|
|
|
|
@@ -279,7 +279,6 @@ module "vm-disk-options-example" {
|
|
|
|
|
|
|
|
|
|
attached_disks = [
|
|
|
|
|
{
|
|
|
|
|
#projects/debian-cloud/global/images/family/debian-12
|
|
|
|
|
name = "data1"
|
|
|
|
|
size = "10"
|
|
|
|
|
options = {
|
|
|
|
|
@@ -352,7 +351,6 @@ module "vm-disk-options-example" {
|
|
|
|
|
|
|
|
|
|
attached_disks = [
|
|
|
|
|
{
|
|
|
|
|
#projects/debian-cloud/global/images/family/debian-12
|
|
|
|
|
name = "data1"
|
|
|
|
|
size = "10"
|
|
|
|
|
options = {
|
|
|
|
|
@@ -384,6 +382,65 @@ module "vm-disk-options-example" {
|
|
|
|
|
# tftest inventory=disk-hyperdisk-pool.yaml e2e
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
You need to specify additional options if you are using ARM-based instances
|
|
|
|
|
|
|
|
|
|
For hyperdisks there are additional options available to configure performance.
|
|
|
|
|
|
|
|
|
|
```hcl
|
|
|
|
|
module "vm-arm" {
|
|
|
|
|
source = "./fabric/modules/compute-vm"
|
|
|
|
|
project_id = var.project_id
|
|
|
|
|
zone = "${var.region}-b"
|
|
|
|
|
name = "test"
|
|
|
|
|
instance_type = "c4a-standard-1"
|
|
|
|
|
network_interfaces = [{
|
|
|
|
|
network = var.vpc.self_link
|
|
|
|
|
subnetwork = var.subnet.self_link
|
|
|
|
|
}]
|
|
|
|
|
boot_disk = {
|
|
|
|
|
initialize_params = {
|
|
|
|
|
image = "projects/debian-cloud/global/images/family/debian-12-arm64"
|
|
|
|
|
architecture = "ARM64"
|
|
|
|
|
provisioned_iops = 3000
|
|
|
|
|
provisioned_throughput = 140
|
|
|
|
|
type = "hyperdisk-balanced"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
attached_disks = [
|
|
|
|
|
{
|
|
|
|
|
name = "data1"
|
|
|
|
|
size = "10"
|
|
|
|
|
options = {
|
|
|
|
|
architecture = "ARM64"
|
|
|
|
|
provisioned_iops = 3000
|
|
|
|
|
provisioned_throughput = 140
|
|
|
|
|
type = "hyperdisk-balanced"
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
name = "data2"
|
|
|
|
|
size = "10"
|
|
|
|
|
source_type = "image"
|
|
|
|
|
source = "projects/debian-cloud/global/images/family/debian-12-arm64"
|
|
|
|
|
options = {
|
|
|
|
|
architecture = "ARM64"
|
|
|
|
|
provisioned_iops = 5000
|
|
|
|
|
provisioned_throughput = 500
|
|
|
|
|
type = "hyperdisk-balanced"
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
|
|
|
|
|
]
|
|
|
|
|
service_account = {
|
|
|
|
|
auto_create = true
|
|
|
|
|
}
|
|
|
|
|
shielded_config = {}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# tftest inventory=disk-hyperdisk-arm.yaml e2e
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
#### Boot disk as an independent resource
|
|
|
|
|
|
|
|
|
|
To create the boot disk as an independent resources instead of as part of the instance creation flow, set `boot_disk.use_independent_disk` to `true` and optionally configure `boot_disk.initialize_params`.
