Package io.fabric8.openshift.api.model.machine.v1beta1

Class VMDiskSecurityProfile

  • All Implemented Interfaces:
    io.fabric8.kubernetes.api.builder.Editable<VMDiskSecurityProfileBuilder>, io.fabric8.kubernetes.api.model.KubernetesResource, Serializable
    @Generated("io.fabric8.kubernetes.schema.generator.model.ModelGenerator")
public class VMDiskSecurityProfile
extends Object
implements io.fabric8.kubernetes.api.builder.Editable<VMDiskSecurityProfileBuilder>, io.fabric8.kubernetes.api.model.KubernetesResource
    VMDiskSecurityProfile specifies the security profile settings for the managed disk. It can be set only for Confidential VMs.
    See Also:
    Serialized Form

    • Constructor Detail

      • VMDiskSecurityProfile

        public VMDiskSecurityProfile()
        No args constructor for use in serialization

    • Method Detail

      • getDiskEncryptionSet

        public DiskEncryptionSetParameters getDiskEncryptionSet()
        VMDiskSecurityProfile specifies the security profile settings for the managed disk. It can be set only for Confidential VMs.

      • setDiskEncryptionSet

        public void setDiskEncryptionSet​(DiskEncryptionSetParameters diskEncryptionSet)
        VMDiskSecurityProfile specifies the security profile settings for the managed disk. It can be set only for Confidential VMs.

      • getSecurityEncryptionType

        public String getSecurityEncryptionType()
        securityEncryptionType specifies the encryption type of the managed disk. It is set to DiskWithVMGuestState to encrypt the managed disk along with the VMGuestState blob, and to VMGuestStateOnly to encrypt the VMGuestState blob only. When set to VMGuestStateOnly, the vTPM should be enabled. When set to DiskWithVMGuestState, both SecureBoot and vTPM should be enabled. If the above conditions are not fulfilled, the VM will not be created and the respective error will be returned. It can be set only for Confidential VMs. Confidential VMs are defined by their SecurityProfile.SecurityType being set to ConfidentialVM, the SecurityEncryptionType of their OS disk being set to one of the allowed values and by enabling the respective SecurityProfile.UEFISettings of the VM (i.e. vTPM and SecureBoot), depending on the selected SecurityEncryptionType. For further details on Azure Confidential VMs, please refer to the respective documentation: https://learn.microsoft.com/azure/confidential-computing/confidential-vm-overview

      • setSecurityEncryptionType

        public void setSecurityEncryptionType​(String securityEncryptionType)
        securityEncryptionType specifies the encryption type of the managed disk. It is set to DiskWithVMGuestState to encrypt the managed disk along with the VMGuestState blob, and to VMGuestStateOnly to encrypt the VMGuestState blob only. When set to VMGuestStateOnly, the vTPM should be enabled. When set to DiskWithVMGuestState, both SecureBoot and vTPM should be enabled. If the above conditions are not fulfilled, the VM will not be created and the respective error will be returned. It can be set only for Confidential VMs. Confidential VMs are defined by their SecurityProfile.SecurityType being set to ConfidentialVM, the SecurityEncryptionType of their OS disk being set to one of the allowed values and by enabling the respective SecurityProfile.UEFISettings of the VM (i.e. vTPM and SecureBoot), depending on the selected SecurityEncryptionType. For further details on Azure Confidential VMs, please refer to the respective documentation: https://learn.microsoft.com/azure/confidential-computing/confidential-vm-overview

      • getAdditionalProperties

        public Map<String,​Object> getAdditionalProperties()

      • setAdditionalProperty

        public void setAdditionalProperty​(String name,
                                  Object value)

      • setAdditionalProperties

        public void setAdditionalProperties​(Map<String,​Object> additionalProperties)