lingble/archived-talos
1
0
Fork 0
mirror of https://github.com/lingble/talos.git synced 2026-03-20 04:03:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,404 Commits 31 Branches 464 Tags
e8758dcbad6d3188dfccd235dbab04c19dd1a6ed
Commit Graph

894 Commits

Author SHA1 Message Date
Andrey Smirnov
e8758dcbad chore: support http downloads for assets in talosctl cluster create 
This allows to pass direct URLs to Image Factory assets for disk
image/ISO/vmlinuz/initramfs, so that we can test Image Factory with
Talos.

Also add an integration test for Image Factory.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-25 18:58:25 +04:00
Andrey Smirnov
e6e422b92a chore: bump dependencies 
Go modules, tools, etc.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-21 19:01:16 +04:00
Andrey Smirnov
3ba84701d9 feat: pull in kernel modules for mlx Infiniband and VFIO 
See:

* https://github.com/siderolabs/pkgs/pull/854
* https://github.com/siderolabs/pkgs/pull/855

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-19 13:55:42 +04:00
Andrey Smirnov
9a185a30f7 feat: update Kubernetes to v1.29.0 
See https://github.com/kubernetes/kubernetes/releases/v1.29.0

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-13 22:59:17 +04:00
Andrey Smirnov
5934815d2f chore: split more kernel modules on amd64 
See https://github.com/siderolabs/pkgs/pull/844

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-13 21:26:32 +04:00
Noel Georgi
0c86ca1cc6 chore: enable kubespan+firewall for cilium tests 
Enable kubespan and default block firewall with cilium tests.

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-12-12 22:50:47 +05:30
Andrey Smirnov
4f9d3b975f feat: update Kubernetes to v1.29.0-rc.2 
See https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.29.md

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-08 19:41:28 +04:00
Andrey Smirnov
46121c9fec docs: rework machine config documentation generation 
Generate a structured table of contents following the structure of the
config.

Make high-level examples follow the full structure of the config.

Document new multi-doc machine config.

Fixes #8023

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-08 14:16:40 +04:00
Andrey Smirnov
320064c5a8 feat: update Go 1.21.5, Linux 6.1.65, etcd 3.5.11 
For main version, cut the release notes to start the 1.7 process.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-07 16:52:28 +04:00
Andrey Smirnov
270604bead fix: support user disks via symlinks 
The core blockdevice library already supported resolving symlinks, we
just need to get the raw block device name from it, and use it
afterwards.

In QEMU provisioner, leave the first (system) disk as virtio (for
performance), and mount user disks as 'ata', which allows `udevd` to
pick up the disk IDs (not available for `virtio`), and use the symlink
path in the tests.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-05 22:02:56 +04:00
Andrey Smirnov
4f195dd271 chore: fix the release.toml 
It was using `note` instead of `notes`, so some entries got dropped.

I blame CodePilot for that ;)

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-04 20:23:03 +04:00
Andrey Smirnov
6b5bc8b85b feat: update Linux to 6.1.64 
Bump pkgs/extras to the final 1.6.0 versions.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-01 16:59:54 +04:00
Andrey Smirnov
e71e3e4161 feat: support extra arguments for flanneld 
Fixes #7754

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-12-01 16:18:02 +04:00
Andrey Smirnov
36c8ddb5e1 feat: implement ingress firewall rules 
Fixes #4421

See documentation for details on how to use the feature.

With `talosctl cluster create`, firewall can be easily test with
`--with-firewall=accept|block` (default mode).

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-30 22:58:16 +04:00
Dmitriy Matrenichev
0b111ecb81 fix: support slices of enums and fix NfTablesConntrackStateMatch 
We already have the code which supports custom enums, so let's extend it to support custom enums in slices and
fix the NfTablesConntrackStateMatch proto definition.

Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>
 2023-11-30 00:23:16 +03:00
Andrey Smirnov
db4e2539d4 feat: update Kubernetes 1.29.0-rc.1 and other bumps 
Bump Go modules, final tools and semi-final pkgs.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-29 18:29:52 +04:00
Noel Georgi
7a4a92854f feat: support sanitized kernel args 
Support dropping kernel args that start with `-`.

Fixes: #7613

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-11-28 16:23:05 +05:30
Andrey Smirnov
e46e6a312f feat: implement nftables backend 
Implement initial set of backend controllers/resources to handle
nftables chains/rules etc.

Replace the KubeSpan nftables operations with controller-based.

See #4421

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-27 21:14:15 +04:00
Andrey Smirnov
514e514ba6 feat: update Linux 6.1.63, containerd 1.7.9 
Also various small bumps.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-21 18:01:36 +04:00
Andrey Smirnov
27d208c26b feat: implement OAuth2 device flow for machine config 
Fixes #7939

See documentation in the PR for the description of the feature.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-20 14:31:43 +04:00
Noel Georgi
0d3c3ed716 feat: support kube scheduler config 
Support kube-scheduler config.

Fixes: #7905
Partially fixes: #7911

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-11-15 10:15:23 +05:30
Noel Georgi
4f1ad16c76 feat: support kubelet credentialprovider config 
Support configuring kubelet credential provider config.

Partially fixes: #7911

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-11-13 19:40:43 +05:30
Andrey Smirnov
e22ab440d7 feat: update Linux 6.1.61, containerd 1.7.8, runc 1.1.10 
Bump tools/pkgs/extras.

