talos

mirror of https://github.com/siderolabs/talos.git synced 2026-05-05 04:16:21 +02:00

Author	SHA1	Message	Date
Andrey Smirnov	631a1bc5e1	fix: bring in hardened kernel Brings in the following changes to the kernel via pkgs: * https://github.com/siderolabs/pkgs/pull/1526 * https://github.com/siderolabs/pkgs/pull/1527 * https://github.com/siderolabs/pkgs/pull/1528 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-05-04 13:14:08 +04:00
Andrey Smirnov	32539d4ac4	fix: deadlock in the makefs ext4 with populated source Close the pipe on error/abort. Fixes #13256 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-05-01 19:48:56 +04:00
Mateusz Urbanek	462015bcd9	release(v1.14.0-alpha.0): prepare release This is the official v1.14.0-alpha.0 release. Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-04-29 14:24:29 +02:00
Noel Georgi	08c81d8380	feat: bump kernel to 6.18.25 Bump kernel to 6.18.25. This should pass all grype scans. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-04-28 17:38:05 +05:30
Mateusz Urbanek	96a8ecd1ee	feat: default to factory installer image Defaults to installer image from factory.talos.dev. Default images now use schematic hash naming (metal-installer/<hash>) instead of registry-based naming. Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-04-27 15:46:13 +02:00
Andrey Smirnov	ecf2fa855b	feat: update Kubernetes to v1.36.0 The final Kubernetes version for Talos v1.13.0. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-23 13:42:59 +04:00
Andrey Smirnov	1f315e6e90	feat: update Linux to 6.18.23 Sync tools/pkgs. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-22 17:32:30 +04:00
Noel Georgi	6830a8b97d	fix(ci): matrix jobs cleanups * Have proper matrix job names * Run all aws-nvidia tests in parallel * Make misc-0 a matrix in flattened jobs too, so we can re-trigger just the failed one Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-04-22 12:56:01 +05:30
Andrey Smirnov	c684ec60ea	chore: prepare for Talos 1.14 release Add compatibility, bump versions in upgrade & Image Factory tests. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-20 19:33:01 +04:00
Andrey Smirnov	015081c768	feat: update dependencies Sync pkgs/tools, update Go dependencies. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-16 23:10:04 +04:00
Andrey Smirnov	f3817d1d1c	chore: update sign images to support image name suffix Now sign-images target correctly handles image name suffix. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-16 16:08:25 +04:00
Andrey Smirnov	e776721f33	feat: update Kubernetes 1.36.0-rc.1 See: * https://github.com/kubernetes/kubernetes/releases/tag/v1.36.0-rc.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-15 18:30:01 +04:00
Andrey Smirnov	b7512d9125	feat: update Kubernetes to 1.36.0-rc.0 Getting ready for 1.36.0 final release. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-14 15:12:20 +04:00
Andrey Smirnov	4ba11156fd	refactor: allow overriding out image name suffix Also fix one more place when version.Name wasn't used properly. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-14 14:43:59 +04:00
Noel Georgi	9fcb9e05b6	feat: bump go to 1.26.2 Bump Go to 1.26.2 Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-04-09 22:20:02 +05:30
Andrey Smirnov	968ec1e0ca	refactor: propagate NAME properly, allow to set on build Allow to set build NAME on build, propagate it down to more consumers. Expose name in `Version` resource, and use that in the dashboard next to Talos version. Fix some places where `Name` was hardcoded. Propagate Name down to UKI build. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-04-08 17:57:43 +04:00
Noel Georgi	919d8c3655	chore: drop debug shell Now that talos has native `talosctl debug` `WITH_DEBUG_SHELL` seems not needed. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-03-30 11:06:29 +02:00
Andrey Smirnov	b3dfbf743e	feat: bump musl to 1.2.6 Bump via tools/extensions. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-26 13:19:27 +04:00
Andrey Smirnov	f2bc2dcc6e	feat: update NVIDIA production drivers to 595.58.03 Via pkgs/extensions. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-26 10:31:54 +04:00
Andrey Smirnov	9c34591144	feat: update Linux to 6.18.19, CNI to 1.9.1 Also clean up some imports in go.mod, reduce replaced modules. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-24 17:42:20 +04:00
Andrey Smirnov	038cb87354	feat: enforce PID check on connections to services over file sockets Whitelist services which can access the file socket, refuse other connections. Fixes #12701 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-24 14:44:55 +04:00
Andrey Smirnov	b1a02f3681	feat: update Kubernetes to 1.36.0-beta.0 Update to the latest available release. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-23 13:27:22 +04:00
Mateusz Urbanek	f36f6ef54d	chore: update pkgs and tools Update dependencies: ``` pkgs: v1.13.0-beta.0 tools: v1.13.0-beta.0 ``` Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-03-17 14:32:17 +01:00
Andrey Smirnov	d2661d2531	fix: apparmor parser config files Bring in apparmor fix from https://github.com/siderolabs/pkgs/pull/1489 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-16 17:38:11 +04:00
Noel Georgi	e7e21fe8ee	feat: bump dependencies Bump dependencies. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-03-15 20:53:59 +05:30
