Skip to content

Commit f2bac33

Browse files
shengnuoshengnuo
committed
Update manifests
1 parent 78351f7 commit f2bac33

22 files changed

Lines changed: 332 additions & 153 deletions

api/apps/v1alpha1/zz_generated.deepcopy.go

Lines changed: 20 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

bundle/manifests/apps.nvidia.com_nemocustomizers.yaml

Lines changed: 26 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -531,6 +531,32 @@ spec:
531531
Note that this field cannot be set when spec.os.name is windows.
532532
format: int64
533533
type: integer
534+
seLinuxChangePolicy:
535+
description: |-
536+
seLinuxChangePolicy defines how the container's SELinux label is applied to all volumes used by the Pod.
537+
It has no effect on nodes that do not support SELinux or to volumes does not support SELinux.
538+
Valid values are "MountOption" and "Recursive".
539+
540+
"Recursive" means relabeling of all files on all Pod volumes by the container runtime.
541+
This may be slow for large volumes, but allows mixing privileged and unprivileged Pods sharing the same volume on the same node.
542+
543+
"MountOption" mounts all eligible Pod volumes with `-o context` mount option.
544+
This requires all Pods that share the same volume to use the same SELinux label.
545+
It is not possible to share the same volume among privileged and unprivileged Pods.
546+
Eligible volumes are in-tree FibreChannel and iSCSI volumes, and all CSI volumes
547+
whose CSI driver announces SELinux support by setting spec.seLinuxMount: true in their
548+
CSIDriver instance. Other volumes are always re-labelled recursively.
549+
"MountOption" value is allowed only when SELinuxMount feature gate is enabled.
550+
551+
If not specified and SELinuxMount feature gate is enabled, "MountOption" is used.
552+
If not specified and SELinuxMount feature gate is disabled, "MountOption" is used for ReadWriteOncePod volumes
553+
and "Recursive" for all other volumes.
554+
555+
This field affects only Pods that have SELinux label set, either in PodSecurityContext or in SecurityContext of all containers.
556+
557+
All Pods that use the same volume should use the same seLinuxChangePolicy, otherwise some pods can get stuck in ContainerCreating state.
558+
Note that this field cannot be set when spec.os.name is windows.
559+
type: string
534560
seLinuxOptions:
535561
description: |-
536562
The SELinux context to be applied to all containers.
@@ -1309,7 +1335,6 @@ spec:
13091335
each pod of the current scale target (e.g. CPU or memory). Such metrics are
13101336
built in to Kubernetes, and have special scaling options on top of those
13111337
available to normal per-pod metrics using the "pods" source.
1312-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
13131338
properties:
13141339
container:
13151340
description: container is the name of the container
@@ -1756,8 +1781,6 @@ spec:
17561781
description: |-
17571782
type is the type of metric source. It should be one of "ContainerResource", "External",
17581783
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1759-
Note: "ContainerResource" type is available on when the feature-gate
1760-
HPAContainerMetrics is enabled
17611784
type: string
17621785
required:
17631786
- type

bundle/manifests/apps.nvidia.com_nemodatastores.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1036,7 +1036,6 @@ spec:
10361036
each pod of the current scale target (e.g. CPU or memory). Such metrics are
10371037
built in to Kubernetes, and have special scaling options on top of those
10381038
available to normal per-pod metrics using the "pods" source.
1039-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
10401039
properties:
10411040
container:
10421041
description: container is the name of the container
@@ -1483,8 +1482,6 @@ spec:
14831482
description: |-
14841483
type is the type of metric source. It should be one of "ContainerResource", "External",
14851484
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1486-
Note: "ContainerResource" type is available on when the feature-gate
1487-
HPAContainerMetrics is enabled
14881485
type: string
14891486
required:
14901487
- type

