openshift
diff --git a/‎_topic_maps/_topic_map.yml
Lines changed: 16 additions & 6 deletions b/‎_topic_maps/_topic_map.yml
Lines changed: 16 additions & 6 deletions
diff --git a/‎api-config.yaml
Lines changed: 20 additions & 5 deletions b/‎api-config.yaml
Lines changed: 20 additions & 5 deletions
diff --git a/‎rest_api/autoscale_apis/clusterautoscaler-autoscaling-openshift-io-v1.adoc
Lines changed: 6 additions & 2 deletions b/‎rest_api/autoscale_apis/clusterautoscaler-autoscaling-openshift-io-v1.adoc
Lines changed: 6 additions & 2 deletions
diff --git a/‎rest_api/config_apis/apiserver-config-openshift-io-v1.adoc
Lines changed: 55 additions & 5 deletions b/‎rest_api/config_apis/apiserver-config-openshift-io-v1.adoc
Lines changed: 55 additions & 5 deletions
diff --git a/‎rest_api/config_apis/clusterversion-config-openshift-io-v1.adoc
Lines changed: 2 additions & 2 deletions b/‎rest_api/config_apis/clusterversion-config-openshift-io-v1.adoc
Lines changed: 2 additions & 2 deletions
@@ -3468,8 +3468,6 @@ Topics:
     File: kubeletconfig-machineconfiguration-openshift-io-v1
   - Name: 'MachineConfig [machineconfiguration.openshift.io/v1]'
     File: machineconfig-machineconfiguration-openshift-io-v1
-  - Name: 'MachineConfigNode [machineconfiguration.openshift.io/v1alpha1]'
-    File: machineconfignode-machineconfiguration-openshift-io-v1alpha1
   - Name: 'MachineConfigPool [machineconfiguration.openshift.io/v1]'
     File: machineconfigpool-machineconfiguration-openshift-io-v1
   - Name: 'MachineHealthCheck [machine.openshift.io/v1beta1]'
@@ -3531,8 +3529,12 @@ Topics:
   Topics:
   - Name: About Network APIs
     File: network-apis-index
+  - Name: 'AdminNetworkPolicy [policy.networking.k8s.io/v1alpha1]'
+    File: adminnetworkpolicy-policy-networking-k8s-io-v1alpha1
   - Name: 'AdminPolicyBasedExternalRoute [k8s.ovn.org/v1]'
     File: adminpolicybasedexternalroute-k8s-ovn-org-v1
+  - Name: 'BaselineAdminNetworkPolicy [policy.networking.k8s.io/v1alpha1]'
+    File: baselineadminnetworkpolicy-policy-networking-k8s-io-v1alpha1
   - Name: 'CloudPrivateIPConfig [cloud.network.openshift.io/v1]'
     File: cloudprivateipconfig-cloud-network-openshift-io-v1
   - Name: 'EgressFirewall [k8s.ovn.org/v1]'
@@ -3553,6 +3555,10 @@ Topics:
     File: ingress-networking-k8s-io-v1
   - Name: 'IngressClass [networking.k8s.io/v1]'
     File: ingressclass-networking-k8s-io-v1
+  - Name: 'IPAddress [ipam.cluster.x-k8s.io/v1beta1]'
+    File: ipaddress-ipam-cluster-x-k8s-io-v1beta1
+  - Name: 'IPAddressClaim [ipam.cluster.x-k8s.io/v1beta1]'
+    File: ipaddressclaim-ipam-cluster-x-k8s-io-v1beta1
   - Name: 'IPPool [whereabouts.cni.cncf.io/v1alpha1]'
     File: ippool-whereabouts-cni-cncf-io-v1alpha1
   - Name: 'NetworkAttachmentDefinition [k8s.cni.cncf.io/v1]'
@@ -3704,10 +3710,14 @@ Topics:
     File: bmceventsubscription-metal3-io-v1alpha1
   - Name: 'BareMetalHost [metal3.io/v1alpha1]'
     File: baremetalhost-metal3-io-v1alpha1
+  - Name: 'DataImage [metal3.io/v1alpha1]'
+    File: dataimage-metal3-io-v1alpha1
   - Name: 'FirmwareSchema [metal3.io/v1alpha1]'
     File: firmwareschema-metal3-io-v1alpha1
   - Name: 'HardwareData [metal3.io/v1alpha1]'
     File: hardwaredata-metal3-io-v1alpha1
+  - Name: 'HostFirmwareComponents [metal3.io/v1alpha1]'
+    File: hostfirmwarecomponents-metal3-io-v1alpha1
   - Name: 'HostFirmwareSettings [metal3.io/v1alpha1]'
     File: hostfirmwaresettings-metal3-io-v1alpha1
   - Name: 'Metal3Remediation [infrastructure.cluster.x-k8s.io/v1beta1]'
@@ -3755,14 +3765,14 @@ Topics:
     File: appliedclusterresourcequota-quota-openshift-io-v1
   - Name: 'ClusterResourceQuota [quota.openshift.io/v1]'
     File: clusterresourcequota-quota-openshift-io-v1
-  - Name: 'FlowSchema [flowcontrol.apiserver.k8s.io/v1beta3]'
-    File: flowschema-flowcontrol-apiserver-k8s-io-v1beta3
+  - Name: 'FlowSchema [flowcontrol.apiserver.k8s.io/v1]'
+    File: flowschema-flowcontrol-apiserver-k8s-io-v1
   - Name: 'LimitRange [undefined/v1]'
     File: limitrange-v1
   - Name: 'PriorityClass [scheduling.k8s.io/v1]'
     File: priorityclass-scheduling-k8s-io-v1
-  - Name: 'PriorityLevelConfiguration [flowcontrol.apiserver.k8s.io/v1beta3]'
-    File: prioritylevelconfiguration-flowcontrol-apiserver-k8s-io-v1beta3
+  - Name: 'PriorityLevelConfiguration [flowcontrol.apiserver.k8s.io/v1]'
+    File: prioritylevelconfiguration-flowcontrol-apiserver-k8s-io-v1
   - Name: 'ResourceQuota [undefined/v1]'
     File: resourcequota-v1
 - Name: Security APIs
 