Zadkiel AHARONIAN	a0b9d6e777	feat: bump kernel with uhci_hcd driver See https://github.com/siderolabs/pkgs/pull/1483 Signed-off-by: Zadkiel AHARONIAN <hello@zadkiel.fr> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-12 17:19:37 +04:00
Andrey Smirnov	1f0d2da396	feat: update containerd to 2.2.2 Pull in via pkgs, bump containerd module (our fork). Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-11 21:54:01 +04:00
Andrey Smirnov	fc9749b9eb	feat: pull in kernel with preemptible kernel Also sync tools, now the kernel is built with LLVM 22.1. See https://github.com/siderolabs/pkgs/issues/1479 for the context. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-11 12:12:23 +04:00
Andrey Smirnov	451b13c1b8	feat: update Linux to 6.18.16 Also test new extension versions. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-09 21:06:22 +04:00
Andrey Smirnov	e6d8669fb7	feat: update Go to 1.26.1 Update via pkgs/tools. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-06 23:00:10 +04:00
Laura Brehm	7f2eb48561	feat: add image verification endpoint Add support for whole machine-wide image verification configuration. Configuration is a set of rules applied top-down to the image reference, each specifying a specific cosign-based identity or static public key claim. Talos provides a machined API to verify an image reference, resolving it to the digest on the way as needed. Talos itself hooks up in the image verification process, while containerd CRI plugin accesses same API via the machined socket. Signed-off-by: Laura Brehm <laurabrehm@hey.com> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-06 20:06:07 +04:00
Andrey Smirnov	58e006461d	feat: update Kubernetes to 1.36.0-alpha.2 See https://github.com/kubernetes/kubernetes/releases/tag/v1.36.0-alpha.2 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-02 20:07:37 +04:00
Andrey Smirnov	ebcfafd4e2	feat: update Linux to 6.18.15 Latest LTS. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-02 18:36:10 +04:00
Andrey Smirnov	bf2cd0a850	feat: update Linux to 6.18.14 See if it works. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-27 21:58:31 +04:00
Mateusz Urbanek	cc636f1dd1	fix: image cache test fails with 'no space left on device' Talos failed booting with 'no space left on device'. Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-26 19:07:25 +01:00
Mateusz Urbanek	009f0d6ca0	chore: update pkgs Update pkgs to v1.13.0-alpha.0-61-g3c982f8 Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-25 08:24:09 +01:00
Andrey Smirnov	ae29a0dcce	feat: update Linux to 6.18.13 Also pulls in Cilium eBPF verifieer fixes. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-24 11:52:31 +04:00
Noel Georgi	0a7b6eb2c9	chore: test extensions Test extensions Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-23 19:02:22 +05:30
Dmitrii Sharshakov	9758bd4fe0	feat: update Go to 1.26 Via tools/pkgs, also pulling in Clang-built Linux Update go.mod dependencies Fix linter errors with new golangci-lint, modernize, use new() Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-19 22:15:19 +01:00
Andrey Smirnov	e00aed0f66	feat: update Kubernetes v1.36.0-alpha.1 Not updating Go modules yet, as there's a dependency conflict via fluxcd/pkg/ssa right now due to removed autoscaling API in k8s.io/api. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-19 21:18:43 +04:00
Andrey Smirnov	4d531884e9	chore: update dependencies Update Go modules, various test dependencies. Brings in: * CoreDNS 1.14.1 * Flannel 0.28.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-10 21:17:23 +04:00
Andrey Smirnov	52e8727d01	feat: add IPv6 GRE support Pulls in https://github.com/siderolabs/pkgs/pull/1458 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-09 14:41:39 +04:00
Mateusz Urbanek	8b85c7c637	chore: update deps Updated the following dependencies: tools v1.13.0-alpha.0-13-gdecb988 pkgs v1.13.0-alpha.0-46-g605ac0d Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-06 08:47:27 +01:00
Noel Georgi	900516e689	chore: update image signer Update image signer. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-03 13:38:51 +05:30
Noel Georgi	938de566ec	feat: bump kernel Bump kernel to 6.18.8 Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-03 05:20:58 +05:30
Andrey Smirnov	2165280d0e	refactor: change the way one2many proxying is picked Instead of defaulting to one2many, list explicitly one2many supported APIs. The idea is that any new API will only be "normal" gRPC API, so we can flip the switch, and consider one2many APIs as "legacy". Extracted from #12392 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-29 16:45:02 +04:00
Andrey Smirnov	b9e27ebe72	feat: update Linux kernel with dm-integrity Update pkgs with Linux 6.18.6 and dm-integrity module added. Drops some crc kmods, as they are now compiled in. See https://github.com/siderolabs/pkgs/pull/1447 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-26 13:50:12 +04:00
Andrey Smirnov	a4f1c5239e	feat: update GRUB to 2.14 It looks like xfs with modern 6.18 settings is supported with GRUB 2.14 now. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-22 22:35:18 +04:00
Andrey Smirnov	150c41c30e	feat: update Linux to 6.18.5 Also test new NVIDIA drivers. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-16 18:27:46 +04:00
Andrey Smirnov	e36863470b	feat: add it87 hwmon module See https://github.com/siderolabs/pkgs/pull/1437 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-12 21:26:40 +04:00

1 2 3 4 5 ...

1021 Commits