|
|
|
|
|
@@ -1065,42 +1122,42 @@ module "sole-tenancy" {
|
|
|
|
|
|
|
|
|
|
| name | description | type | required | default |
|
|
|
|
|
|---|---|:---:|:---:|:---:|
|
|
|
|
|
| [name](variables.tf#L289) | Instance name. | <code>string</code> | ✓ | |
|
|
|
|
|
| [network_interfaces](variables.tf#L301) | Network interfaces configuration. Use self links for Shared VPC, set addresses to null if not needed. | <code title="list(object({ network = string subnetwork = string alias_ips = optional(map(string), {}) nat = optional(bool, false) nic_type = optional(string) stack_type = optional(string) addresses = optional(object({ internal = optional(string) external = optional(string) }), null) network_tier = optional(string) }))">list(object({…}))</code> | ✓ | |
|
|
|
|
|
| [project_id](variables.tf#L386) | Project id. | <code>string</code> | ✓ | |
|
|
|
|
|
| [zone](variables.tf#L506) | Compute zone. | <code>string</code> | ✓ | |
|
|
|
|
|
| [name](variables.tf#L304) | Instance name. | <code>string</code> | ✓ | |
|
|
|
|
|
| [network_interfaces](variables.tf#L316) | Network interfaces configuration. Use self links for Shared VPC, set addresses to null if not needed. | <code title="list(object({ network = string subnetwork = string alias_ips = optional(map(string), {}) nat = optional(bool, false) nic_type = optional(string) stack_type = optional(string) addresses = optional(object({ internal = optional(string) external = optional(string) }), null) network_tier = optional(string) }))">list(object({…}))</code> | ✓ | |
|
|
|
|
|
| [project_id](variables.tf#L401) | Project id. | <code>string</code> | ✓ | |
|
|
|
|
|
| [zone](variables.tf#L521) | Compute zone. | <code>string</code> | ✓ | |
|
|
|
|
|
| [attached_disk_defaults](variables.tf#L17) | Defaults for attached disks options. | <code title="object({ auto_delete = optional(bool, false) mode = string replica_zone = string type = string })">object({…})</code> | | <code title="{ auto_delete = true mode = "READ_WRITE" replica_zone = null type = "pd-balanced" }">{…}</code> |
|
|
|
|
|
| [attached_disks](variables.tf#L37) | Additional disks, if options is null defaults will be used in its place. Source type is one of 'image' (zonal disks in vms and template), 'snapshot' (vm), 'existing', and null. | <code title="list(object({ name = optional(string) device_name = optional(string) size = string snapshot_schedule = optional(list(string)) source = optional(string) source_type = optional(string) options = optional( object({ auto_delete = optional(bool, false) # applies only to vm templates mode = optional(string, "READ_WRITE") provisioned_iops = optional(number) provisioned_throughput = optional(number) # in MiB/s replica_zone = optional(string) storage_pool = optional(string) type = optional(string, "pd-balanced") }), { auto_delete = true mode = "READ_WRITE" replica_zone = null type = "pd-balanced" } ) }))">list(object({…}))</code> | | <code>[]</code> |
|
|
|
|
|
| [boot_disk](variables.tf#L85) | Boot disk properties. Initialize params are ignored when source is set. | <code title="object({ auto_delete = optional(bool, true) snapshot_schedule = optional(list(string)) source = optional(string) initialize_params = optional(object({ image = optional(string, "projects/debian-cloud/global/images/family/debian-11") provisioned_iops = optional(number) provisioned_throughput = optional(number) # in MiB/s size = optional(number, 10) storage_pool = optional(string) type = optional(string, "pd-balanced") }), {}) use_independent_disk = optional(bool, false) })">object({…})</code> | | <code title="{ initialize_params = {} }">{…}</code> |
|
|
|
|
|
| [can_ip_forward](variables.tf#L119) | Enable IP forwarding. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [confidential_compute](variables.tf#L125) | Enable Confidential Compute for these instances. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [context](variables.tf#L131) | Context-specific interpolations. | <code title="object({ addresses = optional(map(string), {}) custom_roles = optional(map(string), {}) kms_keys = optional(map(string), {}) iam_principals = optional(map(string), {}) locations = optional(map(string), {}) networks = optional(map(string), {}) project_ids = optional(map(string), {}) subnets = optional(map(string), {}) tag_values = optional(map(string), {}) })">object({…})</code> | | <code>{}</code> |
|
|
|
|
|
| [create_template](variables.tf#L148) | Create instance template instead of instances. Defaults to a global template. | <code title="object({ regional = optional(bool, false) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [description](variables.tf#L157) | Description of a Compute Instance. | <code>string</code> | | <code>"Managed by the compute-vm Terraform module."</code> |
|
|
|
|
|
