetes release, not Openshift, this field references the underlying kubernetes version this version of Openshift is based off of. In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then they should set the minimumKubeletVersion to 1.30.0. When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version. Thus, a kubelet with version \"1.0.0-ec.0\" will be compatible with minimumKubeletVersion \"1.0.0\" or earlier.",
}
func (NodeSpec) SwaggerDoc() map[string]string {
diff --git a/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_image_policy.go b/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_image_policy.go
index e3670f03e8..14650fd48f 100644
--- a/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_image_policy.go
+++ b/vendor/github.com/openshift/api/config/v1alpha1/types_cluster_image_policy.go
@@ -41,6 +41,7 @@ type ClusterImagePolicySpec struct {
// If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored.
// In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories
// quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation.
+ // If a scope is configured in both the ClusterImagePolicy and the ImagePolicy, or if the scope in ImagePolicy is nested under one of the scopes from the ClusterImagePolicy, only the policy from the ClusterImagePolicy will be applied.
// For additional details about the format, please refer to the document explaining the docker transport field,
// which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker
// +kubebuilder:validation:Required
diff --git a/vendor/github.com/openshift/api/config/v1alpha1/types_image_policy.go b/vendor/github.com/openshift/api/config/v1alpha1/types_image_policy.go
index 7031110ff1..a177ddb0d6 100644
--- a/vendor/github.com/openshift/api/config/v1alpha1/types_image_policy.go
+++ b/vendor/github.com/openshift/api/config/v1alpha1/types_image_policy.go
@@ -40,6 +40,7 @@ type ImagePolicySpec struct {
// If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored.
// In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories
// quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation.
+ // If a scope is configured in both the ClusterImagePolicy and the ImagePolicy, or if the scope in ImagePolicy is nested under one of the scopes from the ClusterImagePolicy, only the policy from the ClusterImagePolicy will be applied.
// For additional details about the format, please refer to the document explaining the docker transport field,
// which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker
// +kubebuilder:validation:Required
diff --git a/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
index 9da086efc5..55468f38da 100644
--- a/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/config/v1alpha1/zz_generated.swagger_doc_generated.go
@@ -102,7 +102,7 @@ func (ClusterImagePolicyList) SwaggerDoc() map[string]string {
var map_ClusterImagePolicySpec = map[string]string{
"": "CLusterImagePolicySpec is the specification of the ClusterImagePolicy custom resource.",
- "scopes": "scopes defines the list of image identities assigned to a policy. Each item refers to a scope in a registry implementing the \"Docker Registry HTTP API V2\". Scopes matching individual images are named Docker references in the fully expanded form, either using a tag or digest. For example, docker.io/library/busybox:latest (not busybox:latest). More general scopes are prefixes of individual-image scopes, and specify a repository (by omitting the tag or digest), a repository namespace, or a registry host (by only specifying the host name and possibly a port number) or a wildcard expression starting with `*.`, for matching all subdomains (not including a port number). Wildcards are only supported for subdomain matching, and may not be used in the middle of the host, i.e. *.example.com is a valid case, but example*.*.com is not. If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored. In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation. For additional details about the format, please refer to the document explaining the docker transport field, which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker",
+ "scopes": "scopes defines the list of image identities assigned to a policy. Each item refers to a scope in a registry implementing the \"Docker Registry HTTP API V2\". Scopes matching individual images are named Docker references in the fully expanded form, either using a tag or digest. For example, docker.io/library/busybox:latest (not busybox:latest). More general scopes are prefixes of individual-image scopes, and specify a repository (by omitting the tag or digest), a repository namespace, or a registry host (by only specifying the host name and possibly a port number) or a wildcard expression starting with `*.`, for matching all subdomains (not including a port number). Wildcards are only supported for subdomain matching, and may not be used in the middle of the host, i.e. *.example.com is a valid case, but example*.*.com is not. If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored. In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation. If a scope is configured in both the ClusterImagePolicy and the ImagePolicy, or if the scope in ImagePolicy is nested under one of the scopes from the ClusterImagePolicy, only the policy from the ClusterImagePolicy will be applied. For additional details about the format, please refer to the document explaining the docker transport field, which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker",
"policy": "policy contains configuration to allow scopes to be verified, and defines how images not matching the verification policy will be treated.",
}
@@ -151,7 +151,7 @@ func (ImagePolicyList) SwaggerDoc() map[string]string {
var map_ImagePolicySpec = map[string]string{
"": "ImagePolicySpec is the specification of the ImagePolicy CRD.",
- "scopes": "scopes defines the list of image identities assigned to a policy. Each item refers to a scope in a registry implementing the \"Docker Registry HTTP API V2\". Scopes matching individual images are named Docker references in the fully expanded form, either using a tag or digest. For example, docker.io/library/busybox:latest (not busybox:latest). More general scopes are prefixes of individual-image scopes, and specify a repository (by omitting the tag or digest), a repository namespace, or a registry host (by only specifying the host name and possibly a port number) or a wildcard expression starting with `*.`, for matching all subdomains (not including a port number). Wildcards are only supported for subdomain matching, and may not be used in the middle of the host, i.e. *.example.com is a valid case, but example*.*.com is not. If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored. In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation. For additional details about the format, please refer to the document explaining the docker transport field, which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker",
+ "scopes": "scopes defines the list of image identities assigned to a policy. Each item refers to a scope in a registry implementing the \"Docker Registry HTTP API V2\". Scopes matching individual images are named Docker references in the fully expanded form, either using a tag or digest. For example, docker.io/library/busybox:latest (not busybox:latest). More general scopes are prefixes of individual-image scopes, and specify a repository (by omitting the tag or digest), a repository namespace, or a registry host (by only specifying the host name and possibly a port number) or a wildcard expression starting with `*.`, for matching all subdomains (not including a port number). Wildcards are only supported for subdomain matching, and may not be used in the middle of the host, i.e. *.example.com is a valid case, but example*.*.com is not. If multiple scopes match a given image, only the policy requirements for the most specific scope apply. The policy requirements for more general scopes are ignored. In addition to setting a policy appropriate for your own deployed applications, make sure that a policy on the OpenShift image repositories quay.io/openshift-release-dev/ocp-release, quay.io/openshift-release-dev/ocp-v4.0-art-dev (or on a more general scope) allows deployment of the OpenShift images required for cluster operation. If a scope is configured in both the ClusterImagePolicy and the ImagePolicy, or if the scope in ImagePolicy is nested under one of the scopes from the ClusterImagePolicy, only the policy from the ClusterImagePolicy will be applied. For additional details about the format, please refer to the document explaining the docker transport field, which can be found at: https://github.com/containers/image/blob/main/docs/containers-policy.json.5.md#docker",
"policy": "policy contains configuration to allow scopes to be verified, and defines how images not matching the verification policy will be treated.",
}
diff --git a/vendor/github.com/openshift/api/console/v1/types_console_plugin.go b/vendor/github.com/openshift/api/console/v1/types_console_plugin.go
index 24954687d5..534a41ca76 100644
--- a/vendor/github.com/openshift/api/console/v1/types_console_plugin.go
+++ b/vendor/github.com/openshift/api/console/v1/types_console_plugin.go
@@ -43,11 +43,137 @@ type ConsolePluginSpec struct {
Backend ConsolePluginBackend `json:"backend"`
// proxy is a list of proxies that describe various service type
// to which the plugin needs to connect to.
+ // +listType=atomic
// +optional
Proxy []ConsolePluginProxy `json:"proxy,omitempty"`
// i18n is the configuration of plugin's localization resources.
// +optional
I18n ConsolePluginI18n `json:"i18n"`
+ // contentSecurityPolicy is a list of Content-Security-Policy (CSP) directives for the plugin.
+ // Each directive specifies a list of values, appropriate for the given directive type,
+ // for example a list of remote endpoints for fetch directives such as ScriptSrc.
+ // Console web application uses CSP to detect and mitigate certain types of attacks,
+ // such as cross-site scripting (XSS) and data injection attacks.
+ // Dynamic plugins should specify this field if need to load assets from outside
+ // the cluster or if violation reports are observed. Dynamic plugins should always prefer
+ // loading their assets from within the cluster, either by vendoring them, or fetching
+ // from a cluster service.
+ // CSP violation reports can be viewed in the browser's console logs during development and
+ // testing of the plugin in the OpenShift web console.
+ // Available directive types are DefaultSrc, ScriptSrc, StyleSrc, ImgSrc and FontSrc.
+ // Each of the available directives may be defined only once in the list.
+ // The value 'self' is automatically included in all fetch directives by the OpenShift web
+ // console's backend.
+ // For more information about the CSP directives, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
+ //
+ // The OpenShift web console server aggregates the CSP directives and values across
+ // its own default values and all enabled ConsolePlugin CRs, merging them into a single
+ // policy string that is sent to the browser via `Content-Security-Policy` HTTP response header.
+ //
+ // Example:
+ // ConsolePlugin A directives:
+ // script-src: https://script1.com/, https://script2.com/
+ // font-src: https://font1.com/
+ //
+ // ConsolePlugin B directives:
+ // script-src: https://script2.com/, https://script3.com/
+ // font-src: https://font2.com/
+ // img-src: https://img1.com/
+ //
+ // Unified set of CSP directives, passed to the OpenShift web console server:
+ // script-src: https://script1.com/, https://script2.com/, https://script3.com/
+ // font-src: https://font1.com/, https://font2.com/
+ // img-src: https://img1.com/
+ //
+ // OpenShift web console server CSP response header:
+ // Content-Security-Policy: default-src 'self'; base-uri 'self'; script-src 'self' https://script1.com/ https://script2.com/ https://script3.com/; font-src 'self' https://font1.com/ https://font2.com/; img-src 'self' https://img1.com/; style-src 'self'; frame-src 'none'; object-src 'none'
+ //
+ // +openshift:enable:FeatureGate=ConsolePluginContentSecurityPolicy
+ // +kubebuilder:validation:MaxItems=5
+ // +kubebuilder:validation:XValidation:rule="self.map(x, x.values.map(y, y.size()).sum()).sum() < 8192",message="the total combined size of values of all directives must not exceed 8192 (8kb)"
+ // +listType=map
+ // +listMapKey=directive
+ // +optional
+ ContentSecurityPolicy []ConsolePluginCSP `json:"contentSecurityPolicy"`
+}
+
+// DirectiveType is an enumeration of OpenShift web console supported CSP directives.
+// LoadType is an enumeration of i18n loading types.
+// +kubebuilder:validation:Enum:="DefaultSrc";"ScriptSrc";"StyleSrc";"ImgSrc";"FontSrc"
+// +enum
+type DirectiveType string
+
+const (
+ // DefaultSrc directive serves as a fallback for the other CSP fetch directives.
+ // For more information about the DefaultSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/default-src
+ DefaultSrc DirectiveType = "DefaultSrc"
+ // ScriptSrc directive specifies valid sources for JavaScript.
+ // For more information about the ScriptSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/script-src
+ ScriptSrc DirectiveType = "ScriptSrc"
+ // StyleSrc directive specifies valid sources for stylesheets.
+ // For more information about the StyleSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/style-src
+ StyleSrc DirectiveType = "StyleSrc"
+ // ImgSrc directive specifies a valid sources of images and favicons.
+ // For more information about the ImgSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/img-src
+ ImgSrc DirectiveType = "ImgSrc"
+ // FontSrc directive specifies valid sources for fonts loaded using @font-face.
+ // For more information about the FontSrcdirective, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/font-src
+ FontSrc DirectiveType = "FontSrc"
+)
+
+// CSPDirectiveValue is single value for a Content-Security-Policy directive.
+// Each directive value must have a maximum length of 1024 characters and must not contain
+// whitespace, commas (,), semicolons (;) or single quotes ('). The value '*' is not permitted.
+// +kubebuilder:validation:MinLength=1
+// +kubebuilder:validation:MaxLength=1024
+// +kubebuilder:validation:XValidation:rule="!self.contains(\"'\")",message="CSP directive value cannot contain a quote"
+// +kubebuilder:validation:XValidation:rule="!self.matches('\\\\s')",message="CSP directive value cannot contain a whitespace"
+// +kubebuilder:validation:XValidation:rule="!self.contains(',')",message="CSP directive value cannot contain a comma"
+// +kubebuilder:validation:XValidation:rule="!self.contains(';')",message="CSP directive value cannot contain a semi-colon"
+// +kubebuilder:validation:XValidation:rule="self != '*'",message="CSP directive value cannot be a wildcard"
+type CSPDirectiveValue string
+
+// ConsolePluginCSP holds configuration for a specific CSP directive
+type ConsolePluginCSP struct {
+ // directive specifies which Content-Security-Policy directive to configure.
+ // Available directive types are DefaultSrc, ScriptSrc, StyleSrc, ImgSrc and FontSrc.
+ // DefaultSrc directive serves as a fallback for the other CSP fetch directives.
+ // For more information about the DefaultSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/default-src
+ // ScriptSrc directive specifies valid sources for JavaScript.
+ // For more information about the ScriptSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/script-src
+ // StyleSrc directive specifies valid sources for stylesheets.
+ // For more information about the StyleSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/style-src
+ // ImgSrc directive specifies a valid sources of images and favicons.
+ // For more information about the ImgSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/img-src
+ // FontSrc directive specifies valid sources for fonts loaded using @font-face.
+ // For more information about the FontSrc directive, see:
+ // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/font-src
+ // +kubebuilder:validation:Required
+ Directive DirectiveType `json:"directive"`
+ // values defines an array of values to append to the console defaults for this directive.
+ // Each ConsolePlugin may define their own directives with their values. These will be set
+ // by the OpenShift web console's backend, as part of its Content-Security-Policy header.
+ // The array can contain at most 16 values. Each directive value must have a maximum length
+ // of 1024 characters and must not contain whitespace, commas (,), semicolons (;) or single
+ // quotes ('). The value '*' is not permitted.
+ // Each value in the array must be unique.
+ //
+ // +kubebuilder:validation:Required
+ // +kubebuilder:validation:MinItems=1
+ // +kubebuilder:validation:MaxItems=16
+ // +kubebuilder:validation:XValidation:rule="self.all(x, self.exists_one(y, x == y))",message="each CSP directive value must be unique"
+ // +listType=atomic
+ Values []CSPDirectiveValue `json:"values"`
}
// LoadType is an enumeration of i18n loading types
diff --git a/vendor/github.com/openshift/api/console/v1/zz_generated.deepcopy.go b/vendor/github.com/openshift/api/console/v1/zz_generated.deepcopy.go
index b7cd66da0c..d4fefaa37c 100644
--- a/vendor/github.com/openshift/api/console/v1/zz_generated.deepcopy.go
+++ b/vendor/github.com/openshift/api/console/v1/zz_generated.deepcopy.go
@@ -416,6 +416,27 @@ func (in *ConsolePluginBackend) DeepCopy() *ConsolePluginBackend {
return out
}
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *ConsolePluginCSP) DeepCopyInto(out *ConsolePluginCSP) {
+ *out = *in
+ if in.Values != nil {
+ in, out := &in.Values, &out.Values
+ *out = make([]CSPDirectiveValue, len(*in))
+ copy(*out, *in)
+ }
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new ConsolePluginCSP.