@@ -217,9 +217,6 @@ apiMap:
   - kind: MachineConfig
     group: machineconfiguration.openshift.io
     version: v1
-  - kind: MachineConfigNode
-    group: machineconfiguration.openshift.io
-    version: v1alpha1
   - kind: MachineConfigPool
     group: machineconfiguration.openshift.io
     version: v1
@@ -294,9 +291,15 @@ apiMap:
 #  - kind: ClusterNetwork
 #    group: network.openshift.io
 #    version: v1
+  - kind: AdminNetworkPolicy
+    group: policy.networking.k8s.io
+    version: v1alpha1
   - kind: AdminPolicyBasedExternalRoute
     group: k8s.ovn.org
     version: v1
+  - kind: BaselineAdminNetworkPolicy
+    group: policy.networking.k8s.io
+    version: v1alpha1
   - kind: CloudPrivateIPConfig
     group: cloud.network.openshift.io
     version: v1
@@ -334,6 +337,12 @@ apiMap:
   - kind: IngressClass
     group: networking.k8s.io
     version: v1
+  - kind: IPAddress
+    group: ipam.cluster.x-k8s.io
+    version: v1beta1
+  - kind: IPAddressClaim
+    group: ipam.cluster.x-k8s.io
+    version: v1beta1
   - kind: IPPool
     group: whereabouts.cni.cncf.io
     version: v1alpha1
@@ -536,12 +545,18 @@ apiMap:
   - kind: BareMetalHost
     group: metal3.io
     version: v1alpha1
+  - kind: DataImage
+    group: metal3.io
+    version: v1alpha1
   - kind: FirmwareSchema
     group: metal3.io
     version: v1alpha1
   - kind: HardwareData
     group: metal3.io
     version: v1alpha1
+  - kind: HostFirmwareComponents
+    group: metal3.io
+    version: v1alpha1
   - kind: HostFirmwareSettings
     group: metal3.io
     version: v1alpha1
@@ -598,15 +613,15 @@ apiMap:
     version: v1
   - kind: FlowSchema
     group: flowcontrol.apiserver.k8s.io
-    version: v1beta3
+    version: v1
   - kind: LimitRange
     version: v1
   - kind: PriorityClass
     group: scheduling.k8s.io
     version: v1
   - kind: PriorityLevelConfiguration
     group: flowcontrol.apiserver.k8s.io
-    version: v1beta3
+    version: v1
   - kind: ResourceQuota
     version: v1
 - name: Security APIs
 
@@ -71,6 +71,10 @@ Type::
 | `array (string)`
 | BalancingIgnoredLabels sets "--balancing-ignore-label <label name>" flag on cluster-autoscaler for each listed label. This option specifies labels that cluster autoscaler should ignore when considering node group similarity. For example, if you have nodes with "topology.ebs.csi.aws.com/zone" label, you can add name of this label here to prevent cluster autoscaler from spliting nodes into different node groups based on its value.
 