| [enable_display](variables.tf#L163) | Enable virtual display on the instances. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [encryption](variables.tf#L169) | Encryption options. Only one of kms_key_self_link and disk_encryption_key_raw may be set. If needed, you can specify to encrypt or not the boot disk. | <code title="object({ encrypt_boot = optional(bool, false) disk_encryption_key_raw = optional(string) kms_key_self_link = optional(string) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [gpu](variables.tf#L179) | GPU information. Based on https://cloud.google.com/compute/docs/gpus. | <code title="object({ count = number type = string })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [group](variables.tf#L214) | Define this variable to create an instance group for instances. Disabled for template use. | <code title="object({ named_ports = map(number) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [hostname](variables.tf#L222) | Instance FQDN name. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [iam](variables.tf#L228) | IAM bindings in {ROLE => [MEMBERS]} format. | <code>map(list(string))</code> | | <code>{}</code> |
|
|
|
|
|
| [instance_schedule](variables.tf#L234) | Assign or create and assign an instance schedule policy. Either resource policy id or create_config must be specified if not null. Set active to null to dtach a policy from vm before destroying. | <code title="object({ active = optional(bool, true) description = optional(string) expiration_time = optional(string) start_time = optional(string) timezone = optional(string, "UTC") vm_start = optional(string) vm_stop = optional(string) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [instance_type](variables.tf#L258) | Instance type. | <code>string</code> | | <code>"f1-micro"</code> |
|
|
|
|
|
| [labels](variables.tf#L264) | Instance labels. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [metadata](variables.tf#L270) | Instance metadata. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [metadata_startup_script](variables.tf#L276) | Instance startup script. Will trigger recreation on change, even after importing. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [min_cpu_platform](variables.tf#L283) | Minimum CPU platform. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [network_attached_interfaces](variables.tf#L294) | Network interfaces using network attachments. | <code>list(string)</code> | | <code>[]</code> |
|
|
|
|
|
| [network_tag_bindings](variables.tf#L322) | Resource manager tag bindings in arbitrary key => tag key or value id format. Set on both the instance only for networking purposes, and modifiable without impacting the main resource lifecycle. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [options](variables.tf#L329) | Instance options. | <code title="object({ advanced_machine_features = optional(object({ enable_nested_virtualization = optional(bool) enable_turbo_mode = optional(bool) enable_uefi_networking = optional(bool) performance_monitoring_unit = optional(string) threads_per_core = optional(number) visible_core_count = optional(number) })) allow_stopping_for_update = optional(bool, true) deletion_protection = optional(bool, false) graceful_shutdown = optional(object({ enabled = optional(bool, false) max_duration_secs = optional(number) })) max_run_duration = optional(object({ nanos = optional(number) seconds = number })) node_affinities = optional(map(object({ values = list(string) in = optional(bool, true) })), {}) spot = optional(bool, false) termination_action = optional(string) })">object({…})</code> | | <code title="{ allow_stopping_for_update = true deletion_protection = false spot = false termination_action = null }">{…}</code> |
|
|
|
|
|
| [project_number](variables.tf#L391) | Project number. Used in tag bindings to avoid a permadiff. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [resource_policies](variables.tf#L397) | Resource policies to attach to the instance or template. | <code>list(string)</code> | | <code>null</code> |
|
|
|
|
|
| [scratch_disks](variables.tf#L404) | Scratch disks configuration. | <code title="object({ count = number interface = string })">object({…})</code> | | <code title="{ count = 0 interface = "NVME" }">{…}</code> |
|
|
|
|
|
| [service_account](variables.tf#L416) | Service account email and scopes. If email is null, the default Compute service account will be used unless auto_create is true, in which case a service account will be created. Set the variable to null to avoid attaching a service account. | <code title="object({ auto_create = optional(bool, false) email = optional(string) scopes = optional(list(string)) })">object({…})</code> | | <code>{}</code> |
|
|
|
|
|
| [shielded_config](variables.tf#L426) | Shielded VM configuration of the instances. | <code title="object({ enable_secure_boot = optional(bool, true) enable_vtpm = optional(bool, true) enable_integrity_monitoring = optional(bool, true) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [snapshot_schedules](variables.tf#L436) | Snapshot schedule resource policies that can be attached to disks. | <code title="map(object({ schedule = object({ daily = optional(object({ days_in_cycle = number start_time = string })) hourly = optional(object({ hours_in_cycle = number start_time = string })) weekly = optional(list(object({ day = string start_time = string }))) }) description = optional(string) retention_policy = optional(object({ max_retention_days = number on_source_disk_delete_keep = optional(bool) })) snapshot_properties = optional(object({ chain_name = optional(string) guest_flush = optional(bool) labels = optional(map(string)) storage_locations = optional(list(string)) })) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
