{ "description": "MachineConfig defines the configuration for a machine", "type": "object", "properties": { "apiVersion": { "description": "APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources", "type": "string" }, "kind": { "description": "Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds", "type": "string" }, "metadata": { "type": "object" }, "spec": { "description": "MachineConfigSpec is the spec for MachineConfig", "type": "object", "properties": { "config": { "description": "Config is a Ignition Config object.", "type": "object", "x-kubernetes-preserve-unknown-fields": true, "required": [ "ignition" ], "properties": { "ignition": { "description": "Ignition section contains metadata about the configuration itself. We only permit a subsection of ignition fields for MachineConfigs.", "type": "object", "x-kubernetes-preserve-unknown-fields": true, "properties": { "config": { "type": "object", "properties": { "append": { "type": "array", "items": { "type": "object", "properties": { "source": { "type": "string" }, "verification": { "type": "object", "properties": { "hash": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } }, "replace": { "type": "object", "properties": { "source": { "type": "string" }, "verification": { "type": "object", "properties": { "hash": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } }, "additionalProperties": false }, "security": { "type": "object", "properties": { "tls": { "type": "object", "properties": { "certificateAuthorities": { "type": "array", "items": { "type": "object", "properties": { "source": { "type": "string" }, "verification": { "type": "object", "properties": { "hash": { "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } } }, "additionalProperties": false } }, "additionalProperties": false }, "timeouts": { "type": "object", "properties": { "httpResponseHeaders": { "type": "integer" }, "httpTotal": { "type": "integer" } }, "additionalProperties": false }, "version": { "description": "Version string is the semantic version number of the spec", "type": "string" } }, "additionalProperties": false }, "passwd": { "type": "object", "properties": { "users": { "type": "array", "items": { "type": "object", "properties": { "name": { "description": "Name of user. Must be \\\"core\\\" user.", "type": "string" }, "sshAuthorizedKeys": { "description": "Public keys to be assigned to user core.", "type": "array", "items": { "type": "string" } } }, "additionalProperties": false } } }, "additionalProperties": false }, "storage": { "description": "Storage describes the desired state of the system's storage devices.", "type": "object", "x-kubernetes-preserve-unknown-fields": true, "properties": { "directories": { "description": "Directories is the list of directories to be created", "type": "array", "items": { "description": "Items is list of directories to be written", "type": "object", "properties": { "filesystem": { "description": "Filesystem is the internal identifier of the filesystem in which to write the file. This matches the last filesystem with the given identifier.", "type": "string" }, "group": { "description": "Group object specifies group of the owner", "type": "object", "properties": { "id": { "description": "ID is the user ID of the owner", "type": "integer" }, "name": { "description": "Name is the user name of the owner", "type": "string" } }, "additionalProperties": false }, "mode": { "description": "Mode is the file's permission mode. Note that the mode must be properly specified as a decimal value (i.e. 0644 -> 420)", "type": "integer" }, "overwrite": { "description": "Overwrite specifies whether to delete preexisting nodes at the path", "type": "boolean" }, "path": { "description": "Path is the absolute path to the file", "type": "string" }, "user": { "description": "User object specifies the file's owner", "type": "object", "properties": { "id": { "description": "ID is the user ID of the owner", "type": "integer" }, "name": { "description": "Name is the user name of the owner", "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } }, "files": { "description": "Files is the list of files to be created/modified", "type": "array", "items": { "description": "Items is list of files to be written", "type": "object", "x-kubernetes-preserve-unknown-fields": true, "properties": { "contents": { "description": "Contents specifies options related to the contents of the file", "type": "object", "properties": { "compression": { "description": "The type of compression used on the contents (null or gzip). Compression cannot be used with S3.", "type": "string" }, "source": { "description": "Source is the URL of the file contents. Supported schemes are http, https, tftp, s3, and data. When using http, it is advisable to use the verification option to ensure the contents haven't been modified.", "type": "string" }, "verification": { "description": "Verification specifies options related to the verification of the file contents", "type": "object", "properties": { "hash": { "description": "Hash is the hash of the config, in the form - where type is sha512", "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false }, "filesystem": { "description": "Filesystem is the internal identifier of the filesystem in which to write the file. This matches the last filesystem with the given identifier", "type": "string" }, "group": { "description": "Group object specifies group of the owner", "type": "object", "properties": { "id": { "description": "ID specifies group ID of the owner", "type": "integer" }, "name": { "description": "Name is the group name of the owner", "type": "string" } }, "additionalProperties": false }, "mode": { "description": "Mode specifies the file's permission mode. Note that the mode must be properly specified as a decimal value (i.e. 0644 -> 420)", "type": "integer" }, "overwrite": { "description": "Overwrite specifies whether to delete preexisting nodes at the path", "type": "boolean" }, "path": { "description": "Path is the absolute path to the file", "type": "string" }, "user": { "description": "User object specifies the file's owner", "type": "object", "properties": { "id": { "description": "ID is the user ID of the owner", "type": "integer" }, "name": { "description": "Name is the user name of the owner", "type": "string" } }, "additionalProperties": false } }, "additionalProperties": false } } }, "additionalProperties": false }, "systemd": { "description": "systemd describes the desired state of the systemd units", "type": "object", "properties": { "units": { "description": "Units is a list of units to be configured", "type": "array", "items": { "description": "Items describes unit configuration", "type": "object", "properties": { "contents": { "description": "Contents is the contents of the unit", "type": "string" }, "dropins": { "description": "Dropins is the list of drop-ins for the unit", "type": "array", "items": { "description": "Items describes unit dropin", "type": "object", "properties": { "contents": { "description": "Contents is the contents of the drop-in", "type": "string" }, "name": { "description": "Name is the name of the drop-in. This must be suffixed with '.conf'", "type": "string" } }, "additionalProperties": false } }, "enabled": { "description": "Enabled describes whether or not the service shall be enabled. When true, the service is enabled. When false, the service is disabled. When omitted, the service is unmodified. In order for this to have any effect, the unit must have an install section", "type": "boolean" }, "mask": { "description": "Mask describes whether or not the service shall be masked. When true, the service is masked by symlinking it to /dev/null\"", "type": "boolean" }, "name": { "description": "Name is the name of the unit. This must be suffixed with a valid unit type (e.g. 'thing.service')", "type": "string" } }, "additionalProperties": false } } }, "additionalProperties": false } }, "additionalProperties": false }, "extensions": { "description": "List of additional features that can be enabled on host", "type": "array", "items": { "type": "string" }, "nullable": true }, "fips": { "description": "FIPS controls FIPS mode", "type": "boolean" }, "kernelArguments": { "description": "KernelArguments contains a list of kernel arguments to be added", "type": "array", "items": { "type": "string" }, "nullable": true }, "kernelType": { "description": "Contains which kernel we want to be running like default (traditional), realtime", "type": "string" }, "osImageURL": { "description": "OSImageURL specifies the remote location that will be used to fetch the OS", "type": "string" } }, "additionalProperties": false } } }