+func (in *ConsolePluginCSP) DeepCopy() *ConsolePluginCSP {
+ if in == nil {
+ return nil
+ }
+ out := new(ConsolePluginCSP)
+ in.DeepCopyInto(out)
+ return out
+}
+
// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (in *ConsolePluginI18n) DeepCopyInto(out *ConsolePluginI18n) {
*out = *in
@@ -547,6 +568,13 @@ func (in *ConsolePluginSpec) DeepCopyInto(out *ConsolePluginSpec) {
}
}
out.I18n = in.I18n
+ if in.ContentSecurityPolicy != nil {
+ in, out := &in.ContentSecurityPolicy, &out.ContentSecurityPolicy
+ *out = make([]ConsolePluginCSP, len(*in))
+ for i := range *in {
+ (*in)[i].DeepCopyInto(&(*out)[i])
+ }
+ }
return
}
diff --git a/vendor/github.com/openshift/api/console/v1/zz_generated.featuregated-crd-manifests.yaml b/vendor/github.com/openshift/api/console/v1/zz_generated.featuregated-crd-manifests.yaml
index 98abc7147b..250f873a09 100644
--- a/vendor/github.com/openshift/api/console/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/vendor/github.com/openshift/api/console/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -137,7 +137,8 @@ consoleplugins.console.openshift.io:
CRDName: consoleplugins.console.openshift.io
Capability: Console
Category: ""
- FeatureGates: []
+ FeatureGates:
+ - ConsolePluginContentSecurityPolicy
FilenameOperatorName: ""
FilenameOperatorOrdering: "90"
FilenameRunLevel: ""
diff --git a/vendor/github.com/openshift/api/console/v1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/console/v1/zz_generated.swagger_doc_generated.go
index c6f2070fa4..685cb7ea27 100644
--- a/vendor/github.com/openshift/api/console/v1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/console/v1/zz_generated.swagger_doc_generated.go
@@ -187,6 +187,16 @@ func (ConsolePluginBackend) SwaggerDoc() map[string]string {
return map_ConsolePluginBackend
}
+var map_ConsolePluginCSP = map[string]string{
+ "": "ConsolePluginCSP holds configuration for a specific CSP directive",
+ "directive": "directive specifies which Content-Security-Policy directive to configure. Available directive types are DefaultSrc, ScriptSrc, StyleSrc, ImgSrc and FontSrc. DefaultSrc directive serves as a fallback for the other CSP fetch directives. For more information about the DefaultSrc directive, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/default-src ScriptSrc directive specifies valid sources for JavaScript. For more information about the ScriptSrc directive, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/script-src StyleSrc directive specifies valid sources for stylesheets. For more information about the StyleSrc directive, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/style-src ImgSrc directive specifies a valid sources of images and favicons. For more information about the ImgSrc directive, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/img-src FontSrc directive specifies valid sources for fonts loaded using @font-face. For more information about the FontSrc directive, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/font-src",
+ "values": "values defines an array of values to append to the console defaults for this directive. Each ConsolePlugin may define their own directives with their values. These will be set by the OpenShift web console's backend, as part of its Content-Security-Policy header. The array can contain at most 16 values. Each directive value must have a maximum length of 1024 characters and must not contain whitespace, commas (,), semicolons (;) or single quotes ('). The value '*' is not permitted. Each value in the array must be unique.",
+}
+
+func (ConsolePluginCSP) SwaggerDoc() map[string]string {
+ return map_ConsolePluginCSP
+}
+
var map_ConsolePluginI18n = map[string]string{
"": "ConsolePluginI18n holds information on localization resources that are served by the dynamic plugin.",
"loadType": "loadType indicates how the plugin's localization resource should be loaded. Valid values are Preload, Lazy and the empty string. When set to Preload, all localization resources are fetched when the plugin is loaded. When set to Lazy, localization resources are lazily loaded as and when they are required by the console. When omitted or set to the empty string, the behaviour is equivalent to Lazy type.",
@@ -251,11 +261,12 @@ func (ConsolePluginService) SwaggerDoc() map[string]string {
}
var map_ConsolePluginSpec = map[string]string{
- "": "ConsolePluginSpec is the desired plugin configuration.",
- "displayName": "displayName is the display name of the plugin. The dispalyName should be between 1 and 128 characters.",
- "backend": "backend holds the configuration of backend which is serving console's plugin .",
- "proxy": "proxy is a list of proxies that describe various service type to which the plugin needs to connect to.",
- "i18n": "i18n is the configuration of plugin's localization resources.",
+ "": "ConsolePluginSpec is the desired plugin configuration.",
+ "displayName": "displayName is the display name of the plugin. The dispalyName should be between 1 and 128 characters.",
+ "backend": "backend holds the configuration of backend which is serving console's plugin .",
+ "proxy": "proxy is a list of proxies that describe various service type to which the plugin needs to connect to.",
+ "i18n": "i18n is the configuration of plugin's localization resources.",
+ "contentSecurityPolicy": "contentSecurityPolicy is a list of Content-Security-Policy (CSP) directives for the plugin. Each directive specifies a list of values, appropriate for the given directive type, for example a list of remote endpoints for fetch directives such as ScriptSrc. Console web application uses CSP to detect and mitigate certain types of attacks, such as cross-site scripting (XSS) and data injection attacks. Dynamic plugins should specify this field if need to load assets from outside the cluster or if violation reports are observed. Dynamic plugins should always prefer loading their assets from within the cluster, either by vendoring them, or fetching from a cluster service. CSP violation reports can be viewed in the browser's console logs during development and testing of the plugin in the OpenShift web console. Available directive types are DefaultSrc, ScriptSrc, StyleSrc, ImgSrc and FontSrc. Each of the available directives may be defined only once in the list. The value 'self' is automatically included in all fetch directives by the OpenShift web console's backend. For more information about the CSP directives, see: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy\n\nThe OpenShift web console server aggregates the CSP directives and values across its own default values and all enabled ConsolePlugin CRs, merging them into a single policy string that is sent to the browser via `Content-Security-Policy` HTTP response header.\n\nExample:\n ConsolePlugin A directives:\n script-src: https://script1.com/, https://script2.com/\n font-src: https://font1.com/\n\n ConsolePlugin B directives:\n script-src: https://script2.com/, https://script3.com/\n font-src: https://font2.com/\n img-src: https://img1.com/\n\n Unified set of CSP directives, passed to the OpenShift web console server:\n script-src: https://script1.com/, https://script2.com/, https://script3.com/\n font-src: https://font1.com/, https://font2.com/\n img-src: https://img1.com/\n\n OpenShift web console server CSP response header:\n Content-Security-Policy: default-src 'self'; base-uri 'self'; script-src 'self' https://script1.com/ https://script2.com/ https://script3.com/; font-src 'self' https://font1.com/ https://font2.com/; img-src 'self' https://img1.com/; style-src 'self'; frame-src 'none'; object-src 'none'",
}
func (ConsolePluginSpec) SwaggerDoc() map[string]string {
diff --git a/vendor/github.com/openshift/api/envtest-releases.yaml b/vendor/github.com/openshift/api/envtest-releases.yaml
index 5651bbcc9d..a0e3f0ebdf 100644
--- a/vendor/github.com/openshift/api/envtest-releases.yaml
+++ b/vendor/github.com/openshift/api/envtest-releases.yaml
@@ -25,3 +25,16 @@ releases:
envtest-v1.31.1-linux-arm64.tar.gz:
hash: 86fa42c6a3d92e438e35d6066587d0e4f36b910885e10520868959ece2fe740d99abc735f69d6ebe8920291f70d3819b169ad5ddd2db805f8f56a3b83eee3893
selfLink: https://storage.googleapis.com/openshift-kubebuilder-tools/envtest-v1.31.1-linux-arm64.tar.gz
+ v1.31.2:
+ envtest-v1.31.2-darwin-amd64.tar.gz:
+ hash: 4356c4495be7adc311868569bd69c5c17bfdabc243db3c656ac598be87698647e59d030a5f3c659b5ee0084bb0a9d33ea1faa2f5abfe0d762ec3368877cfd17f
+ selfLink: https://storage.googleapis.com/openshift-kubebuilder-tools/envtest-v1.31.2-darwin-amd64.tar.gz
+ envtest-v1.31.2-darwin-arm64.tar.gz:
+ hash: e1a759927343dfbbdff2909b7ea0046eb5c6840aea763b8d5d8229931fa35dcdcd5659fdace7a4eab1e41bc0b04c683aa96508f26aa38b3b5d3945799cb02324
+ selfLink: https://storage.googleapis.com/openshift-kubebuilder-tools/envtest-v1.31.2-darwin-arm64.tar.gz
+ envtest-v1.31.2-linux-amd64.tar.gz:
+ hash: c9efa849326afc471aff9ee17109491fe3e4d6d76b6d24e6ee8787ef44776abdc57ce6e96f013abf86c91d4ee94660e617a1623d9a71dd95238b6b6bd800aef7
+ selfLink: https://storage.googleapis.com/openshift-kubebuilder-tools/envtest-v1.31.2-linux-amd64.tar.gz
+ envtest-v1.31.2-linux-arm64.tar.gz:
+ hash: f6ad42b701537ddfd6873e9700f8e73927763878eaf36a5437d71fb62bffda91ce7f502e13f9ef4b508d37973ccddd3d847eba0d7150f7acb5495fd82558fbad
+ selfLink: https://storage.googleapis.com/openshift-kubebuilder-tools/envtest-v1.31.2-linux-arm64.tar.gz
diff --git a/vendor/github.com/openshift/api/features.md b/vendor/github.com/openshift/api/features.md
index e668fc88b3..50576155a7 100644
--- a/vendor/github.com/openshift/api/features.md
+++ b/vendor/github.com/openshift/api/features.md
@@ -7,30 +7,34 @@
| MachineAPIOperatorDisableMachineHealthCheckController| | | | | | |
| MultiArchInstallAzure| | | | | | |
| GatewayAPI| | | Enabled | Enabled | | |
+| NewOLM| | Enabled | | Enabled | | Enabled |
+| AWSClusterHostedDNS| | | Enabled | Enabled | Enabled | Enabled |
| AdditionalRoutingCapabilities| | | Enabled | Enabled | Enabled | Enabled |
| AutomatedEtcdBackup| | | Enabled | Enabled | Enabled | Enabled |
| BootcNodeManagement| | | Enabled | Enabled | Enabled | Enabled |
-| CSIDriverSharedResource| | | Enabled | Enabled | Enabled | Enabled |
+| CPMSMachineNamePrefix| | | Enabled | Enabled | Enabled | Enabled |
| ClusterMonitoringConfig| | | Enabled | Enabled | Enabled | Enabled |
+| ConsolePluginContentSecurityPolicy| | | Enabled | Enabled | Enabled | Enabled |
| DNSNameResolver| | | Enabled | Enabled | Enabled | Enabled |
| DynamicResourceAllocation| | | Enabled | Enabled | Enabled | Enabled |
| EtcdBackendQuota| | | Enabled | Enabled | Enabled | Enabled |
| Example| | | Enabled | Enabled | Enabled | Enabled |
| GCPClusterHostedDNS| | | Enabled | Enabled | Enabled | Enabled |
| ImageStreamImportMode| | | Enabled | Enabled | Enabled | Enabled |
+| IngressControllerDynamicConfigurationManager| | | Enabled | Enabled | Enabled | Enabled |
| InsightsConfig| | | Enabled | Enabled | Enabled | Enabled |
| InsightsConfigAPI| | | Enabled | Enabled | Enabled | Enabled |
| InsightsOnDemandDataGather| | | Enabled | Enabled | Enabled | Enabled |
| InsightsRuntimeExtractor| | | Enabled | Enabled | Enabled | Enabled |
| MachineAPIProviderOpenStack| | | Enabled | Enabled | Enabled | Enabled |
| MachineConfigNodes| | | Enabled | Enabled | Enabled | Enabled |
-| ManagedBootImagesAWS| | | Enabled | Enabled | Enabled | Enabled |
| MaxUnavailableStatefulSet| | | Enabled | Enabled | Enabled | Enabled |
| MetricsCollectionProfiles| | | Enabled | Enabled | Enabled | Enabled |
+| MinimumKubeletVersion| | | Enabled | Enabled | Enabled | Enabled |
| MixedCPUsAllocation| | | Enabled | Enabled | Enabled | Enabled |
| NetworkSegmentation| | | Enabled | Enabled | Enabled | Enabled |
-| NewOLM| | | Enabled | Enabled | Enabled | Enabled |
| NodeSwap| | | Enabled | Enabled | Enabled | Enabled |
+| NutanixMultiSubnets| | | Enabled | Enabled | Enabled | Enabled |
| OVNObservability| | | Enabled | Enabled | Enabled | Enabled |
| OnClusterBuild| | | Enabled | Enabled | Enabled | Enabled |
| PersistentIPsForVirtualization| | | Enabled | Enabled | Enabled | Enabled |
@@ -46,8 +50,9 @@
| UpgradeStatus| | | Enabled | Enabled | Enabled | Enabled |
| UserNamespacesPodSecurityStandards| | | Enabled | Enabled | Enabled | Enabled |
| UserNamespacesSupport| | | Enabled | Enabled | Enabled | Enabled |
+| VSphereHostVMGroupZonal| | | Enabled | Enabled | Enabled | Enabled |
| VSphereMultiNetworks| | | Enabled | Enabled | Enabled | Enabled |
-| VSphereMultiVCenters| | | Enabled | Enabled | Enabled | Enabled |
+| VolumeAttributesClass| | | Enabled | Enabled | Enabled | Enabled |
| VolumeGroupSnapshot| | | Enabled | Enabled | Enabled | Enabled |
| ExternalOIDC| Enabled | | Enabled | Enabled | Enabled | Enabled |
| AWSEFSDriverVolumeMetrics| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
@@ -64,7 +69,7 @@
| IngressControllerLBSubnetsAWS| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| KMSv1| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| ManagedBootImages| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
-| MetricsServer| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
+| ManagedBootImagesAWS| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| MultiArchInstallAWS| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| MultiArchInstallGCP| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| NetworkDiagnosticsConfig| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
@@ -75,5 +80,6 @@
| SetEIPForNLBIngressController| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| VSphereControlPlaneMachineSet| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| VSphereDriverConfiguration| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
+| VSphereMultiVCenters| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| VSphereStaticIPs| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
| ValidatingAdmissionPolicy| Enabled | Enabled | Enabled | Enabled | Enabled | Enabled |
diff --git a/vendor/github.com/openshift/api/features/features.go b/vendor/github.com/openshift/api/features/features.go
index 7f49623954..dcaf5712c0 100644
--- a/vendor/github.com/openshift/api/features/features.go
+++ b/vendor/github.com/openshift/api/features/features.go
@@ -36,10 +36,19 @@ func AllFeatureSets() map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGat
var (
allFeatureGates = map[ClusterProfileName]map[configv1.FeatureSet]*FeatureGateEnabledDisabled{}
+ FeatureGateConsolePluginCSP = newFeatureGate("ConsolePluginContentSecurityPolicy").
+ reportProblemsToJiraComponent("Management Console").
+ contactPerson("jhadvig").
+ productScope(ocpSpecific).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1706").
+ mustRegister()
+
FeatureGateServiceAccountTokenNodeBinding = newFeatureGate("ServiceAccountTokenNodeBinding").
reportProblemsToJiraComponent("apiserver-auth").
contactPerson("stlaz").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/4193").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -47,6 +56,7 @@ var (
reportProblemsToJiraComponent("kube-apiserver").
contactPerson("benluddy").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/3488").
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -54,6 +64,7 @@ var (
reportProblemsToJiraComponent("Routing").
contactPerson("miciah").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade).
mustRegister()
@@ -61,6 +72,7 @@ var (
reportProblemsToJiraComponent("Networking / router").
contactPerson("miheer").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -68,20 +80,15 @@ var (
reportProblemsToJiraComponent("auth").
contactPerson("ibihim").
productScope(ocpSpecific).
+ enhancementPR("https://github.com/openshift/enhancements/pull/899").
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
- FeatureGateCSIDriverSharedResource = newFeatureGate("CSIDriverSharedResource").
- reportProblemsToJiraComponent("builds").
- contactPerson("adkaplan").
- productScope(ocpSpecific).
- enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
- mustRegister()
-
FeatureGateBuildCSIVolumes = newFeatureGate("BuildCSIVolumes").
reportProblemsToJiraComponent("builds").
contactPerson("adkaplan").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -89,6 +96,7 @@ var (
reportProblemsToJiraComponent("node").
contactPerson("ehashman").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/2400").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -96,6 +104,7 @@ var (
reportProblemsToJiraComponent("openstack").
contactPerson("egarcia").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -103,6 +112,7 @@ var (
reportProblemsToJiraComponent("insights").
contactPerson("tremes").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -110,6 +120,7 @@ var (
reportProblemsToJiraComponent("insights").
contactPerson("jmesnil").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -117,6 +128,7 @@ var (
reportProblemsToJiraComponent("scheduling").
contactPerson("jchaloup").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/4381").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -124,6 +136,7 @@ var (
reportProblemsToJiraComponent("cloud-credential-operator").
contactPerson("abutcher").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -131,6 +144,7 @@ var (
reportProblemsToJiraComponent("apps").
contactPerson("atiratree").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/961").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -138,12 +152,14 @@ var (
reportProblemsToJiraComponent("node").
contactPerson("sairameshv").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/3386").
mustRegister()
FeatureGatePrivateHostedZoneAWS = newFeatureGate("PrivateHostedZoneAWS").
reportProblemsToJiraComponent("Routing").
contactPerson("miciah").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -151,6 +167,7 @@ var (
reportProblemsToJiraComponent("node").
contactPerson("sgrunert").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -158,6 +175,7 @@ var (
reportProblemsToJiraComponent("Installer").
contactPerson("bhb").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -165,6 +183,7 @@ var (
reportProblemsToJiraComponent("cloud-provider").
contactPerson("jspeed").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -172,20 +191,31 @@ var (
reportProblemsToJiraComponent("machine-config-operator/platform-baremetal").
contactPerson("mkowalsk").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/3705").
