From 799a27dc8cd7a7dad14f9656959200286489dac8 Mon Sep 17 00:00:00 2001 From: Nell Jerram Date: Thu, 23 Jan 2025 13:50:27 +0000 Subject: [PATCH] make validate-gen-versions --- ...projectcalico.org_felixconfigurations.yaml | 48 +++++++++++++++++++ 1 file changed, 48 insertions(+) diff --git a/pkg/crds/calico/crd.projectcalico.org_felixconfigurations.yaml b/pkg/crds/calico/crd.projectcalico.org_felixconfigurations.yaml index 4903b4a764..04a2573888 100644 --- a/pkg/crds/calico/crd.projectcalico.org_felixconfigurations.yaml +++ b/pkg/crds/calico/crd.projectcalico.org_felixconfigurations.yaml @@ -227,6 +227,11 @@ spec: items: type: string type: array + bpfExportBufferSizeMB: + description: |- + BPFExportBufferSizeMB in BPF mode, controls the buffer size used for sending BPF events to felix. + [Default: 1] + type: integer bpfExtToServiceConnmark: description: |- BPFExtToServiceConnmark in BPF mode, controls a 32bit mark that is set on connections from an @@ -583,6 +588,43 @@ spec: - Enabled - Disabled type: string + flowLogsCollectorDebugTrace: + description: |- + When FlowLogsCollectorDebugTrace is set to true, enables the logs in the collector to be + printed in their entirety. + type: boolean + flowLogsEnableNetworkSets: + description: FlowLogsEnableNetworkSets enables Flow logs reporting + for GlobalNetworkSets. + type: boolean + flowLogsFileIncludeLabels: + description: FlowLogsFileIncludeLabels is used to configure if endpoint + labels are included in a Flow log entry written to file. + type: boolean + flowLogsFileIncludePolicies: + description: FlowLogsFileIncludePolicies is used to configure if policy + information are included in a Flow log entry written to file. + type: boolean + flowLogsFileIncludeService: + description: |- + FlowLogsFileIncludeService is used to configure if the destination service is included in a Flow log entry written to file. + The service information can only be included if the flow was explicitly determined to be directed at the service (e.g. + when the pre-DNAT destination corresponds to the service ClusterIP and port). + type: boolean + flowLogsFlushInterval: + description: FlowLogsFlushInterval configures the interval at which + Felix exports flow logs. + pattern: ^([0-9]+(\\.[0-9]+)?(ms|s|m|h))*$ + type: string + flowLogsGoldmaneServer: + description: FlowLogGoldmaneServer is the flow server endpoint to + which flow data should be published. + type: string + flowLogsMaxOriginalIPsIncluded: + description: FlowLogsMaxOriginalIPsIncluded specifies the number of + unique IP addresses (if relevant) that should be included in Flow + logs. + type: integer genericXDPEnabled: description: |- GenericXDPEnabled enables Generic XDP so network cards that don't support XDP offload or driver @@ -873,6 +915,12 @@ spec: routes, rules, and other kernel objects. [Default: 10s] pattern: ^([0-9]+(\\.[0-9]+)?(ms|s|m|h))*$ type: string + nfNetlinkBufSize: + description: |- + NfNetlinkBufSize controls the size of NFLOG messages that the kernel will try to send to Felix. NFLOG messages + are used to report flow verdicts from the kernel. Warning: currently increasing the value may cause errors + due to a bug in the netlink library. + type: string nftablesFilterAllowAction: description: |- NftablesFilterAllowAction controls the nftables action that Felix uses to represent the "allow" policy verdict