+| `expanders`
+| `array (string)`
+| Sets the type and order of expanders to be used during scale out operations. This option specifies an ordered list, highest priority first, of expanders that will be used by the cluster autoscaler to select node groups for expansion when scaling out. Expanders instruct the autoscaler on how to choose node groups when scaling out the cluster. They can be specified in order so that the result from the first expander is used as the input to the second, and so forth. For example, if set to `[LeastWaste, Random]` the autoscaler will first evaluate node groups to determine which will have the least resource waste, if multiple groups are selected the autoscaler will then randomly choose between those groups to determine the group for scaling. The following expanders are available: * LeastWaste - selects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. * Priority - selects the node group that has the highest priority assigned by the user. For details, please see https://github.com/openshift/kubernetes-autoscaler/blob/master/cluster-autoscaler/expander/priority/readme.md * Random - selects the node group randomly. If not specified, the default value is `Random`, available options are: `LeastWaste`, `Priority`, `Random`.
+
 | `ignoreDaemonsetsUtilization`
 | `boolean`
 | Enables/Disables `--ignore-daemonsets-utilization` CA feature flag. Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. false by default
@@ -140,7 +144,7 @@ Type::
 
 | `memory`
 | `object`
-| Minimum and maximum number of gigabytes of memory in cluster, in the format <min>:<max>. Cluster autoscaler will not scale the cluster beyond these numbers.
+| Minimum and maximum number of GiB of memory in cluster, in the format <min>:<max>. Cluster autoscaler will not scale the cluster beyond these numbers.
 
 |===
 === .spec.resourceLimits.cores
@@ -223,7 +227,7 @@ Required::
 Description::
 +
 --
-Minimum and maximum number of gigabytes of memory in cluster, in the format <min>:<max>. Cluster autoscaler will not scale the cluster beyond these numbers.
+Minimum and maximum number of GiB of memory in cluster, in the format <min>:<max>. Cluster autoscaler will not scale the cluster beyond these numbers.
 --
 
 Type::
 
@@ -327,29 +327,79 @@ Type::
 | `custom`
 | ``
 | custom is a user-defined TLS security profile. Be extremely careful using a custom profile as invalid configurations can be catastrophic. An example custom profile looks like this: 
- ciphers: - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 minTLSVersion: VersionTLS11
+ ciphers: 
+ - ECDHE-ECDSA-CHACHA20-POLY1305 
+ - ECDHE-RSA-CHACHA20-POLY1305 
+ - ECDHE-RSA-AES128-GCM-SHA256 
+ - ECDHE-ECDSA-AES128-GCM-SHA256 
+ minTLSVersion: VersionTLS11
 
 | `intermediate`
 | ``
 | intermediate is a TLS security profile based on: 
  https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29 
  and looks like this (yaml): 
- ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 minTLSVersion: VersionTLS12
+ ciphers: 
+ - TLS_AES_128_GCM_SHA256 
+ - TLS_AES_256_GCM_SHA384 
+ - TLS_CHACHA20_POLY1305_SHA256 
+ - ECDHE-ECDSA-AES128-GCM-SHA256 
+ - ECDHE-RSA-AES128-GCM-SHA256 
+ - ECDHE-ECDSA-AES256-GCM-SHA384 
+ - ECDHE-RSA-AES256-GCM-SHA384 
+ - ECDHE-ECDSA-CHACHA20-POLY1305 
+ - ECDHE-RSA-CHACHA20-POLY1305 
+ - DHE-RSA-AES128-GCM-SHA256 
+ - DHE-RSA-AES256-GCM-SHA384 
+ minTLSVersion: VersionTLS12
 
 | `modern`
 | ``
 | modern is a TLS security profile based on: 
  https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility 
  and looks like this (yaml): 
- ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 minTLSVersion: VersionTLS13 
- NOTE: Currently unsupported.
+ ciphers: 
+ - TLS_AES_128_GCM_SHA256 
+ - TLS_AES_256_GCM_SHA384 
+ - TLS_CHACHA20_POLY1305_SHA256 
+ minTLSVersion: VersionTLS13
 