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
+ FeatureGateVSphereHostVMGroupZonal = newFeatureGate("VSphereHostVMGroupZonal").
+ reportProblemsToJiraComponent("splat").
+ contactPerson("jcpowermac").
+ productScope(ocpSpecific).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1677").
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ mustRegister()
+
FeatureGateVSphereMultiVCenters = newFeatureGate("VSphereMultiVCenters").
reportProblemsToJiraComponent("splat").
contactPerson("vr4manta").
productScope(ocpSpecific).
- enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
FeatureGateVSphereStaticIPs = newFeatureGate("VSphereStaticIPs").
reportProblemsToJiraComponent("splat").
contactPerson("rvanderp3").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -193,6 +223,15 @@ var (
reportProblemsToJiraComponent("router").
contactPerson("thejasn").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ mustRegister()
+
+ FeatureGateCPMSMachineNamePrefix = newFeatureGate("CPMSMachineNamePrefix").
+ reportProblemsToJiraComponent("Cloud Compute / ControlPlaneMachineSet").
+ contactPerson("chiragkyal").
+ productScope(ocpSpecific).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1714").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -200,6 +239,7 @@ var (
reportProblemsToJiraComponent("Networking/ovn-kubernetes").
contactPerson("tssurya").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -207,6 +247,7 @@ var (
reportProblemsToJiraComponent("Networking/ovn-kubernetes").
contactPerson("tssurya").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -214,6 +255,7 @@ var (
reportProblemsToJiraComponent("Networking/cluster-network-operator").
contactPerson("jcaamano").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -221,6 +263,7 @@ var (
reportProblemsToJiraComponent("Networking/ovn-kubernetes").
contactPerson("jcaamano").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -228,6 +271,7 @@ var (
reportProblemsToJiraComponent("Networking/ovn-kubernetes").
contactPerson("pliu").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -235,6 +279,7 @@ var (
reportProblemsToJiraComponent("Networking/cluster-network-operator").
contactPerson("kyrtapz").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -242,6 +287,7 @@ var (
reportProblemsToJiraComponent("Networking").
contactPerson("npinaeva").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -249,6 +295,7 @@ var (
reportProblemsToJiraComponent("etcd").
contactPerson("hasbro17").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -256,6 +303,7 @@ var (
reportProblemsToJiraComponent("etcd").
contactPerson("hasbro17").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -263,6 +311,7 @@ var (
reportProblemsToJiraComponent("etcd").
contactPerson("hasbro17").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -270,12 +319,14 @@ var (
reportProblemsToJiraComponent("ecoproject").
contactPerson("msluiter").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
mustRegister()
FeatureGateDNSNameResolver = newFeatureGate("DNSNameResolver").
reportProblemsToJiraComponent("dns").
contactPerson("miciah").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -283,6 +334,7 @@ var (
reportProblemsToJiraComponent("splat").
contactPerson("rvanderp3").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -290,6 +342,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("cdoern").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -297,19 +350,22 @@ var (
reportProblemsToJiraComponent("Installer").
contactPerson("vincepri").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
mustRegister()
- FeatureGateMetricsServer = newFeatureGate("MetricsServer").
- reportProblemsToJiraComponent("Monitoring").
- contactPerson("slashpai").
+ FeatureGateGCPClusterHostedDNS = newFeatureGate("GCPClusterHostedDNS").
+ reportProblemsToJiraComponent("Installer").
+ contactPerson("barbacbd").
productScope(ocpSpecific).
- enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
- FeatureGateGCPClusterHostedDNS = newFeatureGate("GCPClusterHostedDNS").
+ FeatureGateAWSClusterHostedDNS = newFeatureGate("AWSClusterHostedDNS").
reportProblemsToJiraComponent("Installer").
contactPerson("barbacbd").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -317,6 +373,7 @@ var (
reportProblemsToJiraComponent("NodeTuningOperator").
contactPerson("titzhak").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -324,6 +381,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("djoshy").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -331,13 +389,15 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("djoshy").
productScope(ocpSpecific).
- enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
FeatureGateDisableKubeletCloudCredentialProviders = newFeatureGate("DisableKubeletCloudCredentialProviders").
reportProblemsToJiraComponent("cloud-provider").
contactPerson("jspeed").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/2395").
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -345,6 +405,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("dkhater").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -352,6 +413,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("inesqyx").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -359,6 +421,7 @@ var (
reportProblemsToJiraComponent("Cluster Version Operator").
contactPerson("lmohanty").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -366,6 +429,7 @@ var (
reportProblemsToJiraComponent("kube-apiserver").
contactPerson("dgrisonnet").
productScope(kubernetes).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -373,6 +437,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("jhernand").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -380,6 +445,7 @@ var (
reportProblemsToJiraComponent("Cluster Version Operator").
contactPerson("pmuller").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -387,13 +453,23 @@ var (
reportProblemsToJiraComponent("kube-apiserver").
contactPerson("akashem").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/4006").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
+ FeatureGateVolumeAttributesClass = newFeatureGate("VolumeAttributesClass").
+ reportProblemsToJiraComponent("Storage / Kubernetes External Components").
+ contactPerson("dfajmon").
+ productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/3751").
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ mustRegister()
+
FeatureGateVolumeGroupSnapshot = newFeatureGate("VolumeGroupSnapshot").
reportProblemsToJiraComponent("Storage / Kubernetes External Components").
contactPerson("fbertina").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/3476").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -401,6 +477,7 @@ var (
reportProblemsToJiraComponent("authentication").
contactPerson("liouk").
productScope(ocpSpecific).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1596").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
enableForClusterProfile(Hypershift, configv1.Default, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -409,6 +486,7 @@ var (
reportProblemsToJiraComponent("cluster-config").
contactPerson("deads").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -416,6 +494,7 @@ var (
reportProblemsToJiraComponent("olm").
contactPerson("joe").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -423,13 +502,15 @@ var (
reportProblemsToJiraComponent("olm").
contactPerson("joe").
productScope(ocpSpecific).
- enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableForClusterProfile(SelfManaged, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade, configv1.Default).
mustRegister()
FeatureGateInsightsOnDemandDataGather = newFeatureGate("InsightsOnDemandDataGather").
reportProblemsToJiraComponent("insights").
contactPerson("tremes").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -437,6 +518,7 @@ var (
reportProblemsToJiraComponent("metal").
contactPerson("EmilienM").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -444,6 +526,7 @@ var (
reportProblemsToJiraComponent("insights").
contactPerson("tremes").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -451,6 +534,7 @@ var (
reportProblemsToJiraComponent("MachineConfigOperator").
contactPerson("jerzhang").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -458,6 +542,7 @@ var (
reportProblemsToJiraComponent("Monitoring").
contactPerson("rexagod").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -465,6 +550,7 @@ var (
reportProblemsToJiraComponent("Storage / Kubernetes External Components").
contactPerson("rbednar").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -472,12 +558,14 @@ var (
reportProblemsToJiraComponent("Installer").
contactPerson("cjschaef").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
mustRegister()
FeatureGateChunkSizeMiB = newFeatureGate("ChunkSizeMiB").
reportProblemsToJiraComponent("Image Registry").
contactPerson("flavianmissi").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -485,12 +573,14 @@ var (
reportProblemsToJiraComponent("OCPCLOUD").
contactPerson("jspeed").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
mustRegister()
FeatureGatePersistentIPsForVirtualization = newFeatureGate("PersistentIPsForVirtualization").
reportProblemsToJiraComponent("CNV Network").
contactPerson("mduarted").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -498,6 +588,7 @@ var (
reportProblemsToJiraComponent("Monitoring").
contactPerson("marioferh").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -505,6 +596,7 @@ var (
reportProblemsToJiraComponent("Installer").
contactPerson("r4f4").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -512,12 +604,14 @@ var (
reportProblemsToJiraComponent("Installer").
contactPerson("r4f4").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
mustRegister()
FeatureGateMultiArchInstallGCP = newFeatureGate("MultiArchInstallGCP").
reportProblemsToJiraComponent("Installer").
contactPerson("r4f4").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -525,6 +619,7 @@ var (
reportProblemsToJiraComponent("Routing").
contactPerson("miciah").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -532,6 +627,7 @@ var (
reportProblemsToJiraComponent("Storage / Kubernetes External Components").
contactPerson("fbertina").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.Default, configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -539,6 +635,7 @@ var (
reportProblemsToJiraComponent("Multi-Arch").
contactPerson("psundara").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -546,6 +643,7 @@ var (
reportProblemsToJiraComponent("Node").
contactPerson("haircommander").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/127").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -553,6 +651,7 @@ var (
reportProblemsToJiraComponent("Node").
contactPerson("haircommander").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/127").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -560,6 +659,7 @@ var (
reportProblemsToJiraComponent("Node").
contactPerson("haircommander").
productScope(kubernetes).
+ enhancementPR("https://github.com/kubernetes/enhancements/issues/4265").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
@@ -567,6 +667,31 @@ var (
reportProblemsToJiraComponent("SPLAT").
contactPerson("rvanderp").
productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ mustRegister()
+
+ FeatureGateIngressControllerDynamicConfigurationManager = newFeatureGate("IngressControllerDynamicConfigurationManager").
+ reportProblemsToJiraComponent("Networking/router").
+ contactPerson("miciah").
+ productScope(ocpSpecific).
+ enhancementPR(legacyFeatureGateWithoutEnhancement).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ mustRegister()
+
+ FeatureGateMinimumKubeletVersion = newFeatureGate("MinimumKubeletVersion").
+ reportProblemsToJiraComponent("Node").
+ contactPerson("haircommander").
+ productScope(ocpSpecific).
+ enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1697").
+ mustRegister()
+
+ FeatureGateNutanixMultiSubnets = newFeatureGate("NutanixMultiSubnets").
+ reportProblemsToJiraComponent("Cloud Compute / Nutanix Provider").
+ contactPerson("yanhli").
+ productScope(ocpSpecific).
+ enhancementPR("https://github.com/openshift/enhancements/pull/1711").
enableIn(configv1.DevPreviewNoUpgrade, configv1.TechPreviewNoUpgrade).
mustRegister()
)
diff --git a/vendor/github.com/openshift/api/features/legacyfeaturegates.go b/vendor/github.com/openshift/api/features/legacyfeaturegates.go
new file mode 100644
index 0000000000..06e1600e0d
--- /dev/null
+++ b/vendor/github.com/openshift/api/features/legacyfeaturegates.go
@@ -0,0 +1,129 @@
+package features
+
+import "k8s.io/apimachinery/pkg/util/sets"
+
+var legacyFeatureGates = sets.New(
+ "AWSClusterHostedDNS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AWSEFSDriverVolumeMetrics",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AdditionalRoutingCapabilities",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AdminNetworkPolicy",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AlibabaPlatform",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AutomatedEtcdBackup",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "AzureWorkloadIdentity",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "BareMetalLoadBalancer",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "BootcNodeManagement",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "BuildCSIVolumes",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ChunkSizeMiB",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ClusterAPIInstall",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ClusterAPIInstallIBMCloud",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ClusterMonitoringConfig",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "DNSNameResolver",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "EtcdBackendQuota",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "Example",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "GCPClusterHostedDNS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "GCPLabelsTags",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "GatewayAPI",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "HardwareSpeed",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ImageStreamImportMode",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "IngressControllerDynamicConfigurationManager",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "IngressControllerLBSubnetsAWS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "InsightsConfig",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "InsightsConfigAPI",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "InsightsOnDemandDataGather",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "InsightsRuntimeExtractor",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "KMSv1",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MachineAPIMigration",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MachineAPIOperatorDisableMachineHealthCheckController",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MachineAPIProviderOpenStack",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MachineConfigNodes",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ManagedBootImages",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "ManagedBootImagesAWS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MetricsCollectionProfiles",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MixedCPUsAllocation",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MultiArchInstallAWS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MultiArchInstallAzure",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "MultiArchInstallGCP",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "NetworkDiagnosticsConfig",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "NetworkLiveMigration",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "NetworkSegmentation",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "NewOLM",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "NodeDisruptionPolicy",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "OVNObservability",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "OnClusterBuild",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "PersistentIPsForVirtualization",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "PinnedImages",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "PlatformOperators",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "PrivateHostedZoneAWS",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "RouteAdvertisements",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "RouteExternalCertificate",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "SetEIPForNLBIngressController",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "SignatureStores",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "SigstoreImageVerification",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "UpgradeStatus",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "VSphereControlPlaneMachineSet",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "VSphereDriverConfiguration",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "VSphereMultiNetworks",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "VSphereMultiVCenters",
+ // never add to this list, if you think you have an exception ask @deads2k
+ "VSphereStaticIPs",
+)
diff --git a/vendor/github.com/openshift/api/features/util.go b/vendor/github.com/openshift/api/features/util.go
index d8d8e94a0e..59bb7bff40 100644
--- a/vendor/github.com/openshift/api/features/util.go
+++ b/vendor/github.com/openshift/api/features/util.go
@@ -3,6 +3,8 @@ package features
import (
"fmt"
configv1 "github.com/openshift/api/config/v1"
+ "net/url"
+ "strings"
)
// FeatureGateDescription is a golang-only interface used to contains details for a feature gate.
@@ -18,6 +20,8 @@ type FeatureGateDescription struct {
ResponsiblePerson string
// OwningProduct is the product that owns the lifecycle of the gate.
OwningProduct OwningProduct
+ // EnhancementPR is the PR for the enhancement.
+ EnhancementPR string
}
type FeatureGateEnabledDisabled struct {
@@ -45,10 +49,15 @@ type featureGateBuilder struct {
owningJiraComponent string
responsiblePerson string
owningProduct OwningProduct
+ enhancementPRURL string
statusByClusterProfileByFeatureSet map[ClusterProfileName]map[configv1.FeatureSet]bool
}
+const (
+ legacyFeatureGateWithoutEnhancement = "FeatureGate predates 4.18"
+)
+
// newFeatureGate featuregate are disabled in every FeatureSet and selectively enabled
func newFeatureGate(name string) *featureGateBuilder {
b := &featureGateBuilder{
@@ -80,6 +89,11 @@ func (b *featureGateBuilder) productScope(owningProduct OwningProduct) *featureG
return b
}
+func (b *featureGateBuilder) enhancementPR(url string) *featureGateBuilder {
+ b.enhancementPRURL = url
+ return b
+}
+
func (b *featureGateBuilder) enableIn(featureSets ...configv1.FeatureSet) *featureGateBuilder {
for clusterProfile := range b.statusByClusterProfileByFeatureSet {
for _, featureSet := range featureSets {
@@ -109,6 +123,22 @@ func (b *featureGateBuilder) register() (configv1.FeatureGateName, error) {
if len(b.owningProduct) == 0 {
return "", fmt.Errorf("missing owningProduct")
}
+ _, enhancementPRErr := url.Parse(b.enhancementPRURL)
+ switch {
+ case b.enhancementPRURL == legacyFeatureGateWithoutEnhancement:
+ if !legacyFeatureGates.Has(b.name) {
+ return "", fmt.Errorf("FeatureGate/%s is a new feature gate, not an existing one. It must have an enhancementPR with GA Graduation Criteria like https://github.com/openshift/enhancements/pull/#### or https://github.com/kubernetes/enhancements/issues/####", b.name)
+ }
+
+ case len(b.enhancementPRURL) == 0:
+ return "", fmt.Errorf("FeatureGate/%s is missing an enhancementPR with GA Graduation Criteria like https://github.com/openshift/enhancements/pull/#### or https://github.com/kubernetes/enhancements/issues/####", b.name)
+
+ case !strings.HasPrefix(b.enhancementPRURL, "https://github.com/openshift/enhancements/pull/") && !strings.HasPrefix(b.enhancementPRURL, "https://github.com/kubernetes/enhancements/issues/"):
+ return "", fmt.Errorf("FeatureGate/%s enhancementPR format is incorrect; must be like https://github.com/openshift/enhancements/pull/#### or https://github.com/kubernetes/enhancements/issues/####", b.name)
+
+ case enhancementPRErr != nil:
+ return "", fmt.Errorf("FeatureGate/%s is enhancementPR is invalid: %w", b.name, enhancementPRErr)
+ }
featureGateName := configv1.FeatureGateName(b.name)
description := FeatureGateDescription{
@@ -118,6 +148,7 @@ func (b *featureGateBuilder) register() (configv1.FeatureGateName, error) {
OwningJiraComponent: b.owningJiraComponent,
ResponsiblePerson: b.responsiblePerson,
OwningProduct: b.owningProduct,
+ EnhancementPR: b.enhancementPRURL,
}
// statusByClusterProfileByFeatureSet is initialized by constructor to be false for every combination
diff --git a/vendor/github.com/openshift/api/kubecontrolplane/v1/types.go b/vendor/github.com/openshift/api/kubecontrolplane/v1/types.go
index b9cdcc213b..6d29f42e3f 100644
--- a/vendor/github.com/openshift/api/kubecontrolplane/v1/types.go
+++ b/vendor/github.com/openshift/api/kubecontrolplane/v1/types.go
@@ -62,6 +62,25 @@ type KubeAPIServerConfig struct {
// TODO this needs to be removed.