Update Go dependencies.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-09 20:17:28 +04:00
Andrey Smirnov
dff60069c0 feat: update Kubernetes to 1.29.0-alpha.3 
See https://github.com/kubernetes/kubernetes/releases/v1.29.0-alpha.3

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-03 14:22:40 +04:00
Andrey Smirnov
c97db5dfe1 chore: bump Go dependencies 
Update Go modules.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-11-03 12:55:23 +04:00
Andrey Smirnov
ef5056122b feat: update etcd to 3.5.10 
See https://github.com/etcd-io/etcd/releases/tag/v3.5.10

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-10-27 15:04:10 +04:00
Nico Berlee
a009f5c60c fix: accept sysctl paths with dots 
Fixes #7878

Signed-off-by: Nico Berlee <nico.berlee@on2it.net>
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-10-20 21:16:15 +04:00
Andrey Smirnov
9dfae8467d chore: update dependencies 
Containerd 1.7.7, Linux 6.1.58.

Fixes #7859

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-10-17 17:41:38 +04:00
Andrey Smirnov
c1ee24465a feat: update Kubernetes to v1.29.0-alpha.2 
See https://github.com/kubernetes/kubernetes/releases/tag/v1.29.0-alpha.2

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-10-12 18:31:06 +04:00
Andrey Smirnov
d1b27926c2 feat: update Go to 1.21.3 
Update related dependencies.

See [CVE-2023-44487](https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/).

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-10-11 15:10:02 +04:00
Jacob McSwain
5fc60d2caa feat: add Solarflare SFC9000 support 
These cards are still relevant today at 10gbps and are cheaply available
for homelab use.

Signed-off-by: Jacob McSwain <jacob.a.mcswain@gmail.com>
Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-10-03 01:27:03 +05:30
Andrey Smirnov
e71508ec10 chore: update dependencies 
Go modules, Cilium CLI, Helm, etc.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-28 19:48:02 +04:00
Andrey Smirnov
2b548ad0d9 feat: update containerd to 1.7.x 
Also update Linux and other pkgs.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-28 16:33:57 +04:00
Andrey Smirnov
52caf07633 feat: update Kubernetes to 1.29.0-alpha.1 
See https://github.com/kubernetes/kubernetes/releases/tag/v1.29.0-alpha.1

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-26 17:30:52 +04:00
Andrey Smirnov
390137447f feat: enable KubePrism by default 
Fixes #7787

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-25 23:12:33 +04:00
Noel Georgi
29b201d619 feat: enable common h/w sensors 
Enable common h/w sensor modules.

Ref: https://github.com/siderolabs/pkgs/pull/815

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-22 00:15:53 +05:30
Noel Georgi
9c2ba7c6fa chore: add tests for chelsio drivers 
Add tests for Chelsio drivers and firmware.

Ref: https://github.com/siderolabs/extensions/pull/232

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-20 20:07:25 +05:30
Noel Georgi
5efcccb6b1 chore: bump kernel to 6.1.54 
Bump kernel to 6.1.54.

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-20 16:06:41 +05:30
guoguangwu
4874cfb95a chore: fix typo 
Contributor.

Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-19 17:24:44 +04:00
Andrey Smirnov
f3a370acb2 feat: update Flannel to 0.22.3 
See https://github.com/flannel-io/flannel/releases/tag/v0.22.3

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-18 23:05:18 +04:00
Andrey Smirnov
efdee69658 feat: update Kubernetes to 1.28.2 
See https://github.com/kubernetes/kubernetes/releases/tag/v1.28.2

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-18 22:32:32 +04:00
Noel Georgi
3ef670a9e8 chore: pull in dm modules 
Pull in dm-modules.

Ref: https://github.com/siderolabs/pkgs/pull/791

Diff:

```bash
❯ diff -r --color _out/kernel-a/lib/modules/6.1.51-talos/modules.dep _out/kernel-b/lib/modules/6.1.51-talos/modules.dep
100a101
> kernel/drivers/md/dm-bio-prison.ko:
102a104
> kernel/drivers/md/persistent-data/dm-persistent-data.ko:
103a106
> kernel/drivers/md/dm-thin-pool.ko: kernel/drivers/md/persistent-data/dm-persistent-data.ko kernel/drivers/md/dm-bio-prison.ko
```

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-15 15:16:02 +02:00
Andrey Smirnov
735bf9ed08 feat: bring in Google vNIC driver 
See https://github.com/siderolabs/pkgs/pull/802

The module is included by default, but loaded on demand.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-12 16:26:45 +04:00
Nebula
e44875106e docs: update deploying-cilium.md 
Update cilium docs. `kubeProxyReplacement=strict` is deprecated. From Cilium Helm Chart values

```text
Valid options are "true", "false", "disabled" (deprecated), "partial" (deprecated), "strict" (deprecated).
ref: https://docs.cilium.io/en/stable/network/kubernetes/kubeproxy-free/
kubeProxyReplacement: "false"
```

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-11 21:07:39 +02:00
Andrey Smirnov
da73b563dd chore: update Go to 1.21.1 
See https://go.dev/doc/devel/release#go1.21.minor

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-07 14:31:40 +04:00
Noel Georgi
b485108740 chore: e2e-aws cleanup 
Drop all hacky bash, depend on the `cluster_health` from TF code.

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-05 23:31:55 +05:30
Noel Georgi
3fbed806c4 chore: add tests for util-linux extensions 
Add tests for utils-linux extensions.

Ref: https://github.com/siderolabs/extensions/pull/216

Signed-off-by: Noel Georgi <git@frezbo.dev>
 2023-09-05 19:29:50 +05:30
Andrey Smirnov
9c2f765c86 fix: allow network device selector to match multiple links 
Fixes #7673

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-04 20:37:04 +04:00
Andrey Smirnov
f7473e4778 feat: update default Kubernetes to 1.28.1 
See https://github.com/kubernetes/kubernetes/releases/tag/v1.28.1

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-04 16:07:03 +04:00
Andrey Smirnov
d693604a1d chore: fix default image list in the release notes 
The `talosctl images` command was renamed.

Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
 2023-09-04 15:44:04 +04:00