bundle/manifests/apps.nvidia.com_nemoentitystores.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -959,7 +959,6 @@ spec:
959959
each pod of the current scale target (e.g. CPU or memory). Such metrics are
960960
built in to Kubernetes, and have special scaling options on top of those
961961
available to normal per-pod metrics using the "pods" source.
962-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
963962
properties:
964963
container:
965964
description: container is the name of the container
@@ -1406,8 +1405,6 @@ spec:
14061405
description: |-
14071406
type is the type of metric source. It should be one of "ContainerResource", "External",
14081407
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1409-
Note: "ContainerResource" type is available on when the feature-gate
1410-
HPAContainerMetrics is enabled
14111408
type: string
14121409
required:
14131410
- type

bundle/manifests/apps.nvidia.com_nemoevaluators.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1106,7 +1106,6 @@ spec:
11061106
each pod of the current scale target (e.g. CPU or memory). Such metrics are
11071107
built in to Kubernetes, and have special scaling options on top of those
11081108
available to normal per-pod metrics using the "pods" source.
1109-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
11101109
properties:
11111110
container:
11121111
description: container is the name of the container
@@ -1553,8 +1552,6 @@ spec:
15531552
description: |-
15541553
type is the type of metric source. It should be one of "ContainerResource", "External",
15551554
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1556-
Note: "ContainerResource" type is available on when the feature-gate
1557-
HPAContainerMetrics is enabled
15581555
type: string
15591556
required:
15601557
- type

bundle/manifests/apps.nvidia.com_nemoguardrails.yaml

Lines changed: 0 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -971,7 +971,6 @@ spec:
971971
each pod of the current scale target (e.g. CPU or memory). Such metrics are
972972
built in to Kubernetes, and have special scaling options on top of those
973973
available to normal per-pod metrics using the "pods" source.
974-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
975974
properties:
976975
container:
977976
description: container is the name of the container
@@ -1418,8 +1417,6 @@ spec:
14181417
description: |-
14191418
type is the type of metric source. It should be one of "ContainerResource", "External",
14201419
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1421-
Note: "ContainerResource" type is available on when the feature-gate
1422-
HPAContainerMetrics is enabled
14231420
type: string
14241421
required:
14251422
- type