APIServerArguments map[string]Arguments `json:"apiServerArguments"`
+
+ // minimumKubeletVersion is the lowest version of a kubelet that can join the cluster.
+ // Specifically, the apiserver will deny most authorization requests of kubelets that are older
+ // than the specified version, only allowing the kubelet to get and update its node object, and perform
+ // subjectaccessreviews.
+ // This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads,
+ // and will eventually be marked as not ready.
+ // Its max length is 8, so maximum version allowed is either "9.999.99" or "99.99.99".
+ // Since the kubelet reports the version of the kubernetes release, not Openshift, this field references
+ // the underlying kubernetes version this version of Openshift is based off of.
+ // In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then
+ // they should set the minimumKubeletVersion to 1.30.0.
+ // When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version.
+ // Thus, a kubelet with version "1.0.0-ec.0" will be compatible with minimumKubeletVersion "1.0.0" or earlier.
+ // +kubebuilder:validation:XValidation:rule="self == \"\" || self.matches('^[0-9]*.[0-9]*.[0-9]*$')",message="minmumKubeletVersion must be in a semver compatible format of x.y.z, or empty"
+ // +kubebuilder:validation:MaxLength:=8
+ // +openshift:enable:FeatureGate=MinimumKubeletVersion
+ // +optional
+ MinimumKubeletVersion string `json:"minimumKubeletVersion"`
}
// Arguments masks the value so protobuf can generate
diff --git a/vendor/github.com/openshift/api/kubecontrolplane/v1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/kubecontrolplane/v1/zz_generated.swagger_doc_generated.go
index 906bb271b0..5ecdd05839 100644
--- a/vendor/github.com/openshift/api/kubecontrolplane/v1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/kubecontrolplane/v1/zz_generated.swagger_doc_generated.go
@@ -33,6 +33,7 @@ var map_KubeAPIServerConfig = map[string]string{
"projectConfig": "projectConfig feeds an admission plugin",
"serviceAccountPublicKeyFiles": "serviceAccountPublicKeyFiles is a list of files, each containing a PEM-encoded public RSA key. (If any file contains a private key, the public portion of the key is used) The list of public keys is used to verify presented service account tokens. Each key is tried in order until the list is exhausted or verification succeeds. If no keys are specified, no service account authentication will be available.",
"oauthConfig": "oauthConfig, if present start the /oauth endpoint in this process",
+ "minimumKubeletVersion": "minimumKubeletVersion is the lowest version of a kubelet that can join the cluster. Specifically, the apiserver will deny most authorization requests of kubelets that are older than the specified version, only allowing the kubelet to get and update its node object, and perform subjectaccessreviews. This means any kubelet that attempts to join the cluster will not be able to run any assigned workloads, and will eventually be marked as not ready. Its max length is 8, so maximum version allowed is either \"9.999.99\" or \"99.99.99\". Since the kubelet reports the version of the kubernetes release, not Openshift, this field references the underlying kubernetes version this version of Openshift is based off of. In other words: if an admin wishes to ensure no nodes run an older version than Openshift 4.17, then they should set the minimumKubeletVersion to 1.30.0. When comparing versions, the kubelet's version is stripped of any contents outside of major.minor.patch version. Thus, a kubelet with version \"1.0.0-ec.0\" will be compatible with minimumKubeletVersion \"1.0.0\" or earlier.",
}
func (KubeAPIServerConfig) SwaggerDoc() map[string]string {
diff --git a/vendor/github.com/openshift/api/machine/v1/types_controlplanemachineset.go b/vendor/github.com/openshift/api/machine/v1/types_controlplanemachineset.go
index 5ac7a5aae9..8ce5266e55 100644
--- a/vendor/github.com/openshift/api/machine/v1/types_controlplanemachineset.go
+++ b/vendor/github.com/openshift/api/machine/v1/types_controlplanemachineset.go
@@ -42,6 +42,22 @@ type ControlPlaneMachineSet struct {
// ControlPlaneMachineSet represents the configuration of the ControlPlaneMachineSet.
type ControlPlaneMachineSetSpec struct {
+ // machineNamePrefix is the prefix used when creating machine names.
+ // Each machine name will consist of this prefix, followed by
+ // a randomly generated string of 5 characters, and the index of the machine.
+ // It must be a lowercase RFC 1123 subdomain, consisting of lowercase
+ // alphanumeric characters, '-', or '.', and must start and end
+ // with an alphanumeric character.
+ // The prefix must be between 1 and 245 characters in length.
+ // For example, if machineNamePrefix is set to 'control-plane',
+ // and three machines are created, their names might be:
+ // control-plane-abcde-0, control-plane-fghij-1, control-plane-klmno-2
+ // +openshift:validation:FeatureGateAwareXValidation:featureGate=CPMSMachineNamePrefix,rule="!format.dns1123Subdomain().validate(self).hasValue()",message="a lowercase RFC 1123 subdomain must consist of lower case alphanumeric characters, '-' or '.', and must start and end with an alphanumeric character."
+ // +kubebuilder:validation:MinLength=1
+ // +kubebuilder:validation:MaxLength=245
+ // +openshift:enable:FeatureGate=CPMSMachineNamePrefix
+ // +optional
+ MachineNamePrefix string `json:"machineNamePrefix,omitempty"`
// State defines whether the ControlPlaneMachineSet is Active or Inactive.
// When Inactive, the ControlPlaneMachineSet will not take any action on the
// state of the Machines within the cluster.
diff --git a/vendor/github.com/openshift/api/machine/v1/zz_generated.featuregated-crd-manifests.yaml b/vendor/github.com/openshift/api/machine/v1/zz_generated.featuregated-crd-manifests.yaml
index b001170faf..7be04ec844 100644
--- a/vendor/github.com/openshift/api/machine/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/vendor/github.com/openshift/api/machine/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -7,6 +7,7 @@ controlplanemachinesets.machine.openshift.io:
Capability: MachineAPI
Category: ""
FeatureGates:
+ - CPMSMachineNamePrefix
- MachineAPIMigration
FilenameOperatorName: control-plane-machine-set
FilenameOperatorOrdering: "01"
diff --git a/vendor/github.com/openshift/api/machine/v1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/machine/v1/zz_generated.swagger_doc_generated.go
index 32b86a7e9b..5e46039106 100644
--- a/vendor/github.com/openshift/api/machine/v1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/machine/v1/zz_generated.swagger_doc_generated.go
@@ -187,12 +187,13 @@ func (ControlPlaneMachineSetList) SwaggerDoc() map[string]string {
}
var map_ControlPlaneMachineSetSpec = map[string]string{
- "": "ControlPlaneMachineSet represents the configuration of the ControlPlaneMachineSet.",
- "state": "State defines whether the ControlPlaneMachineSet is Active or Inactive. When Inactive, the ControlPlaneMachineSet will not take any action on the state of the Machines within the cluster. When Active, the ControlPlaneMachineSet will reconcile the Machines and will update the Machines as necessary. Once Active, a ControlPlaneMachineSet cannot be made Inactive. To prevent further action please remove the ControlPlaneMachineSet.",
- "replicas": "Replicas defines how many Control Plane Machines should be created by this ControlPlaneMachineSet. This field is immutable and cannot be changed after cluster installation. The ControlPlaneMachineSet only operates with 3 or 5 node control planes, 3 and 5 are the only valid values for this field.",
- "strategy": "Strategy defines how the ControlPlaneMachineSet will update Machines when it detects a change to the ProviderSpec.",
- "selector": "Label selector for Machines. Existing Machines selected by this selector will be the ones affected by this ControlPlaneMachineSet. It must match the template's labels. This field is considered immutable after creation of the resource.",
- "template": "Template describes the Control Plane Machines that will be created by this ControlPlaneMachineSet.",
+ "": "ControlPlaneMachineSet represents the configuration of the ControlPlaneMachineSet.",
+ "machineNamePrefix": "machineNamePrefix is the prefix used when creating machine names. Each machine name will consist of this prefix, followed by a randomly generated string of 5 characters, and the index of the machine. It must be a lowercase RFC 1123 subdomain, consisting of lowercase alphanumeric characters, '-', or '.', and must start and end with an alphanumeric character. The prefix must be between 1 and 245 characters in length. For example, if machineNamePrefix is set to 'control-plane', and three machines are created, their names might be: control-plane-abcde-0, control-plane-fghij-1, control-plane-klmno-2",
+ "state": "State defines whether the ControlPlaneMachineSet is Active or Inactive. When Inactive, the ControlPlaneMachineSet will not take any action on the state of the Machines within the cluster. When Active, the ControlPlaneMachineSet will reconcile the Machines and will update the Machines as necessary. Once Active, a ControlPlaneMachineSet cannot be made Inactive. To prevent further action please remove the ControlPlaneMachineSet.",
+ "replicas": "Replicas defines how many Control Plane Machines should be created by this ControlPlaneMachineSet. This field is immutable and cannot be changed after cluster installation. The ControlPlaneMachineSet only operates with 3 or 5 node control planes, 3 and 5 are the only valid values for this field.",
+ "strategy": "Strategy defines how the ControlPlaneMachineSet will update Machines when it detects a change to the ProviderSpec.",
+ "selector": "Label selector for Machines. Existing Machines selected by this selector will be the ones affected by this ControlPlaneMachineSet. It must match the template's labels. This field is considered immutable after creation of the resource.",
+ "template": "Template describes the Control Plane Machines that will be created by this ControlPlaneMachineSet.",
}
func (ControlPlaneMachineSetSpec) SwaggerDoc() map[string]string {
diff --git a/vendor/github.com/openshift/api/machine/v1beta1/types_vsphereprovider.go b/vendor/github.com/openshift/api/machine/v1beta1/types_vsphereprovider.go
index f458cbf6ef..0a0567d630 100644
--- a/vendor/github.com/openshift/api/machine/v1beta1/types_vsphereprovider.go
+++ b/vendor/github.com/openshift/api/machine/v1beta1/types_vsphereprovider.go
@@ -190,6 +190,10 @@ type Workspace struct {
// ResourcePool is the resource pool in which VMs are created/located.
// +optional
ResourcePool string `gcfg:"resourcepool-path,omitempty" json:"resourcePool,omitempty"`
+ // vmGroup is the cluster vm group in which virtual machines will be added for vm host group based zonal.
+ // +openshift:validation:featureGate=VSphereHostVMGroupZonal
+ // +optional
+ VMGroup string `gcfg:"vmGroup,omitempty" json:"vmGroup,omitempty"`
}
// VSphereMachineProviderStatus is the type that will be embedded in a Machine.Status.ProviderStatus field.
diff --git a/vendor/github.com/openshift/api/machine/v1beta1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/machine/v1beta1/zz_generated.swagger_doc_generated.go
index 5bba232bf7..99540dde5e 100644
--- a/vendor/github.com/openshift/api/machine/v1beta1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/machine/v1beta1/zz_generated.swagger_doc_generated.go
@@ -822,6 +822,7 @@ var map_Workspace = map[string]string{
"folder": "Folder is the folder in which VMs are created/located.",
"datastore": "Datastore is the datastore in which VMs are created/located.",
"resourcePool": "ResourcePool is the resource pool in which VMs are created/located.",
+ "vmGroup": "vmGroup is the cluster vm group in which virtual machines will be added for vm host group based zonal.",
}
func (Workspace) SwaggerDoc() map[string]string {
diff --git a/vendor/github.com/openshift/api/operator/v1/register.go b/vendor/github.com/openshift/api/operator/v1/register.go
index 21919f9a8b..5920c4fca7 100644
--- a/vendor/github.com/openshift/api/operator/v1/register.go
+++ b/vendor/github.com/openshift/api/operator/v1/register.go
@@ -62,6 +62,8 @@ func addKnownTypes(scheme *runtime.Scheme) error {
&OpenShiftAPIServerList{},
&OpenShiftControllerManager{},
&OpenShiftControllerManagerList{},
+ &OLM{},
+ &OLMList{},
&ServiceCA{},
&ServiceCAList{},
&ServiceCatalogAPIServer{},
diff --git a/vendor/github.com/openshift/api/operator/v1/types.go b/vendor/github.com/openshift/api/operator/v1/types.go
index 8d6f4b7484..f04b6846ae 100644
--- a/vendor/github.com/openshift/api/operator/v1/types.go
+++ b/vendor/github.com/openshift/api/operator/v1/types.go
@@ -147,17 +147,27 @@ type GenerationStatus struct {
// group is the group of the thing you're tracking
// +kubebuilder:validation:Required
Group string `json:"group"`
+
// resource is the resource type of the thing you're tracking
// +kubebuilder:validation:Required
Resource string `json:"resource"`
+
// namespace is where the thing you're tracking is
// +kubebuilder:validation:Required
Namespace string `json:"namespace"`
+
// name is the name of the thing you're tracking
// +kubebuilder:validation:Required
Name string `json:"name"`
+
+ // TODO: Add validation for lastGeneration. The value for this field should generally increase, except when the associated
+ // resource has been deleted and re-created. To accurately validate this field, we should introduce a new UID field and only
+ // enforce an increasing value in lastGeneration when the UID remains unchanged. A change in the UID indicates that the resource
+ // was re-created, allowing the lastGeneration value to reset or decrease.
+
// lastGeneration is the last generation of the workload controller involved
LastGeneration int64 `json:"lastGeneration"`
+
// hash is an optional field set for resources without generation that are content sensitive like secrets and configmaps
Hash string `json:"hash"`
}
diff --git a/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go b/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
index 0644b6a93c..fa81ea7d79 100644
--- a/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
+++ b/vendor/github.com/openshift/api/operator/v1/types_csi_cluster_driver.go
@@ -20,7 +20,7 @@ import (
// +kubebuilder:resource:path=clustercsidrivers,scope=Cluster
// +kubebuilder:subresource:status
// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/701
-// +openshift:file-pattern=cvoRunLevel=0000_90,operatorName=csi-driver,operatorOrdering=01
+// +openshift:file-pattern=cvoRunLevel=0000_50,operatorName=csi-driver,operatorOrdering=01
// ClusterCSIDriver object allows management and configuration of a CSI driver operator
// installed by default in OpenShift. Name of the object must be name of the CSI driver
@@ -71,7 +71,7 @@ const (
RemovedStorageClass StorageClassStateName = "Removed"
)
-// If you are adding a new driver name here, ensure that 0000_90_cluster_csi_driver_01_config.crd.yaml-merge-patch file is also updated with new driver name.
+// If you are adding a new driver name here, ensure that 0000_50_cluster_csi_driver_01_config.crd.yaml-merge-patch file is also updated with new driver name.
const (
AWSEBSCSIDriver CSIDriverName = "ebs.csi.aws.com"
AWSEFSCSIDriver CSIDriverName = "efs.csi.aws.com"
diff --git a/vendor/github.com/openshift/api/operator/v1/types_olm.go b/vendor/github.com/openshift/api/operator/v1/types_olm.go
new file mode 100644
index 0000000000..1ce349d357
--- /dev/null
+++ b/vendor/github.com/openshift/api/operator/v1/types_olm.go
@@ -0,0 +1,61 @@
+package v1
+
+import metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+// +genclient
+// +genclient:nonNamespaced
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// OLM provides information to configure an operator to manage the OLM controllers
+//
+// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
+// +openshift:compatibility-gen:level=1
+// +kubebuilder:object:root=true
+// +kubebuilder:resource:path=olms,scope=Cluster
+// +kubebuilder:subresource:status
+// +kubebuilder:metadata:annotations=include.release.openshift.io/ibm-cloud-managed=false
+// +kubebuilder:metadata:annotations=include.release.openshift.io/self-managed-high-availability=true
+// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/1504
+// +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=operator-lifecycle-manager,operatorOrdering=01
+// +openshift:enable:FeatureGate=NewOLM
+// +openshift:capability=OperatorLifecycleManagerV1
+// +kubebuilder:validation:XValidation:rule="self.metadata.name == 'cluster'",message="olm is a singleton, .metadata.name must be 'cluster'"
+type OLM struct {
+ metav1.TypeMeta `json:",inline"`
+
+ // metadata is the standard object's metadata.
