feat: publish boot_disk_config to support CHD with KMS (googleapis#11622)

Co-authored-by: Owl Bot <gcf-owl-bot[bot]@users.noreply.github.com>

Author: gcf-owl-bot[bot]

packages/google-cloud-tpu/google/cloud/tpu_v2alpha1/__init__.py

@@ -24,8 +24,10 @@
     AcceleratorType,
     AccessConfig,
     AttachedDisk,
+    BootDiskConfig,
     CreateNodeRequest,
     CreateQueuedResourceRequest,
+    CustomerEncryptionKey,
     DeleteNodeRequest,
     DeleteQueuedResourceRequest,
     GenerateServiceIdentityRequest,
@@ -72,8 +74,10 @@
     "AcceleratorType",
     "AccessConfig",
     "AttachedDisk",
+    "BootDiskConfig",
     "CreateNodeRequest",
     "CreateQueuedResourceRequest",
+    "CustomerEncryptionKey",
     "DeleteNodeRequest",
     "DeleteQueuedResourceRequest",
     "GenerateServiceIdentityRequest",

packages/google-cloud-tpu/google/cloud/tpu_v2alpha1/types/__init__.py

@@ -18,8 +18,10 @@
     AcceleratorType,
     AccessConfig,
     AttachedDisk,
+    BootDiskConfig,
     CreateNodeRequest,
     CreateQueuedResourceRequest,
+    CustomerEncryptionKey,
     DeleteNodeRequest,
     DeleteQueuedResourceRequest,
     GenerateServiceIdentityRequest,
@@ -65,8 +67,10 @@
     "AcceleratorType",
     "AccessConfig",
     "AttachedDisk",
+    "BootDiskConfig",
     "CreateNodeRequest",
     "CreateQueuedResourceRequest",
+    "CustomerEncryptionKey",
     "DeleteNodeRequest",
     "DeleteQueuedResourceRequest",
     "GenerateServiceIdentityRequest",

packages/google-cloud-tpu/google/cloud/tpu_v2alpha1/types/cloud_tpu.py

@@ -71,6 +71,8 @@
         "SimulateMaintenanceEventRequest",
         "AcceleratorConfig",
         "ShieldedInstanceConfig",
+        "BootDiskConfig",
+        "CustomerEncryptionKey",
     },
 )
 
@@ -400,6 +402,8 @@ class Node(proto.Message):
         multislice_node (bool):
             Output only. Whether the Node belongs to a
             Multislice group.
+        boot_disk_config (google.cloud.tpu_v2alpha1.types.BootDiskConfig):
+            Optional. Boot disk configuration.
     """
 
     class State(proto.Enum):
@@ -611,6 +615,11 @@ class ApiVersion(proto.Enum):
         proto.BOOL,
         number=47,
     )
+    boot_disk_config: "BootDiskConfig" = proto.Field(
+        proto.MESSAGE,
+        number=49,
+        message="BootDiskConfig",
+    )
 
 
 class QueuedResource(proto.Message):
@@ -1953,4 +1962,66 @@ class ShieldedInstanceConfig(proto.Message):
     )
 
 
+class BootDiskConfig(proto.Message):
+    r"""Boot disk configurations.
+
+    Attributes:
+        customer_encryption_key (google.cloud.tpu_v2alpha1.types.CustomerEncryptionKey):
+            Optional. Customer encryption key for boot
+            disk.
+        enable_confidential_compute (bool):
+            Optional. Whether the boot disk will be
+            created with confidential compute mode.
+    """
+
+    customer_encryption_key: "CustomerEncryptionKey" = proto.Field(
+        proto.MESSAGE,
+        number=1,
+        message="CustomerEncryptionKey",
+    )
+    enable_confidential_compute: bool = proto.Field(
+        proto.BOOL,
+        number=2,
+    )
+
+
+class CustomerEncryptionKey(proto.Message):
+    r"""Customer's encryption key.
+
+    .. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields
+
+    Attributes:
+        kms_key_name (str):
+            The name of the encryption key that is stored in Google
+            Cloud KMS. For example:
+
+            .. raw:: html
+
+                <pre class="lang-html">"kmsKeyName": "projects/
+                <var class="apiparam">kms_project_id</var>/locations/
+                <var class="apiparam">region</var>/keyRings/<var class="apiparam">
+                key_region</var>/cryptoKeys/<var class="apiparam">key</var>
+                </pre>
+
+            The fully-qualifed key name may be returned for resource GET
+            requests. For example:
+
+            .. raw:: html
+
+                <pre class="lang-html">"kmsKeyName": "projects/
+                <var class="apiparam">kms_project_id</var>/locations/
+                <var class="apiparam">region</var>/keyRings/<var class="apiparam">
+                key_region</var>/cryptoKeys/<var class="apiparam">key</var>
+                /cryptoKeyVersions/1</pre>
+
+            This field is a member of `oneof`_ ``key``.
+    """
+
+    kms_key_name: str = proto.Field(
+        proto.STRING,
+        number=7,
+        oneof="key",
+    )
+
+
 __all__ = tuple(sorted(__protobuf__.manifest))