bundle/manifests/apps.nvidia.com_nimpipelines.yaml

Lines changed: 41 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -591,7 +591,8 @@ spec:
591591
alive or ready to receive traffic.
592592
properties:
593593
exec:
594-
description: Exec specifies the action to take.
594+
description: Exec specifies a command to execute
595+
in the container.
595596
properties:
596597
command:
597598
description: |-
@@ -612,8 +613,7 @@ spec:
612613
format: int32
613614
type: integer
614615
grpc:
615-
description: GRPC specifies an action involving
616-
a GRPC port.
616+
description: GRPC specifies a GRPC HealthCheckRequest.
617617
properties:
618618
port:
619619
description: Port number of the gRPC service.
@@ -632,7 +632,7 @@ spec:
632632
- port
633633
type: object
634634
httpGet:
635-
description: HTTPGet specifies the http request
635+
description: HTTPGet specifies an HTTP GET request
636636
to perform.
637637
properties:
638638
host:
@@ -700,7 +700,7 @@ spec:
700700
format: int32
701701
type: integer
702702
tcpSocket:
703-
description: TCPSocket specifies an action involving
703+
description: TCPSocket specifies a connection to
704704
a TCP port.
705705
properties:
706706
host:
@@ -776,6 +776,32 @@ spec:
776776
type: string
777777
type: object
778778
type: object
779+
multiNode:
780+
description: MultiNode config for NIMService using LeaderWorkerSet
781+
properties:
782+
clusterStartTimeout:
783+
default: 300
784+
description: ClusterStartTimeout specifies the timeout
785+
in seconds for starting the cluster.
786+
type: integer
787+
gpusPerNode:
788+
default: 1
789+
description: GPUPerNode specifies the number of GPUs
790+
for each pod. In most cases, this should match `resources.limits.nvidia.com/gpu`.
791+
type: integer
792+
workers:
793+
default: 2
794+
description: Workers specifies how many worker pods
795+
per multi-node replica to launch.
796+
minimum: 2
797+
type: integer
798+
required:
799+
- clusterStartTimeout
800+
type: object
801+
x-kubernetes-validations:
802+
- message: scale.enabled must be false when multiNode is
803+
not nil
804+
rule: '!has(self.multiNode) || !self.scale.enabled'
779805
nodeSelector:
780806
additionalProperties:
781807
type: string
@@ -1166,7 +1192,8 @@ spec:
11661192
alive or ready to receive traffic.
11671193
properties:
11681194
exec:
1169-
description: Exec specifies the action to take.
1195+
description: Exec specifies a command to execute
1196+
in the container.
11701197
properties:
11711198
command:
11721199
description: |-
@@ -1187,8 +1214,7 @@ spec:
11871214
format: int32
11881215
type: integer
11891216
grpc:
1190-
description: GRPC specifies an action involving
1191-
a GRPC port.
1217+
description: GRPC specifies a GRPC HealthCheckRequest.
11921218
properties:
11931219
port:
11941220
description: Port number of the gRPC service.
@@ -1207,7 +1233,7 @@ spec:
12071233
- port
12081234
type: object
12091235
httpGet:
1210-
description: HTTPGet specifies the http request
1236+
description: HTTPGet specifies an HTTP GET request
12111237
to perform.
12121238
properties:
12131239
host:
@@ -1275,7 +1301,7 @@ spec:
12751301
format: int32
12761302
type: integer
12771303
tcpSocket:
1278-
description: TCPSocket specifies an action involving
1304+
description: TCPSocket specifies a connection to
12791305
a TCP port.
12801306
properties:
12811307
host:
@@ -1531,7 +1557,6 @@ spec:
15311557
each pod of the current scale target (e.g. CPU or memory). Such metrics are
15321558
built in to Kubernetes, and have special scaling options on top of those
15331559
available to normal per-pod metrics using the "pods" source.
1534-
This is an alpha feature and can be enabled by the HPAContainerMetrics feature flag.
15351560
properties:
15361561
container:
15371562
description: container is the name of
@@ -1994,8 +2019,6 @@ spec:
19942019
description: |-
19952020
type is the type of metric source. It should be one of "ContainerResource", "External",
19962021
"Object", "Pods" or "Resource", each mapping to a matching field in the object.
1997-
Note: "ContainerResource" type is available on when the feature-gate
1998-
HPAContainerMetrics is enabled
19992022
type: string
20002023
required:
20012024
- type
@@ -2022,7 +2045,8 @@ spec:
20222045
alive or ready to receive traffic.
20232046
properties:
20242047
exec:
2025-
description: Exec specifies the action to take.
2048+
description: Exec specifies a command to execute
2049+
in the container.
20262050
properties:
20272051
command:
20282052
description: |-
@@ -2043,8 +2067,7 @@ spec:
20432067
format: int32
20442068
type: integer
20452069
grpc:
2046-
description: GRPC specifies an action involving
2047-
a GRPC port.
2070+
description: GRPC specifies a GRPC HealthCheckRequest.
20482071
properties:
20492072
port:
20502073
description: Port number of the gRPC service.
@@ -2063,7 +2086,7 @@ spec:
20632086
- port
20642087
type: object
20652088
httpGet:
2066-
description: HTTPGet specifies the http request
2089+
description: HTTPGet specifies an HTTP GET request
20672090
to perform.
20682091
properties:
20692092
host:
@@ -2131,7 +2154,7 @@ spec:
21312154
format: int32
21322155
type: integer
21332156
tcpSocket:
2134-
description: TCPSocket specifies an action involving
2157+
description: TCPSocket specifies a connection to
21352158
a TCP port.
21362159
properties:
21372160
host:

0 commit comments

Comments
 (0)