+ // More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+ metav1.ObjectMeta `json:"metadata"`
+
+ //spec holds user settable values for configuration
+ //+kubebuilder:validation:Required
+ Spec OLMSpec `json:"spec"`
+ // status holds observed values from the cluster. They may not be overridden.
+ // +optional
+ Status OLMStatus `json:"status"`
+}
+
+type OLMSpec struct {
+ OperatorSpec `json:",inline"`
+}
+
+type OLMStatus struct {
+ OperatorStatus `json:",inline"`
+}
+
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+// OLMList is a collection of items
+//
+// Compatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).
+// +openshift:compatibility-gen:level=1
+type OLMList struct {
+ metav1.TypeMeta `json:",inline"`
+
+ // metadata is the standard list's metadata.
+ // More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+ metav1.ListMeta `json:"metadata"`
+
+ // Items contains the items
+ Items []OLM `json:"items"`
+}
diff --git a/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go b/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
index 84edc0cab3..3b984f2a61 100644
--- a/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
+++ b/vendor/github.com/openshift/api/operator/v1/zz_generated.deepcopy.go
@@ -3834,6 +3834,101 @@ func (in *OAuthAPIServerStatus) DeepCopy() *OAuthAPIServerStatus {
return out
}
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLM) DeepCopyInto(out *OLM) {
+ *out = *in
+ out.TypeMeta = in.TypeMeta
+ in.ObjectMeta.DeepCopyInto(&out.ObjectMeta)
+ in.Spec.DeepCopyInto(&out.Spec)
+ in.Status.DeepCopyInto(&out.Status)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLM.
+func (in *OLM) DeepCopy() *OLM {
+ if in == nil {
+ return nil
+ }
+ out := new(OLM)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *OLM) DeepCopyObject() runtime.Object {
+ if c := in.DeepCopy(); c != nil {
+ return c
+ }
+ return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMList) DeepCopyInto(out *OLMList) {
+ *out = *in
+ out.TypeMeta = in.TypeMeta
+ in.ListMeta.DeepCopyInto(&out.ListMeta)
+ if in.Items != nil {
+ in, out := &in.Items, &out.Items
+ *out = make([]OLM, len(*in))
+ for i := range *in {
+ (*in)[i].DeepCopyInto(&(*out)[i])
+ }
+ }
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMList.
+func (in *OLMList) DeepCopy() *OLMList {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMList)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyObject is an autogenerated deepcopy function, copying the receiver, creating a new runtime.Object.
+func (in *OLMList) DeepCopyObject() runtime.Object {
+ if c := in.DeepCopy(); c != nil {
+ return c
+ }
+ return nil
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMSpec) DeepCopyInto(out *OLMSpec) {
+ *out = *in
+ in.OperatorSpec.DeepCopyInto(&out.OperatorSpec)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMSpec.
+func (in *OLMSpec) DeepCopy() *OLMSpec {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMSpec)
+ in.DeepCopyInto(out)
+ return out
+}
+
+// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
+func (in *OLMStatus) DeepCopyInto(out *OLMStatus) {
+ *out = *in
+ in.OperatorStatus.DeepCopyInto(&out.OperatorStatus)
+ return
+}
+
+// DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new OLMStatus.
+func (in *OLMStatus) DeepCopy() *OLMStatus {
+ if in == nil {
+ return nil
+ }
+ out := new(OLMStatus)
+ in.DeepCopyInto(out)
+ return out
+}
+
// DeepCopyInto is an autogenerated deepcopy function, copying the receiver, writing into out. in must be non-nil.
func (in *OVNKubernetesConfig) DeepCopyInto(out *OVNKubernetesConfig) {
*out = *in
diff --git a/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml b/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
index 9ed8975177..d45d8ac300 100644
--- a/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
+++ b/vendor/github.com/openshift/api/operator/v1/zz_generated.featuregated-crd-manifests.yaml
@@ -73,7 +73,7 @@ clustercsidrivers.operator.openshift.io:
- VSphereDriverConfiguration
FilenameOperatorName: csi-driver
FilenameOperatorOrdering: "01"
- FilenameRunLevel: "0000_90"
+ FilenameRunLevel: "0000_50"
GroupName: operator.openshift.io
HasStatus: true
KindName: ClusterCSIDriver
@@ -346,6 +346,31 @@ networks.operator.openshift.io:
TopLevelFeatureGates: []
Version: v1
+olms.operator.openshift.io:
+ Annotations:
+ include.release.openshift.io/ibm-cloud-managed: "false"
+ include.release.openshift.io/self-managed-high-availability: "true"
+ ApprovedPRNumber: https://github.com/openshift/api/pull/1504
+ CRDName: olms.operator.openshift.io
+ Capability: OperatorLifecycleManagerV1
+ Category: ""
+ FeatureGates:
+ - NewOLM
+ FilenameOperatorName: operator-lifecycle-manager
+ FilenameOperatorOrdering: "01"
+ FilenameRunLevel: "0000_10"
+ GroupName: operator.openshift.io
+ HasStatus: true
+ KindName: OLM
+ Labels: {}
+ PluralName: olms
+ PrinterColumns: []
+ Scope: Cluster
+ ShortNames: null
+ TopLevelFeatureGates:
+ - NewOLM
+ Version: v1
+
openshiftapiservers.operator.openshift.io:
Annotations: {}
ApprovedPRNumber: https://github.com/openshift/api/pull/475
diff --git a/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go b/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
index 03d9e16edb..3c00fe2f03 100644
--- a/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
+++ b/vendor/github.com/openshift/api/operator/v1/zz_generated.swagger_doc_generated.go
@@ -1896,6 +1896,27 @@ func (StaticIPAMRoutes) SwaggerDoc() map[string]string {
return map_StaticIPAMRoutes
}
+var map_OLM = map[string]string{
+ "": "OLM provides information to configure an operator to manage the OLM controllers\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
+ "metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
+ "spec": "spec holds user settable values for configuration",
+ "status": "status holds observed values from the cluster. They may not be overridden.",
+}
+
+func (OLM) SwaggerDoc() map[string]string {
+ return map_OLM
+}
+
+var map_OLMList = map[string]string{
+ "": "OLMList is a collection of items\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
+ "metadata": "metadata is the standard list's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
+ "items": "Items contains the items",
+}
+
+func (OLMList) SwaggerDoc() map[string]string {
+ return map_OLMList
+}
+
var map_OpenShiftAPIServer = map[string]string{
"": "OpenShiftAPIServer provides information to configure an operator to manage openshift-apiserver.\n\nCompatibility level 1: Stable within a major release for a minimum of 12 months or 3 minor releases (whichever is longer).",
"metadata": "metadata is the standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata",
diff --git a/vendor/github.com/openshift/api/operator/v1alpha1/types_olm.go b/vendor/github.com/openshift/api/operator/v1alpha1/types_olm.go
index f29385b9fa..748834ca99 100644
--- a/vendor/github.com/openshift/api/operator/v1alpha1/types_olm.go
+++ b/vendor/github.com/openshift/api/operator/v1alpha1/types_olm.go
@@ -17,6 +17,8 @@ import (
// +kubebuilder:object:root=true
// +kubebuilder:resource:path=olms,scope=Cluster
// +kubebuilder:subresource:status
+// +kubebuilder:metadata:annotations=include.release.openshift.io/ibm-cloud-managed=false
+// +kubebuilder:metadata:annotations=include.release.openshift.io/self-managed-high-availability=true
// +openshift:api-approved.openshift.io=https://github.com/openshift/api/pull/1504
// +openshift:file-pattern=cvoRunLevel=0000_10,operatorName=operator-lifecycle-manager,operatorOrdering=01
// +openshift:enable:FeatureGate=NewOLM
diff --git a/vendor/github.com/openshift/api/operator/v1alpha1/zz_generated.featuregated-crd-manifests.yaml b/vendor/github.com/openshift/api/operator/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
index 30c058236d..53d8ff23c3 100644
--- a/vendor/github.com/openshift/api/operator/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
+++ b/vendor/github.com/openshift/api/operator/v1alpha1/zz_generated.featuregated-crd-manifests.yaml
@@ -44,7 +44,9 @@ imagecontentsourcepolicies.operator.openshift.io:
Version: v1alpha1
olms.operator.openshift.io:
- Annotations: {}
+ Annotations:
+ include.release.openshift.io/ibm-cloud-managed: "false"
+ include.release.openshift.io/self-managed-high-availability: "true"
ApprovedPRNumber: https://github.com/openshift/api/pull/1504
CRDName: olms.operator.openshift.io
Capability: ""
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/awsplatformstatus.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/awsplatformstatus.go
index e5b1b74eac..b217e5bdcd 100644
--- a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/awsplatformstatus.go
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/awsplatformstatus.go
@@ -5,9 +5,10 @@ package v1
// AWSPlatformStatusApplyConfiguration represents a declarative configuration of the AWSPlatformStatus type for use
// with apply.
type AWSPlatformStatusApplyConfiguration struct {
- Region *string `json:"region,omitempty"`
- ServiceEndpoints []AWSServiceEndpointApplyConfiguration `json:"serviceEndpoints,omitempty"`
- ResourceTags []AWSResourceTagApplyConfiguration `json:"resourceTags,omitempty"`
+ Region *string `json:"region,omitempty"`
+ ServiceEndpoints []AWSServiceEndpointApplyConfiguration `json:"serviceEndpoints,omitempty"`
+ ResourceTags []AWSResourceTagApplyConfiguration `json:"resourceTags,omitempty"`
+ CloudLoadBalancerConfig *CloudLoadBalancerConfigApplyConfiguration `json:"cloudLoadBalancerConfig,omitempty"`
}
// AWSPlatformStatusApplyConfiguration constructs a declarative configuration of the AWSPlatformStatus type for use with
@@ -49,3 +50,11 @@ func (b *AWSPlatformStatusApplyConfiguration) WithResourceTags(values ...*AWSRes
}
return b
}
+
+// WithCloudLoadBalancerConfig sets the CloudLoadBalancerConfig field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the CloudLoadBalancerConfig field is set to the value of the last call.
+func (b *AWSPlatformStatusApplyConfiguration) WithCloudLoadBalancerConfig(value *CloudLoadBalancerConfigApplyConfiguration) *AWSPlatformStatusApplyConfiguration {
+ b.CloudLoadBalancerConfig = value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/nodespec.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/nodespec.go
index 37965a1384..f1c513f4cb 100644
--- a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/nodespec.go
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/nodespec.go
@@ -9,8 +9,9 @@ import (
// NodeSpecApplyConfiguration represents a declarative configuration of the NodeSpec type for use
// with apply.
type NodeSpecApplyConfiguration struct {
- CgroupMode *v1.CgroupMode `json:"cgroupMode,omitempty"`
- WorkerLatencyProfile *v1.WorkerLatencyProfileType `json:"workerLatencyProfile,omitempty"`
+ CgroupMode *v1.CgroupMode `json:"cgroupMode,omitempty"`
+ WorkerLatencyProfile *v1.WorkerLatencyProfileType `json:"workerLatencyProfile,omitempty"`
+ MinimumKubeletVersion *string `json:"minimumKubeletVersion,omitempty"`
}
// NodeSpecApplyConfiguration constructs a declarative configuration of the NodeSpec type for use with
@@ -34,3 +35,11 @@ func (b *NodeSpecApplyConfiguration) WithWorkerLatencyProfile(value v1.WorkerLat
b.WorkerLatencyProfile = &value
return b
}
+
+// WithMinimumKubeletVersion sets the MinimumKubeletVersion field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the MinimumKubeletVersion field is set to the value of the last call.
+func (b *NodeSpecApplyConfiguration) WithMinimumKubeletVersion(value string) *NodeSpecApplyConfiguration {
+ b.MinimumKubeletVersion = &value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/release.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/release.go
index 4ffecd9266..9247e46a05 100644
--- a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/release.go
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/release.go
@@ -9,10 +9,11 @@ import (
// ReleaseApplyConfiguration represents a declarative configuration of the Release type for use
// with apply.
type ReleaseApplyConfiguration struct {
- Version *string `json:"version,omitempty"`
- Image *string `json:"image,omitempty"`
- URL *v1.URL `json:"url,omitempty"`
- Channels []string `json:"channels,omitempty"`
+ Architecture *v1.ClusterVersionArchitecture `json:"architecture,omitempty"`
+ Version *string `json:"version,omitempty"`
+ Image *string `json:"image,omitempty"`
+ URL *v1.URL `json:"url,omitempty"`
+ Channels []string `json:"channels,omitempty"`
}
// ReleaseApplyConfiguration constructs a declarative configuration of the Release type for use with
@@ -21,6 +22,14 @@ func Release() *ReleaseApplyConfiguration {
return &ReleaseApplyConfiguration{}
}
+// WithArchitecture sets the Architecture field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Architecture field is set to the value of the last call.
+func (b *ReleaseApplyConfiguration) WithArchitecture(value v1.ClusterVersionArchitecture) *ReleaseApplyConfiguration {
+ b.Architecture = &value
+ return b
+}
+
// WithVersion sets the Version field in the declarative configuration to the given value
// and returns the receiver, so that objects can be built by chaining "With" function invocations.
// If called multiple times, the Version field is set to the value of the last call.
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainhostgroup.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainhostgroup.go
new file mode 100644
index 0000000000..f590263a1f
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainhostgroup.go
@@ -0,0 +1,41 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+// VSphereFailureDomainHostGroupApplyConfiguration represents a declarative configuration of the VSphereFailureDomainHostGroup type for use
+// with apply.
+type VSphereFailureDomainHostGroupApplyConfiguration struct {
+ VMGroup *string `json:"vmGroup,omitempty"`
+ HostGroup *string `json:"hostGroup,omitempty"`
+ VMHostRule *string `json:"vmHostRule,omitempty"`
+}
+
+// VSphereFailureDomainHostGroupApplyConfiguration constructs a declarative configuration of the VSphereFailureDomainHostGroup type for use with
+// apply.
+func VSphereFailureDomainHostGroup() *VSphereFailureDomainHostGroupApplyConfiguration {
+ return &VSphereFailureDomainHostGroupApplyConfiguration{}
+}
+
+// WithVMGroup sets the VMGroup field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the VMGroup field is set to the value of the last call.
+func (b *VSphereFailureDomainHostGroupApplyConfiguration) WithVMGroup(value string) *VSphereFailureDomainHostGroupApplyConfiguration {
+ b.VMGroup = &value
+ return b
+}
+
+// WithHostGroup sets the HostGroup field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the HostGroup field is set to the value of the last call.
+func (b *VSphereFailureDomainHostGroupApplyConfiguration) WithHostGroup(value string) *VSphereFailureDomainHostGroupApplyConfiguration {
+ b.HostGroup = &value
+ return b
+}
+
+// WithVMHostRule sets the VMHostRule field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the VMHostRule field is set to the value of the last call.
+func (b *VSphereFailureDomainHostGroupApplyConfiguration) WithVMHostRule(value string) *VSphereFailureDomainHostGroupApplyConfiguration {
+ b.VMHostRule = &value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainregionaffinity.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainregionaffinity.go
new file mode 100644
index 0000000000..316e8e4d62
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainregionaffinity.go
@@ -0,0 +1,27 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+import (
+ v1 "github.com/openshift/api/config/v1"
+)
+
+// VSphereFailureDomainRegionAffinityApplyConfiguration represents a declarative configuration of the VSphereFailureDomainRegionAffinity type for use
+// with apply.
+type VSphereFailureDomainRegionAffinityApplyConfiguration struct {
+ Type *v1.VSphereFailureDomainRegionType `json:"type,omitempty"`
+}
+
+// VSphereFailureDomainRegionAffinityApplyConfiguration constructs a declarative configuration of the VSphereFailureDomainRegionAffinity type for use with
+// apply.
+func VSphereFailureDomainRegionAffinity() *VSphereFailureDomainRegionAffinityApplyConfiguration {
+ return &VSphereFailureDomainRegionAffinityApplyConfiguration{}
+}
+
+// WithType sets the Type field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Type field is set to the value of the last call.
+func (b *VSphereFailureDomainRegionAffinityApplyConfiguration) WithType(value v1.VSphereFailureDomainRegionType) *VSphereFailureDomainRegionAffinityApplyConfiguration {
+ b.Type = &value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainzoneaffinity.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainzoneaffinity.go
new file mode 100644
index 0000000000..a00c370f13
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vspherefailuredomainzoneaffinity.go
@@ -0,0 +1,36 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+import (
+ v1 "github.com/openshift/api/config/v1"
+)
+
+// VSphereFailureDomainZoneAffinityApplyConfiguration represents a declarative configuration of the VSphereFailureDomainZoneAffinity type for use
+// with apply.