 | `old`
 | ``
 | old is a TLS security profile based on: 
  https://wiki.mozilla.org/Security/Server_Side_TLS#Old_backward_compatibility 
  and looks like this (yaml): 
- ciphers: - TLS_AES_128_GCM_SHA256 - TLS_AES_256_GCM_SHA384 - TLS_CHACHA20_POLY1305_SHA256 - ECDHE-ECDSA-AES128-GCM-SHA256 - ECDHE-RSA-AES128-GCM-SHA256 - ECDHE-ECDSA-AES256-GCM-SHA384 - ECDHE-RSA-AES256-GCM-SHA384 - ECDHE-ECDSA-CHACHA20-POLY1305 - ECDHE-RSA-CHACHA20-POLY1305 - DHE-RSA-AES128-GCM-SHA256 - DHE-RSA-AES256-GCM-SHA384 - DHE-RSA-CHACHA20-POLY1305 - ECDHE-ECDSA-AES128-SHA256 - ECDHE-RSA-AES128-SHA256 - ECDHE-ECDSA-AES128-SHA - ECDHE-RSA-AES128-SHA - ECDHE-ECDSA-AES256-SHA384 - ECDHE-RSA-AES256-SHA384 - ECDHE-ECDSA-AES256-SHA - ECDHE-RSA-AES256-SHA - DHE-RSA-AES128-SHA256 - DHE-RSA-AES256-SHA256 - AES128-GCM-SHA256 - AES256-GCM-SHA384 - AES128-SHA256 - AES256-SHA256 - AES128-SHA - AES256-SHA - DES-CBC3-SHA minTLSVersion: VersionTLS10
+ ciphers: 
+ - TLS_AES_128_GCM_SHA256 
+ - TLS_AES_256_GCM_SHA384 
+ - TLS_CHACHA20_POLY1305_SHA256 
+ - ECDHE-ECDSA-AES128-GCM-SHA256 
+ - ECDHE-RSA-AES128-GCM-SHA256 
+ - ECDHE-ECDSA-AES256-GCM-SHA384 
+ - ECDHE-RSA-AES256-GCM-SHA384 
+ - ECDHE-ECDSA-CHACHA20-POLY1305 
+ - ECDHE-RSA-CHACHA20-POLY1305 
+ - DHE-RSA-AES128-GCM-SHA256 
+ - DHE-RSA-AES256-GCM-SHA384 
+ - DHE-RSA-CHACHA20-POLY1305 
+ - ECDHE-ECDSA-AES128-SHA256 
+ - ECDHE-RSA-AES128-SHA256 
+ - ECDHE-ECDSA-AES128-SHA 
+ - ECDHE-RSA-AES128-SHA 
+ - ECDHE-ECDSA-AES256-SHA384 
+ - ECDHE-RSA-AES256-SHA384 
+ - ECDHE-ECDSA-AES256-SHA 
+ - ECDHE-RSA-AES256-SHA 
+ - DHE-RSA-AES128-SHA256 
+ - DHE-RSA-AES256-SHA256 
+ - AES128-GCM-SHA256 
+ - AES256-GCM-SHA384 
+ - AES128-SHA256 
+ - AES256-SHA256 
+ - AES128-SHA 
+ - AES256-SHA 
+ - DES-CBC3-SHA 
+ minTLSVersion: VersionTLS10
 
 | `type`
 | `string`
 
@@ -345,7 +345,7 @@ Required::
 
 | `conditions`
 | `array`
-| conditions represents the observations of the conditional update's current status. Known types are: * Evaluating, for whether the cluster-version operator will attempt to evaluate any risks[].matchingRules. * Recommended, for whether the update is recommended for the current cluster.
+| conditions represents the observations of the conditional update's current status. Known types are: * Recommended, for whether the update is recommended for the current cluster.
 
 | `conditions[]`
 | `object`
@@ -370,7 +370,7 @@ Required::
 Description::
 +
 --
-conditions represents the observations of the conditional update's current status. Known types are: * Evaluating, for whether the cluster-version operator will attempt to evaluate any risks[].matchingRules. * Recommended, for whether the update is recommended for the current cluster.
+conditions represents the observations of the conditional update's current status. Known types are: * Recommended, for whether the update is recommended for the current cluster.
 --
 
 Type::