|
|
|
| [tag_bindings](variables.tf#L479) | Resource manager tag bindings in arbitrary key => tag key or value id format. Set on both the instance and zonal disks, and modifiable without impacting the main resource lifecycle. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [tag_bindings_immutable](variables.tf#L486) | Immutable resource manager tag bindings, in tagKeys/id => tagValues/id format. These are set on the instance or instance template at creation time, and trigger recreation if changed. | <code>map(string)</code> | | <code>null</code> |
|
|
|
|
|
| [tags](variables.tf#L500) | Instance network tags for firewall rule targets. | <code>list(string)</code> | | <code>[]</code> |
|
|
|
|
|
| [attached_disks](variables.tf#L37) | Additional disks, if options is null defaults will be used in its place. Source type is one of 'image' (zonal disks in vms and template), 'snapshot' (vm), 'existing', and null. | <code title="list(object({ name = optional(string) device_name = optional(string) size = string snapshot_schedule = optional(list(string)) source = optional(string) source_type = optional(string) options = optional( object({ architecture = optional(string) auto_delete = optional(bool, false) # applies only to vm templates mode = optional(string, "READ_WRITE") provisioned_iops = optional(number) provisioned_throughput = optional(number) # in MiB/s replica_zone = optional(string) storage_pool = optional(string) type = optional(string, "pd-balanced") }), { auto_delete = true mode = "READ_WRITE" replica_zone = null type = "pd-balanced" } ) }))">list(object({…}))</code> | | <code>[]</code> |
|
|
|
|
|
| [boot_disk](variables.tf#L92) | Boot disk properties. Initialize params are ignored when source is set. | <code title="object({ auto_delete = optional(bool, true) snapshot_schedule = optional(list(string)) source = optional(string) initialize_params = optional(object({ architecture = optional(string) image = optional(string, "projects/debian-cloud/global/images/family/debian-11") provisioned_iops = optional(number) provisioned_throughput = optional(number) # in MiB/s size = optional(number, 10) storage_pool = optional(string) type = optional(string, "pd-balanced") }), {}) use_independent_disk = optional(bool, false) })">object({…})</code> | | <code title="{ initialize_params = {} }">{…}</code> |
|
|
|
|
|
| [can_ip_forward](variables.tf#L134) | Enable IP forwarding. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [confidential_compute](variables.tf#L140) | Enable Confidential Compute for these instances. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [context](variables.tf#L146) | Context-specific interpolations. | <code title="object({ addresses = optional(map(string), {}) custom_roles = optional(map(string), {}) kms_keys = optional(map(string), {}) iam_principals = optional(map(string), {}) locations = optional(map(string), {}) networks = optional(map(string), {}) project_ids = optional(map(string), {}) subnets = optional(map(string), {}) tag_values = optional(map(string), {}) })">object({…})</code> | | <code>{}</code> |
|
|
|
|
|
| [create_template](variables.tf#L163) | Create instance template instead of instances. Defaults to a global template. | <code title="object({ regional = optional(bool, false) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [description](variables.tf#L172) | Description of a Compute Instance. | <code>string</code> | | <code>"Managed by the compute-vm Terraform module."</code> |
|
|
|
|
|
| [enable_display](variables.tf#L178) | Enable virtual display on the instances. | <code>bool</code> | | <code>false</code> |
|
|
|
|
|
| [encryption](variables.tf#L184) | Encryption options. Only one of kms_key_self_link and disk_encryption_key_raw may be set. If needed, you can specify to encrypt or not the boot disk. | <code title="object({ encrypt_boot = optional(bool, false) disk_encryption_key_raw = optional(string) kms_key_self_link = optional(string) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [gpu](variables.tf#L194) | GPU information. Based on https://cloud.google.com/compute/docs/gpus. | <code title="object({ count = number type = string })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [group](variables.tf#L229) | Define this variable to create an instance group for instances. Disabled for template use. | <code title="object({ named_ports = map(number) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [hostname](variables.tf#L237) | Instance FQDN name. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [iam](variables.tf#L243) | IAM bindings in {ROLE => [MEMBERS]} format. | <code>map(list(string))</code> | | <code>{}</code> |
|
|
|
|
|