+type VSphereFailureDomainZoneAffinityApplyConfiguration struct {
+ Type *v1.VSphereFailureDomainZoneType `json:"type,omitempty"`
+ HostGroup *VSphereFailureDomainHostGroupApplyConfiguration `json:"hostGroup,omitempty"`
+}
+
+// VSphereFailureDomainZoneAffinityApplyConfiguration constructs a declarative configuration of the VSphereFailureDomainZoneAffinity type for use with
+// apply.
+func VSphereFailureDomainZoneAffinity() *VSphereFailureDomainZoneAffinityApplyConfiguration {
+ return &VSphereFailureDomainZoneAffinityApplyConfiguration{}
+}
+
+// WithType sets the Type field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Type field is set to the value of the last call.
+func (b *VSphereFailureDomainZoneAffinityApplyConfiguration) WithType(value v1.VSphereFailureDomainZoneType) *VSphereFailureDomainZoneAffinityApplyConfiguration {
+ b.Type = &value
+ return b
+}
+
+// WithHostGroup sets the HostGroup field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the HostGroup field is set to the value of the last call.
+func (b *VSphereFailureDomainZoneAffinityApplyConfiguration) WithHostGroup(value *VSphereFailureDomainHostGroupApplyConfiguration) *VSphereFailureDomainZoneAffinityApplyConfiguration {
+ b.HostGroup = value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vsphereplatformfailuredomainspec.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vsphereplatformfailuredomainspec.go
index 1c5ec2cf10..aeb2388825 100644
--- a/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vsphereplatformfailuredomainspec.go
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/config/v1/vsphereplatformfailuredomainspec.go
@@ -5,11 +5,13 @@ package v1
// VSpherePlatformFailureDomainSpecApplyConfiguration represents a declarative configuration of the VSpherePlatformFailureDomainSpec type for use
// with apply.
type VSpherePlatformFailureDomainSpecApplyConfiguration struct {
- Name *string `json:"name,omitempty"`
- Region *string `json:"region,omitempty"`
- Zone *string `json:"zone,omitempty"`
- Server *string `json:"server,omitempty"`
- Topology *VSpherePlatformTopologyApplyConfiguration `json:"topology,omitempty"`
+ Name *string `json:"name,omitempty"`
+ Region *string `json:"region,omitempty"`
+ Zone *string `json:"zone,omitempty"`
+ RegionAffinity *VSphereFailureDomainRegionAffinityApplyConfiguration `json:"regionAffinity,omitempty"`
+ ZoneAffinity *VSphereFailureDomainZoneAffinityApplyConfiguration `json:"zoneAffinity,omitempty"`
+ Server *string `json:"server,omitempty"`
+ Topology *VSpherePlatformTopologyApplyConfiguration `json:"topology,omitempty"`
}
// VSpherePlatformFailureDomainSpecApplyConfiguration constructs a declarative configuration of the VSpherePlatformFailureDomainSpec type for use with
@@ -42,6 +44,22 @@ func (b *VSpherePlatformFailureDomainSpecApplyConfiguration) WithZone(value stri
return b
}
+// WithRegionAffinity sets the RegionAffinity field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the RegionAffinity field is set to the value of the last call.
+func (b *VSpherePlatformFailureDomainSpecApplyConfiguration) WithRegionAffinity(value *VSphereFailureDomainRegionAffinityApplyConfiguration) *VSpherePlatformFailureDomainSpecApplyConfiguration {
+ b.RegionAffinity = value
+ return b
+}
+
+// WithZoneAffinity sets the ZoneAffinity field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ZoneAffinity field is set to the value of the last call.
+func (b *VSpherePlatformFailureDomainSpecApplyConfiguration) WithZoneAffinity(value *VSphereFailureDomainZoneAffinityApplyConfiguration) *VSpherePlatformFailureDomainSpecApplyConfiguration {
+ b.ZoneAffinity = value
+ return b
+}
+
// WithServer sets the Server field in the declarative configuration to the given value
// and returns the receiver, so that objects can be built by chaining "With" function invocations.
// If called multiple times, the Server field is set to the value of the last call.
diff --git a/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go b/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
index 003e4d2eff..aef94942c4 100644
--- a/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
+++ b/vendor/github.com/openshift/client-go/config/applyconfigurations/internal/internal.go
@@ -139,6 +139,11 @@ var schemaYAML = typed.YAMLObject(`types:
- name: com.github.openshift.api.config.v1.AWSPlatformStatus
map:
fields:
+ - name: cloudLoadBalancerConfig
+ type:
+ namedType: com.github.openshift.api.config.v1.CloudLoadBalancerConfig
+ default:
+ dnsType: PlatformDefault
- name: region
type:
scalar: string
@@ -2167,6 +2172,10 @@ var schemaYAML = typed.YAMLObject(`types:
- name: cgroupMode
type:
scalar: string
+ - name: minimumKubeletVersion
+ type:
+ scalar: string
+ default: ""
- name: workerLatencyProfile
type:
scalar: string
@@ -2197,9 +2206,7 @@ var schemaYAML = typed.YAMLObject(`types:
list:
elementType:
namedType: com.github.openshift.api.config.v1.NutanixResourceIdentifier
- elementRelationship: associative
- keys:
- - type
+ elementRelationship: atomic
- name: com.github.openshift.api.config.v1.NutanixPlatformLoadBalancer
map:
fields:
@@ -3044,6 +3051,9 @@ var schemaYAML = typed.YAMLObject(`types:
- name: com.github.openshift.api.config.v1.Release
map:
fields:
+ - name: architecture
+ type:
+ scalar: string
- name: channels
type:
list:
@@ -3382,6 +3392,45 @@ var schemaYAML = typed.YAMLObject(`types:
type:
scalar: string
default: ""
+- name: com.github.openshift.api.config.v1.VSphereFailureDomainHostGroup
+ map:
+ fields:
+ - name: hostGroup
+ type:
+ scalar: string
+ default: ""
+ - name: vmGroup
+ type:
+ scalar: string
+ default: ""
+ - name: vmHostRule
+ type:
+ scalar: string
+ default: ""
+- name: com.github.openshift.api.config.v1.VSphereFailureDomainRegionAffinity
+ map:
+ fields:
+ - name: type
+ type:
+ scalar: string
+ default: ""
+ unions:
+ - discriminator: type
+- name: com.github.openshift.api.config.v1.VSphereFailureDomainZoneAffinity
+ map:
+ fields:
+ - name: hostGroup
+ type:
+ namedType: com.github.openshift.api.config.v1.VSphereFailureDomainHostGroup
+ - name: type
+ type:
+ scalar: string
+ default: ""
+ unions:
+ - discriminator: type
+ fields:
+ - fieldName: hostGroup
+ discriminatorValue: HostGroup
- name: com.github.openshift.api.config.v1.VSpherePlatformFailureDomainSpec
map:
fields:
@@ -3393,6 +3442,9 @@ var schemaYAML = typed.YAMLObject(`types:
type:
scalar: string
default: ""
+ - name: regionAffinity
+ type:
+ namedType: com.github.openshift.api.config.v1.VSphereFailureDomainRegionAffinity
- name: server
type:
scalar: string
@@ -3405,6 +3457,9 @@ var schemaYAML = typed.YAMLObject(`types:
type:
scalar: string
default: ""
+ - name: zoneAffinity
+ type:
+ namedType: com.github.openshift.api.config.v1.VSphereFailureDomainZoneAffinity
- name: com.github.openshift.api.config.v1.VSpherePlatformLoadBalancer
map:
fields:
diff --git a/vendor/github.com/openshift/client-go/operator/applyconfigurations/internal/internal.go b/vendor/github.com/openshift/client-go/operator/applyconfigurations/internal/internal.go
index 60be55fbb0..2a11bffc77 100644
--- a/vendor/github.com/openshift/client-go/operator/applyconfigurations/internal/internal.go
+++ b/vendor/github.com/openshift/client-go/operator/applyconfigurations/internal/internal.go
@@ -2897,6 +2897,81 @@ var schemaYAML = typed.YAMLObject(`types:
- name: latestAvailableRevision
type:
scalar: numeric
+- name: com.github.openshift.api.operator.v1.OLM
+ map:
+ fields:
+ - name: apiVersion
+ type:
+ scalar: string
+ - name: kind
+ type:
+ scalar: string
+ - name: metadata
+ type:
+ namedType: io.k8s.apimachinery.pkg.apis.meta.v1.ObjectMeta
+ default: {}
+ - name: spec
+ type:
+ namedType: com.github.openshift.api.operator.v1.OLMSpec
+ default: {}
+ - name: status
+ type:
+ namedType: com.github.openshift.api.operator.v1.OLMStatus
+ default: {}
+- name: com.github.openshift.api.operator.v1.OLMSpec
+ map:
+ fields:
+ - name: logLevel
+ type:
+ scalar: string
+ - name: managementState
+ type:
+ scalar: string
+ default: ""
+ - name: observedConfig
+ type:
+ namedType: __untyped_atomic_
+ - name: operatorLogLevel
+ type:
+ scalar: string
+ - name: unsupportedConfigOverrides
+ type:
+ namedType: __untyped_atomic_
+- name: com.github.openshift.api.operator.v1.OLMStatus
+ map:
+ fields:
+ - name: conditions
+ type:
+ list:
+ elementType:
+ namedType: com.github.openshift.api.operator.v1.OperatorCondition
+ elementRelationship: associative
+ keys:
+ - type
+ - name: generations
+ type:
+ list:
+ elementType:
+ namedType: com.github.openshift.api.operator.v1.GenerationStatus
+ elementRelationship: associative
+ keys:
+ - group
+ - resource
+ - namespace
+ - name
+ - name: latestAvailableRevision
+ type:
+ scalar: numeric
+ - name: observedGeneration
+ type:
+ scalar: numeric
+ - name: readyReplicas
+ type:
+ scalar: numeric
+ default: 0
+ - name: version
+ type:
+ scalar: string
- name: com.github.openshift.api.operator.v1.OVNKubernetesConfig
map:
fields:
@@ -3111,7 +3186,7 @@ var schemaYAML = typed.YAMLObject(`types:
- name: com.github.openshift.api.operator.v1.OpenStackLoadBalancerParameters
map:
fields:
- - name: loadBalancerIP
+ - name: floatingIP
type:
scalar: string
- name: com.github.openshift.api.operator.v1.OperatorCondition
diff --git a/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olm.go b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olm.go
new file mode 100644
index 0000000000..d1fb739538
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olm.go
@@ -0,0 +1,246 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+import (
+ apioperatorv1 "github.com/openshift/api/operator/v1"
+ internal "github.com/openshift/client-go/operator/applyconfigurations/internal"
+ metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+ types "k8s.io/apimachinery/pkg/types"
+ managedfields "k8s.io/apimachinery/pkg/util/managedfields"
+ v1 "k8s.io/client-go/applyconfigurations/meta/v1"
+)
+
+// OLMApplyConfiguration represents a declarative configuration of the OLM type for use
+// with apply.
+type OLMApplyConfiguration struct {
+ v1.TypeMetaApplyConfiguration `json:",inline"`
+ *v1.ObjectMetaApplyConfiguration `json:"metadata,omitempty"`
+ Spec *OLMSpecApplyConfiguration `json:"spec,omitempty"`
+ Status *OLMStatusApplyConfiguration `json:"status,omitempty"`
+}
+
+// OLM constructs a declarative configuration of the OLM type for use with
+// apply.
+func OLM(name string) *OLMApplyConfiguration {
+ b := &OLMApplyConfiguration{}
+ b.WithName(name)
+ b.WithKind("OLM")
+ b.WithAPIVersion("operator.openshift.io/v1")
+ return b
+}
+
+// ExtractOLM extracts the applied configuration owned by fieldManager from
+// oLM. If no managedFields are found in oLM for fieldManager, a
+// OLMApplyConfiguration is returned with only the Name, Namespace (if applicable),
+// APIVersion and Kind populated. It is possible that no managed fields were found for because other
+// field managers have taken ownership of all the fields previously owned by fieldManager, or because
+// the fieldManager never owned fields any fields.
+// oLM must be a unmodified OLM API object that was retrieved from the Kubernetes API.
+// ExtractOLM provides a way to perform a extract/modify-in-place/apply workflow.
+// Note that an extracted apply configuration will contain fewer fields than what the fieldManager previously
+// applied if another fieldManager has updated or force applied any of the previously applied fields.
+// Experimental!
+func ExtractOLM(oLM *apioperatorv1.OLM, fieldManager string) (*OLMApplyConfiguration, error) {
+ return extractOLM(oLM, fieldManager, "")
+}
+
+// ExtractOLMStatus is the same as ExtractOLM except
+// that it extracts the status subresource applied configuration.
+// Experimental!
+func ExtractOLMStatus(oLM *apioperatorv1.OLM, fieldManager string) (*OLMApplyConfiguration, error) {
+ return extractOLM(oLM, fieldManager, "status")
+}
+
+func extractOLM(oLM *apioperatorv1.OLM, fieldManager string, subresource string) (*OLMApplyConfiguration, error) {
+ b := &OLMApplyConfiguration{}
+ err := managedfields.ExtractInto(oLM, internal.Parser().Type("com.github.openshift.api.operator.v1.OLM"), fieldManager, b, subresource)
+ if err != nil {
+ return nil, err
+ }
+ b.WithName(oLM.Name)
+
+ b.WithKind("OLM")
+ b.WithAPIVersion("operator.openshift.io/v1")
+ return b, nil
+}
+
+// WithKind sets the Kind field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Kind field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithKind(value string) *OLMApplyConfiguration {
+ b.Kind = &value
+ return b
+}
+
+// WithAPIVersion sets the APIVersion field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the APIVersion field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithAPIVersion(value string) *OLMApplyConfiguration {
+ b.APIVersion = &value
+ return b
+}
+
+// WithName sets the Name field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Name field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithName(value string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.Name = &value
+ return b
+}
+
+// WithGenerateName sets the GenerateName field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the GenerateName field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithGenerateName(value string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.GenerateName = &value
+ return b
+}
+
+// WithNamespace sets the Namespace field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Namespace field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithNamespace(value string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.Namespace = &value
+ return b
+}
+
+// WithUID sets the UID field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the UID field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithUID(value types.UID) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.UID = &value
+ return b
+}
+
+// WithResourceVersion sets the ResourceVersion field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ResourceVersion field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithResourceVersion(value string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.ResourceVersion = &value
+ return b
+}
+
+// WithGeneration sets the Generation field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Generation field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithGeneration(value int64) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.Generation = &value
+ return b
+}
+
+// WithCreationTimestamp sets the CreationTimestamp field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the CreationTimestamp field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithCreationTimestamp(value metav1.Time) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.CreationTimestamp = &value
+ return b
+}
+
+// WithDeletionTimestamp sets the DeletionTimestamp field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the DeletionTimestamp field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithDeletionTimestamp(value metav1.Time) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.DeletionTimestamp = &value
+ return b
+}
+
+// WithDeletionGracePeriodSeconds sets the DeletionGracePeriodSeconds field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the DeletionGracePeriodSeconds field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithDeletionGracePeriodSeconds(value int64) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ b.DeletionGracePeriodSeconds = &value
+ return b
+}
+
+// WithLabels puts the entries into the Labels field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, the entries provided by each call will be put on the Labels field,
+// overwriting an existing map entries in Labels field with the same key.
+func (b *OLMApplyConfiguration) WithLabels(entries map[string]string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ if b.Labels == nil && len(entries) > 0 {
+ b.Labels = make(map[string]string, len(entries))
+ }
+ for k, v := range entries {
+ b.Labels[k] = v
+ }
+ return b
+}
+
+// WithAnnotations puts the entries into the Annotations field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, the entries provided by each call will be put on the Annotations field,
+// overwriting an existing map entries in Annotations field with the same key.
+func (b *OLMApplyConfiguration) WithAnnotations(entries map[string]string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ if b.Annotations == nil && len(entries) > 0 {
+ b.Annotations = make(map[string]string, len(entries))
+ }
+ for k, v := range entries {
+ b.Annotations[k] = v
+ }
+ return b
+}
+
+// WithOwnerReferences adds the given value to the OwnerReferences field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, values provided by each call will be appended to the OwnerReferences field.
+func (b *OLMApplyConfiguration) WithOwnerReferences(values ...*v1.OwnerReferenceApplyConfiguration) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ for i := range values {
+ if values[i] == nil {
+ panic("nil value passed to WithOwnerReferences")
+ }
+ b.OwnerReferences = append(b.OwnerReferences, *values[i])
+ }
+ return b
+}
+
+// WithFinalizers adds the given value to the Finalizers field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, values provided by each call will be appended to the Finalizers field.
+func (b *OLMApplyConfiguration) WithFinalizers(values ...string) *OLMApplyConfiguration {
+ b.ensureObjectMetaApplyConfigurationExists()
+ for i := range values {
+ b.Finalizers = append(b.Finalizers, values[i])
+ }
+ return b
+}
+
+func (b *OLMApplyConfiguration) ensureObjectMetaApplyConfigurationExists() {
+ if b.ObjectMetaApplyConfiguration == nil {
+ b.ObjectMetaApplyConfiguration = &v1.ObjectMetaApplyConfiguration{}
+ }
+}
+
+// WithSpec sets the Spec field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Spec field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithSpec(value *OLMSpecApplyConfiguration) *OLMApplyConfiguration {
+ b.Spec = value
+ return b
+}
+
+// WithStatus sets the Status field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Status field is set to the value of the last call.
+func (b *OLMApplyConfiguration) WithStatus(value *OLMStatusApplyConfiguration) *OLMApplyConfiguration {
+ b.Status = value
+ return b
+}
+
+// GetName retrieves the value of the Name field in the declarative configuration.
+func (b *OLMApplyConfiguration) GetName() *string {
+ b.ensureObjectMetaApplyConfigurationExists()
+ return b.Name
+}
diff --git a/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmspec.go b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmspec.go
new file mode 100644
index 0000000000..6639c0c46c
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmspec.go
@@ -0,0 +1,60 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+import (
+ operatorv1 "github.com/openshift/api/operator/v1"
+ runtime "k8s.io/apimachinery/pkg/runtime"
+)
+
+// OLMSpecApplyConfiguration represents a declarative configuration of the OLMSpec type for use
+// with apply.
+type OLMSpecApplyConfiguration struct {
+ OperatorSpecApplyConfiguration `json:",inline"`
+}
+
+// OLMSpecApplyConfiguration constructs a declarative configuration of the OLMSpec type for use with
+// apply.
+func OLMSpec() *OLMSpecApplyConfiguration {
+ return &OLMSpecApplyConfiguration{}
+}
+
+// WithManagementState sets the ManagementState field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ManagementState field is set to the value of the last call.
+func (b *OLMSpecApplyConfiguration) WithManagementState(value operatorv1.ManagementState) *OLMSpecApplyConfiguration {
+ b.ManagementState = &value
+ return b
+}
+
+// WithLogLevel sets the LogLevel field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the LogLevel field is set to the value of the last call.
+func (b *OLMSpecApplyConfiguration) WithLogLevel(value operatorv1.LogLevel) *OLMSpecApplyConfiguration {
+ b.LogLevel = &value
+ return b
+}
+
+// WithOperatorLogLevel sets the OperatorLogLevel field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the OperatorLogLevel field is set to the value of the last call.
+func (b *OLMSpecApplyConfiguration) WithOperatorLogLevel(value operatorv1.LogLevel) *OLMSpecApplyConfiguration {
+ b.OperatorLogLevel = &value
+ return b
+}
+
+// WithUnsupportedConfigOverrides sets the UnsupportedConfigOverrides field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the UnsupportedConfigOverrides field is set to the value of the last call.
+func (b *OLMSpecApplyConfiguration) WithUnsupportedConfigOverrides(value runtime.RawExtension) *OLMSpecApplyConfiguration {
+ b.UnsupportedConfigOverrides = &value
+ return b
+}
+
+// WithObservedConfig sets the ObservedConfig field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ObservedConfig field is set to the value of the last call.
+func (b *OLMSpecApplyConfiguration) WithObservedConfig(value runtime.RawExtension) *OLMSpecApplyConfiguration {
+ b.ObservedConfig = &value
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmstatus.go b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmstatus.go
new file mode 100644
index 0000000000..be8e647f3a
--- /dev/null
+++ b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/olmstatus.go
@@ -0,0 +1,73 @@
+// Code generated by applyconfiguration-gen. DO NOT EDIT.
+
+package v1
+
+// OLMStatusApplyConfiguration represents a declarative configuration of the OLMStatus type for use
+// with apply.
+type OLMStatusApplyConfiguration struct {
+ OperatorStatusApplyConfiguration `json:",inline"`
+}
+
+// OLMStatusApplyConfiguration constructs a declarative configuration of the OLMStatus type for use with
+// apply.
+func OLMStatus() *OLMStatusApplyConfiguration {
+ return &OLMStatusApplyConfiguration{}
+}
+
+// WithObservedGeneration sets the ObservedGeneration field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ObservedGeneration field is set to the value of the last call.
+func (b *OLMStatusApplyConfiguration) WithObservedGeneration(value int64) *OLMStatusApplyConfiguration {
+ b.ObservedGeneration = &value
+ return b
+}
+
+// WithConditions adds the given value to the Conditions field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, values provided by each call will be appended to the Conditions field.
+func (b *OLMStatusApplyConfiguration) WithConditions(values ...*OperatorConditionApplyConfiguration) *OLMStatusApplyConfiguration {
+ for i := range values {
+ if values[i] == nil {
+ panic("nil value passed to WithConditions")
+ }
+ b.Conditions = append(b.Conditions, *values[i])
+ }
+ return b
+}
+
+// WithVersion sets the Version field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the Version field is set to the value of the last call.
+func (b *OLMStatusApplyConfiguration) WithVersion(value string) *OLMStatusApplyConfiguration {
+ b.Version = &value
+ return b
+}
+
+// WithReadyReplicas sets the ReadyReplicas field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the ReadyReplicas field is set to the value of the last call.
+func (b *OLMStatusApplyConfiguration) WithReadyReplicas(value int32) *OLMStatusApplyConfiguration {
+ b.ReadyReplicas = &value
+ return b
+}
+
+// WithLatestAvailableRevision sets the LatestAvailableRevision field in the declarative configuration to the given value
+// and returns the receiver, so that objects can be built by chaining "With" function invocations.
+// If called multiple times, the LatestAvailableRevision field is set to the value of the last call.
+func (b *OLMStatusApplyConfiguration) WithLatestAvailableRevision(value int32) *OLMStatusApplyConfiguration {
+ b.LatestAvailableRevision = &value
+ return b
+}
+
+// WithGenerations adds the given value to the Generations field in the declarative configuration
+// and returns the receiver, so that objects can be build by chaining "With" function invocations.
+// If called multiple times, values provided by each call will be appended to the Generations field.
+func (b *OLMStatusApplyConfiguration) WithGenerations(values ...*GenerationStatusApplyConfiguration) *OLMStatusApplyConfiguration {
+ for i := range values {
+ if values[i] == nil {
+ panic("nil value passed to WithGenerations")
+ }
+ b.Generations = append(b.Generations, *values[i])
+ }
+ return b
+}
diff --git a/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/openstackloadbalancerparameters.go b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/openstackloadbalancerparameters.go
index 07d523555b..811b2330b7 100644
--- a/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/openstackloadbalancerparameters.go
+++ b/vendor/github.com/openshift/client-go/operator/applyconfigurations/operator/v1/openstackloadbalancerparameters.go
@@ -5,7 +5,7 @@ package v1
// OpenStackLoadBalancerParametersApplyConfiguration represents a declarative configuration of the OpenStackLoadBalancerParameters type for use
// with apply.
type OpenStackLoadBalancerParametersApplyConfiguration struct {
- LoadBalancerIP *string `json:"loadBalancerIP,omitempty"`
+ FloatingIP *string `json:"floatingIP,omitempty"`
}
// OpenStackLoadBalancerParametersApplyConfiguration constructs a declarative configuration of the OpenStackLoadBalancerParameters type for use with
@@ -14,10 +14,10 @@ func OpenStackLoadBalancerParameters() *OpenStackLoadBalancerParametersApplyConf
return &OpenStackLoadBalancerParametersApplyConfiguration{}
}
-// WithLoadBalancerIP sets the LoadBalancerIP field in the declarative configuration to the given value
+// WithFloatingIP sets the FloatingIP field in the declarative configuration to the given value
// and returns the receiver, so that objects can be built by chaining "With" function invocations.
-// If called multiple times, the LoadBalancerIP field is set to the value of the last call.
-func (b *OpenStackLoadBalancerParametersApplyConfiguration) WithLoadBalancerIP(value string) *OpenStackLoadBalancerParametersApplyConfiguration {
- b.LoadBalancerIP = &value
+// If called multiple times, the FloatingIP field is set to the value of the last call.
+func (b *OpenStackLoadBalancerParametersApplyConfiguration) WithFloatingIP(value string) *OpenStackLoadBalancerParametersApplyConfiguration {
+ b.FloatingIP = &value
return b
}
diff --git a/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/cluster-policy-controller/cmd.go b/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/cluster-policy-controller/cmd.go
index 0b63a3e7e4..6dfad734c3 100644
--- a/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/cluster-policy-controller/cmd.go
+++ b/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/cluster-policy-controller/cmd.go
@@ -10,6 +10,7 @@ import (
"github.com/openshift/library-go/pkg/controller/controllercmd"
clusterpolicyversion "github.com/openshift/cluster-policy-controller/pkg/version"
+ "k8s.io/utils/clock"
)
const (
@@ -18,7 +19,7 @@ const (
)
func NewClusterPolicyControllerCommand(name string) *cobra.Command {
- cmd := controllercmd.NewControllerCommandConfig("cluster-policy-controller", clusterpolicyversion.Get(), RunClusterPolicyController).
+ cmd := controllercmd.NewControllerCommandConfig("cluster-policy-controller", clusterpolicyversion.Get(), RunClusterPolicyController, clock.RealClock{}).
WithComponentOwnerReference(&corev1.ObjectReference{
Kind: "Pod",
Name: os.Getenv(podNameEnv),
diff --git a/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/controller/csr.go b/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/controller/csr.go
index 8631831257..a1ce21b5fc 100644
--- a/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/controller/csr.go
+++ b/vendor/github.com/openshift/cluster-policy-controller/pkg/cmd/controller/csr.go
@@ -2,6 +2,7 @@ package controller
import (
"context"
+ "fmt"
"k8s.io/apimachinery/pkg/labels"
"k8s.io/apimachinery/pkg/selection"
@@ -10,12 +11,19 @@ import (
)
const (
- controllerName = "csr-approver-controller"
- monitoringServiceAccountNamespace = "openshift-monitoring"
- monitoringServiceAccountName = "cluster-monitoring-operator"
- monitoringCertificateSubject = "CN=system:serviceaccount:openshift-monitoring:prometheus-k8s"
- monitoringLabelKey = "metrics.openshift.io/csr.subject"
- monitoringLabelValue = "prometheus"
+ controllerName = "csr-approver-controller"
+ monitoringNamespace = "openshift-monitoring"
+ monitoringRequesterSA = "cluster-monitoring-operator"
+ monitoringSubjectNameLabelKey = "metrics.openshift.io/csr.subject"
+ prometheus = "prometheus"
+ metricsServer = "metrics-server"
+)
+
+var (
+ monitoringCertificateSubjects = []string{
+ fmt.Sprintf("CN=system:serviceaccount:%s:%s-k8s", monitoringNamespace, prometheus),
+ fmt.Sprintf("CN=system:serviceaccount:%s:%s", monitoringNamespace, metricsServer),
+ }
)
func RunCSRApproverController(ctx context.Context, controllerCtx *EnhancedControllerContext) (bool, error) {
@@ -25,7 +33,7 @@ func RunCSRApproverController(ctx context.Context, controllerCtx *EnhancedContro
}
selector := labels.NewSelector()
- labelsRequirement, err := labels.NewRequirement(monitoringLabelKey, selection.Equals, []string{monitoringLabelValue})
+ labelsRequirement, err := labels.NewRequirement(monitoringSubjectNameLabelKey, selection.In, []string{prometheus, metricsServer})
if err != nil {
return true, err
}
@@ -37,7 +45,7 @@ func RunCSRApproverController(ctx context.Context, controllerCtx *EnhancedContro
kubeClient.CertificatesV1().CertificateSigningRequests(),
controllerCtx.KubernetesInformers.Certificates().V1().CertificateSigningRequests(),
csr.NewLabelFilter(selector),
- csr.NewServiceAccountApprover(monitoringServiceAccountNamespace, monitoringServiceAccountName, monitoringCertificateSubject),
+ csr.NewServiceAccountMultiSubjectsApprover(monitoringNamespace, monitoringRequesterSA, monitoringCertificateSubjects),
controllerCtx.EventRecorder)
go controller.Run(ctx, 1)
diff --git a/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/builder.go b/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/builder.go
index c0b4b77fe0..8390b7e784 100644
--- a/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/builder.go
+++ b/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/builder.go
@@ -3,6 +3,7 @@ package controllercmd
import (
"context"
"fmt"
+ "k8s.io/utils/clock"
"os"
"strings"
"sync"
@@ -40,6 +41,9 @@ type StartFunc func(context.Context, *ControllerContext) error
type ControllerContext struct {
ComponentConfig *unstructured.Unstructured
+ // Clock is a potentially fake clock that must be used to run controllers.
+ Clock clock.Clock
+
// KubeConfig provides the REST config with no content type (it will default to JSON).
// Use this config for CR resources.
KubeConfig *rest.Config
@@ -71,6 +75,7 @@ type ControllerBuilder struct {
fileObserverReactorFn func(file string, action fileobserver.ActionType) error
eventRecorderOptions record.CorrelatorOptions
componentOwnerReference *corev1.ObjectReference
+ clock clock.Clock
startFunc StartFunc
componentName string
@@ -121,10 +126,11 @@ func (i infrastructureStatusTopologyDetector) DetectTopology(ctx context.Context
var _ TopologyDetector = (*infrastructureStatusTopologyDetector)(nil)
// NewController returns a builder struct for constructing the command you want to run
-func NewController(componentName string, startFunc StartFunc) *ControllerBuilder {
+func NewController(componentName string, startFunc StartFunc, clock clock.Clock) *ControllerBuilder {
return &ControllerBuilder{
startFunc: startFunc,
componentName: componentName,
+ clock: clock,
observerInterval: defaultObserverInterval,
nonZeroExitFn: func(args ...interface{}) {
klog.Warning(args...)
@@ -266,7 +272,7 @@ func (b *ControllerBuilder) Run(ctx context.Context, config *unstructured.Unstru
klog.Warningf("unable to get owner reference (falling back to namespace): %v", err)
}
}
- eventRecorder := events.NewKubeRecorderWithOptions(kubeClient.CoreV1().Events(namespace), b.eventRecorderOptions, b.componentName, controllerRef)
+ eventRecorder := events.NewKubeRecorderWithOptions(kubeClient.CoreV1().Events(namespace), b.eventRecorderOptions, b.componentName, controllerRef, b.clock)
utilruntime.PanicHandlers = append(utilruntime.PanicHandlers, func(c context.Context, r interface{}) {
eventRecorder.Warningf(fmt.Sprintf("%sPanic", strings.Title(b.componentName)), "Panic observed: %v", r)
@@ -336,6 +342,7 @@ func (b *ControllerBuilder) Run(ctx context.Context, config *unstructured.Unstru
controllerContext := &ControllerContext{
ComponentConfig: config,
+ Clock: b.clock,
KubeConfig: clientConfig,
ProtoKubeConfig: protoConfig,
EventRecorder: eventRecorder,
diff --git a/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/cmd.go b/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/cmd.go
index 8f3e4f5282..634053521c 100644
--- a/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/cmd.go
+++ b/vendor/github.com/openshift/library-go/pkg/controller/controllercmd/cmd.go
@@ -3,6 +3,7 @@ package controllercmd
import (
"context"
"fmt"
+ "k8s.io/utils/clock"
"math/rand"
"os"
"path/filepath"
@@ -41,6 +42,7 @@ type ControllerCommandConfig struct {
componentName string
startFunc StartFunc
version version.Info
+ clock clock.Clock
basicFlags *ControllerFlags
@@ -76,11 +78,12 @@ type ControllerCommandConfig struct {
// NewControllerConfig returns a new ControllerCommandConfig which can be used to wire up all the boiler plate of a controller
// TODO add more methods around wiring health checks and the like
-func NewControllerCommandConfig(componentName string, version version.Info, startFunc StartFunc) *ControllerCommandConfig {
+func NewControllerCommandConfig(componentName string, version version.Info, startFunc StartFunc, clock clock.Clock) *ControllerCommandConfig {
return &ControllerCommandConfig{
startFunc: startFunc,
componentName: componentName,
version: version,
+ clock: clock,
basicFlags: NewControllerFlags(),
@@ -322,7 +325,7 @@ func (c *ControllerCommandConfig) StartController(ctx context.Context) error {
config.LeaderElection.RenewDeadline = c.RenewDeadline
config.LeaderElection.RetryPeriod = c.RetryPeriod
- builder := NewController(c.componentName, c.startFunc).