| [instance_schedule](variables.tf#L249) | Assign or create and assign an instance schedule policy. Either resource policy id or create_config must be specified if not null. Set active to null to dtach a policy from vm before destroying. | <code title="object({ active = optional(bool, true) description = optional(string) expiration_time = optional(string) start_time = optional(string) timezone = optional(string, "UTC") vm_start = optional(string) vm_stop = optional(string) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [instance_type](variables.tf#L273) | Instance type. | <code>string</code> | | <code>"f1-micro"</code> |
|
|
|
|
|
| [labels](variables.tf#L279) | Instance labels. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [metadata](variables.tf#L285) | Instance metadata. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [metadata_startup_script](variables.tf#L291) | Instance startup script. Will trigger recreation on change, even after importing. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [min_cpu_platform](variables.tf#L298) | Minimum CPU platform. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [network_attached_interfaces](variables.tf#L309) | Network interfaces using network attachments. | <code>list(string)</code> | | <code>[]</code> |
|
|
|
|
|
| [network_tag_bindings](variables.tf#L337) | Resource manager tag bindings in arbitrary key => tag key or value id format. Set on both the instance only for networking purposes, and modifiable without impacting the main resource lifecycle. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [options](variables.tf#L344) | Instance options. | <code title="object({ advanced_machine_features = optional(object({ enable_nested_virtualization = optional(bool) enable_turbo_mode = optional(bool) enable_uefi_networking = optional(bool) performance_monitoring_unit = optional(string) threads_per_core = optional(number) visible_core_count = optional(number) })) allow_stopping_for_update = optional(bool, true) deletion_protection = optional(bool, false) graceful_shutdown = optional(object({ enabled = optional(bool, false) max_duration_secs = optional(number) })) max_run_duration = optional(object({ nanos = optional(number) seconds = number })) node_affinities = optional(map(object({ values = list(string) in = optional(bool, true) })), {}) spot = optional(bool, false) termination_action = optional(string) })">object({…})</code> | | <code title="{ allow_stopping_for_update = true deletion_protection = false spot = false termination_action = null }">{…}</code> |
|
|
|
|
|
| [project_number](variables.tf#L406) | Project number. Used in tag bindings to avoid a permadiff. | <code>string</code> | | <code>null</code> |
|
|
|
|
|
| [resource_policies](variables.tf#L412) | Resource policies to attach to the instance or template. | <code>list(string)</code> | | <code>null</code> |
|
|
|
|
|
| [scratch_disks](variables.tf#L419) | Scratch disks configuration. | <code title="object({ count = number interface = string })">object({…})</code> | | <code title="{ count = 0 interface = "NVME" }">{…}</code> |
|
|
|
|
|
| [service_account](variables.tf#L431) | Service account email and scopes. If email is null, the default Compute service account will be used unless auto_create is true, in which case a service account will be created. Set the variable to null to avoid attaching a service account. | <code title="object({ auto_create = optional(bool, false) email = optional(string) scopes = optional(list(string)) })">object({…})</code> | | <code>{}</code> |
|
|
|
|
|
| [shielded_config](variables.tf#L441) | Shielded VM configuration of the instances. | <code title="object({ enable_secure_boot = optional(bool, true) enable_vtpm = optional(bool, true) enable_integrity_monitoring = optional(bool, true) })">object({…})</code> | | <code>null</code> |
|
|
|
|
|
| [snapshot_schedules](variables.tf#L451) | Snapshot schedule resource policies that can be attached to disks. | <code title="map(object({ schedule = object({ daily = optional(object({ days_in_cycle = number start_time = string })) hourly = optional(object({ hours_in_cycle = number start_time = string })) weekly = optional(list(object({ day = string start_time = string }))) }) description = optional(string) retention_policy = optional(object({ max_retention_days = number on_source_disk_delete_keep = optional(bool) })) snapshot_properties = optional(object({ chain_name = optional(string) guest_flush = optional(bool) labels = optional(map(string)) storage_locations = optional(list(string)) })) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
|
|
|
| [tag_bindings](variables.tf#L494) | Resource manager tag bindings in arbitrary key => tag key or value id format. Set on both the instance and zonal disks, and modifiable without impacting the main resource lifecycle. | <code>map(string)</code> | | <code>{}</code> |
|
|
|
|
|
| [tag_bindings_immutable](variables.tf#L501) | Immutable resource manager tag bindings, in tagKeys/id => tagValues/id format. These are set on the instance or instance template at creation time, and trigger recreation if changed. | <code>map(string)</code> | | <code>null</code> |
|
|
|
|
|
| [tags](variables.tf#L515) | Instance network tags for firewall rule targets. | <code>list(string)</code> | | <code>[]</code> |
|
|
|
|
|
|
|
|
|
|
## Outputs
|
|
|
|
|
|
|
|
|
|
|
Wiktor Niesiobędzki