+ builder := NewController(c.componentName, c.startFunc, c.clock).
WithKubeConfigFile(c.basicFlags.KubeConfigFile, nil).
WithComponentNamespace(c.basicFlags.Namespace).
WithLeaderElection(config.LeaderElection, c.basicFlags.Namespace, c.componentName+"-lock").
diff --git a/vendor/github.com/openshift/library-go/pkg/operator/csr/csr_approver.go b/vendor/github.com/openshift/library-go/pkg/operator/csr/csr_approver.go
index 5d02ed5a49..f652743a0a 100644
--- a/vendor/github.com/openshift/library-go/pkg/operator/csr/csr_approver.go
+++ b/vendor/github.com/openshift/library-go/pkg/operator/csr/csr_approver.go
@@ -175,9 +175,9 @@ func getCertApprovalCondition(status *certapiv1.CertificateSigningRequestStatus)
}
type ServiceAccountApprover struct {
- saGroups sets.Set[string] // saGroups is the set of groups for the SA expected to have created the CSR
- saName string
- expectedSubject string
+ saGroups sets.Set[string] // saGroups is the set of groups for the SA expected to have created the CSR
+ saName string
+ expectedSubjects sets.Set[string]
}
// ServiceAccountApprover approves CSRs with a given subject issued by the provided service account
@@ -185,9 +185,20 @@ func NewServiceAccountApprover(saNamespace, saName, expectedSubject string, addi
saGroups := append(serviceaccount.MakeGroupNames(saNamespace), "system:authenticated")
return &ServiceAccountApprover{
- saName: serviceaccount.MakeUsername(saNamespace, saName),
- saGroups: sets.New(append(saGroups, additionalGroups...)...),
- expectedSubject: expectedSubject,
+ saName: serviceaccount.MakeUsername(saNamespace, saName),
+ saGroups: sets.New(append(saGroups, additionalGroups...)...),
+ expectedSubjects: sets.New(expectedSubject),
+ }
+}
+
+// NewServiceAccountMultiSubjectsApprover approves CSRs with given subjects issued by the provided service account
+func NewServiceAccountMultiSubjectsApprover(saNamespace, saName string, expectedSubject []string, additionalGroups ...string) *ServiceAccountApprover {
+ saGroups := append(serviceaccount.MakeGroupNames(saNamespace), "system:authenticated")
+
+ return &ServiceAccountApprover{
+ saName: serviceaccount.MakeUsername(saNamespace, saName),
+ saGroups: sets.New(append(saGroups, additionalGroups...)...),
+ expectedSubjects: sets.New(expectedSubject...),
}
}
@@ -204,8 +215,8 @@ func (a *ServiceAccountApprover) Approve(csrObj *certapiv1.CertificateSigningReq
return CSRDenied, fmt.Sprintf("CSR %q was created by a user with unexpected groups: %v", csrObj.Name, sets.List(csrGroups)), nil
}
- if expectedSubject := a.expectedSubject; x509CSR.Subject.String() != expectedSubject {
- return CSRDenied, fmt.Sprintf("expected the CSR's subject to be %q, but it is %q", expectedSubject, x509CSR.Subject.String()), nil
+ if expectedSubjects := a.expectedSubjects; !expectedSubjects.Has(x509CSR.Subject.String()) {
+ return CSRDenied, fmt.Sprintf("expected the CSR's subject to be one of %q, but it is %q", sets.List(expectedSubjects), x509CSR.Subject.String()), nil
}
return CSRApproved, "", nil
diff --git a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder.go b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder.go
index f513a90f3c..2918012ff5 100644
--- a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder.go
+++ b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder.go
@@ -2,13 +2,13 @@ package events
import (
"context"
+ "crypto/sha256"
"errors"
"fmt"
- "os"
- "time"
-
"k8s.io/client-go/kubernetes"
"k8s.io/klog/v2"
+ "k8s.io/utils/clock"
+ "os"
corev1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -145,11 +145,12 @@ func guessControllerReferenceForNamespace(ctx context.Context, client corev1clie
}
// NewRecorder returns new event recorder.
-func NewRecorder(client corev1client.EventInterface, sourceComponentName string, involvedObjectRef *corev1.ObjectReference) Recorder {
+func NewRecorder(client corev1client.EventInterface, sourceComponentName string, involvedObjectRef *corev1.ObjectReference, clock clock.PassiveClock) Recorder {
return &recorder{
eventClient: client,
involvedObjectRef: involvedObjectRef,
sourceComponent: sourceComponentName,
+ clock: clock,
}
}
@@ -158,6 +159,7 @@ type recorder struct {
eventClient corev1client.EventInterface
involvedObjectRef *corev1.ObjectReference
sourceComponent string
+ clock clock.PassiveClock
// TODO: This is not the right way to pass the context, but there is no other way without breaking event interface
ctx context.Context
@@ -196,7 +198,7 @@ func (r *recorder) Warningf(reason, messageFmt string, args ...interface{}) {
// Event emits the normal type event.
func (r *recorder) Event(reason, message string) {
- event := makeEvent(r.involvedObjectRef, r.sourceComponent, corev1.EventTypeNormal, reason, message)
+ event := makeEvent(r.clock, r.involvedObjectRef, r.sourceComponent, corev1.EventTypeNormal, reason, message)
ctx := context.Background()
if r.ctx != nil {
ctx = r.ctx
@@ -208,7 +210,7 @@ func (r *recorder) Event(reason, message string) {
// Warning emits the warning type event.
func (r *recorder) Warning(reason, message string) {
- event := makeEvent(r.involvedObjectRef, r.sourceComponent, corev1.EventTypeWarning, reason, message)
+ event := makeEvent(r.clock, r.involvedObjectRef, r.sourceComponent, corev1.EventTypeWarning, reason, message)
ctx := context.Background()
if r.ctx != nil {
ctx = r.ctx
@@ -218,11 +220,12 @@ func (r *recorder) Warning(reason, message string) {
}
}
-func makeEvent(involvedObjRef *corev1.ObjectReference, sourceComponent string, eventType, reason, message string) *corev1.Event {
- currentTime := metav1.Time{Time: time.Now()}
+func makeEvent(clock clock.PassiveClock, involvedObjRef *corev1.ObjectReference, sourceComponent string, eventType, reason, message string) *corev1.Event {
+ currentTime := metav1.Time{Time: clock.Now()}
event := &corev1.Event{
ObjectMeta: metav1.ObjectMeta{
- Name: fmt.Sprintf("%v.%x", involvedObjRef.Name, currentTime.UnixNano()),
+ // TODO this is always used to create a unique event. Perhaps we should hash the message to be unique enough for apply-configuration
+ Name: fmt.Sprintf("%v.%x.%s", involvedObjRef.Name, currentTime.UnixNano(), hashForEventNameSuffix(eventType, reason, message)),
Namespace: involvedObjRef.Namespace,
},
InvolvedObject: *involvedObjRef,
@@ -236,3 +239,20 @@ func makeEvent(involvedObjRef *corev1.ObjectReference, sourceComponent string, e
event.Source.Component = sourceComponent
return event
}
+
+func hashForEventNameSuffix(in ...string) string {
+ data := []byte{}
+ for _, curr := range in {
+ data = append(data, []byte(curr)...)
+ }
+ if len(data) == 0 {
+ return "MISSING"
+ }
+
+ hash := sha256.New()
+ hash.Write(data)
+ hashBytes := hash.Sum(nil)
+
+ // we're looking to deconflict names, not protect the crown jewels
+ return fmt.Sprintf("%x", hashBytes[len(hashBytes)-4:])
+}
diff --git a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_in_memory.go b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_in_memory.go
index 75efe3e192..d97be0de6c 100644
--- a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_in_memory.go
+++ b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_in_memory.go
@@ -3,6 +3,7 @@ package events
import (
"context"
"fmt"
+ "k8s.io/utils/clock"
"sync"
corev1 "k8s.io/api/core/v1"
@@ -12,6 +13,7 @@ import (
type inMemoryEventRecorder struct {
events []*corev1.Event
source string
+ clock clock.PassiveClock
ctx context.Context
sync.Mutex
}
@@ -31,8 +33,12 @@ type InMemoryRecorder interface {
// NewInMemoryRecorder provides event recorder that stores all events recorded in memory and allow to replay them using the Events() method.
// This recorder should be only used in unit tests.
-func NewInMemoryRecorder(sourceComponent string) InMemoryRecorder {
- return &inMemoryEventRecorder{events: []*corev1.Event{}, source: sourceComponent}
+func NewInMemoryRecorder(sourceComponent string, clock clock.PassiveClock) InMemoryRecorder {
+ return &inMemoryEventRecorder{
+ events: []*corev1.Event{},
+ source: sourceComponent,
+ clock: clock,
+ }
}
func (r *inMemoryEventRecorder) ComponentName() string {
@@ -65,7 +71,7 @@ func (r *inMemoryEventRecorder) Events() []*corev1.Event {
func (r *inMemoryEventRecorder) Event(reason, message string) {
r.Lock()
defer r.Unlock()
- event := makeEvent(&inMemoryDummyObjectReference, r.source, corev1.EventTypeNormal, reason, message)
+ event := makeEvent(r.clock, &inMemoryDummyObjectReference, r.source, corev1.EventTypeNormal, reason, message)
r.events = append(r.events, event)
}
@@ -76,7 +82,7 @@ func (r *inMemoryEventRecorder) Eventf(reason, messageFmt string, args ...interf
func (r *inMemoryEventRecorder) Warning(reason, message string) {
r.Lock()
defer r.Unlock()
- event := makeEvent(&inMemoryDummyObjectReference, r.source, corev1.EventTypeWarning, reason, message)
+ event := makeEvent(r.clock, &inMemoryDummyObjectReference, r.source, corev1.EventTypeWarning, reason, message)
klog.Info(event.String())
r.events = append(r.events, event)
}
diff --git a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_logging.go b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_logging.go
index 90639f2d93..1906454a96 100644
--- a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_logging.go
+++ b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_logging.go
@@ -3,6 +3,7 @@ package events
import (
"context"
"fmt"
+ "k8s.io/utils/clock"
corev1 "k8s.io/api/core/v1"
"k8s.io/klog/v2"
@@ -10,6 +11,7 @@ import (
type LoggingEventRecorder struct {
component string
+ clock clock.PassiveClock
ctx context.Context
}
@@ -19,8 +21,11 @@ func (r *LoggingEventRecorder) WithContext(ctx context.Context) Recorder {
}
// NewLoggingEventRecorder provides event recorder that will log all recorded events via klog.
-func NewLoggingEventRecorder(component string) Recorder {
- return &LoggingEventRecorder{component: component}
+func NewLoggingEventRecorder(component string, clock clock.PassiveClock) Recorder {
+ return &LoggingEventRecorder{
+ component: component,
+ clock: clock,
+ }
}
func (r *LoggingEventRecorder) ComponentName() string {
@@ -40,7 +45,7 @@ func (r *LoggingEventRecorder) WithComponentSuffix(suffix string) Recorder {
}
func (r *LoggingEventRecorder) Event(reason, message string) {
- event := makeEvent(&inMemoryDummyObjectReference, "", corev1.EventTypeNormal, reason, message)
+ event := makeEvent(r.clock, &inMemoryDummyObjectReference, "", corev1.EventTypeNormal, reason, message)
klog.Info(event.String())
}
@@ -49,7 +54,7 @@ func (r *LoggingEventRecorder) Eventf(reason, messageFmt string, args ...interfa
}
func (r *LoggingEventRecorder) Warning(reason, message string) {
- event := makeEvent(&inMemoryDummyObjectReference, "", corev1.EventTypeWarning, reason, message)
+ event := makeEvent(r.clock, &inMemoryDummyObjectReference, "", corev1.EventTypeWarning, reason, message)
klog.Warning(event.String())
}
diff --git a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_upstream.go b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_upstream.go
index 0e41949a77..282a9033d9 100644
--- a/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_upstream.go
+++ b/vendor/github.com/openshift/library-go/pkg/operator/events/recorder_upstream.go
@@ -3,6 +3,7 @@ package events
import (
"context"
"fmt"
+ "k8s.io/utils/clock"
"strings"
"sync"
@@ -16,19 +17,19 @@ import (
)
// NewKubeRecorder returns new event recorder with tweaked correlator options.
-func NewKubeRecorderWithOptions(client corev1client.EventInterface, options record.CorrelatorOptions, sourceComponentName string, involvedObjectRef *corev1.ObjectReference) Recorder {
+func NewKubeRecorderWithOptions(client corev1client.EventInterface, options record.CorrelatorOptions, sourceComponentName string, involvedObjectRef *corev1.ObjectReference, clock clock.PassiveClock) Recorder {
return (&upstreamRecorder{
client: client,
component: sourceComponentName,
involvedObjectRef: involvedObjectRef,
options: options,
- fallbackRecorder: NewRecorder(client, sourceComponentName, involvedObjectRef),
+ fallbackRecorder: NewRecorder(client, sourceComponentName, involvedObjectRef, clock),
}).ForComponent(sourceComponentName)
}
// NewKubeRecorder returns new event recorder with default correlator options.
-func NewKubeRecorder(client corev1client.EventInterface, sourceComponentName string, involvedObjectRef *corev1.ObjectReference) Recorder {
- return NewKubeRecorderWithOptions(client, record.CorrelatorOptions{}, sourceComponentName, involvedObjectRef)
+func NewKubeRecorder(client corev1client.EventInterface, sourceComponentName string, involvedObjectRef *corev1.ObjectReference, clock clock.PassiveClock) Recorder {
+ return NewKubeRecorderWithOptions(client, record.CorrelatorOptions{}, sourceComponentName, involvedObjectRef, clock)
}
// upstreamRecorder is an implementation of Recorder interface.
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 3548b68b88..88b61d18ac 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -431,7 +431,7 @@ github.com/opencontainers/runtime-spec/specs-go
github.com/opencontainers/selinux/go-selinux
github.com/opencontainers/selinux/go-selinux/label
github.com/opencontainers/selinux/pkg/pwalkdir
-# github.com/openshift/api v0.0.0-20241004095111-b1f700bdd8d2
+# github.com/openshift/api v0.0.0-20241203091751-58d4ac495429
## explicit; go 1.22.0
github.com/openshift/api
github.com/openshift/api/annotations
@@ -535,7 +535,7 @@ github.com/openshift/build-machinery-go/make/targets/golang
github.com/openshift/build-machinery-go/make/targets/openshift
github.com/openshift/build-machinery-go/make/targets/openshift/operator
github.com/openshift/build-machinery-go/scripts
-# github.com/openshift/client-go v0.0.0-20241001162912-da6d55e4611f
+# github.com/openshift/client-go v0.0.0-20241203091221-452dfb8fa071
## explicit; go 1.22.0
github.com/openshift/client-go/apiserver/applyconfigurations/apiserver/v1
github.com/openshift/client-go/apiserver/applyconfigurations/internal
@@ -676,7 +676,7 @@ github.com/openshift/client-go/user/informers/externalversions/internalinterface
github.com/openshift/client-go/user/informers/externalversions/user
github.com/openshift/client-go/user/informers/externalversions/user/v1
github.com/openshift/client-go/user/listers/user/v1
-# github.com/openshift/cluster-policy-controller v0.0.0-20241210163452-327d3cbd82fd
+# github.com/openshift/cluster-policy-controller v0.0.0-20250120184244-f5a25728ff43
## explicit; go 1.23.0
github.com/openshift/cluster-policy-controller/pkg/client/genericinformers
github.com/openshift/cluster-policy-controller/pkg/cmd/cluster-policy-controller
@@ -689,7 +689,7 @@ github.com/openshift/cluster-policy-controller/pkg/security/controller
github.com/openshift/cluster-policy-controller/pkg/security/mcs
github.com/openshift/cluster-policy-controller/pkg/security/uidallocator
github.com/openshift/cluster-policy-controller/pkg/version
-# github.com/openshift/library-go v0.0.0-20241107160307-0064ad7bd060
+# github.com/openshift/library-go v0.0.0-20241218091209-6018a90c28d0
## explicit; go 1.22.0
github.com/openshift/library-go/pkg/apiserver/admission/admissionrestconfig
github.com/openshift/library-go/pkg/apiserver/admission/admissiontimeout