talos

mirror of https://github.com/siderolabs/talos.git synced 2025-11-25 04:31:16 +01:00

Author	SHA1	Message	Date
Andrey Smirnov	da2985fe1b	fix: respect local API server port It wasn't used when building an endpoint to the local API server, so Talos couldn't talk to the local API server when port was changed from the default one. Fixes #5706 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-06-09 00:33:49 +04:00
Tim Jones	0c91c89f4f	chore: revert day-two tests for csi tests This reverts commit d1294d014f5bee7fc1b5dfd6865f22b22f18f5f1. Signed-off-by: Tim Jones <tim.jones@siderolabs.com>	2022-06-08 11:04:00 +02:00
Rio Kierkels	f71b583122	feat: disallow anonymous requests by default (kube-apiserver) This is inline with CIS guidelines. Otherwise the kube-apiserver will pass along the request with the group set to `system:unauthenticated`. This will expose anything that is allowed by the `system:public-info-viewer` and `system:discovery` cluster roles. Signed-off-by: Rio Kierkels <riokierkels@gmail.com> Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-06-08 01:01:04 +04:00
Andrey Smirnov	f2997c0f22	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-06-06 23:27:17 +04:00
Andrey Smirnov	f3efec4b56	feat: update containerd 1.6.6, Linux 5.15.45, Flannel 0.18.1 See: * https://github.com/containerd/containerd/releases/tag/v1.6.6 * https://github.com/containerd/containerd/releases/tag/v1.6.5 * https://github.com/flannel-io/flannel/releases/tag/v0.18.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-06-06 22:52:41 +04:00
Noel Georgi	c126f2ee85	chore: bump golang to 1.18.3 Bump Golang to 1.18.3 Ref: - https://github.com/siderolabs/pkgs/pull/498 - https://github.com/siderolabs/extras/pull/51 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-06-03 19:07:17 +05:30
Andrey Smirnov	98bbab12ea	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-31 22:42:52 +04:00
Noel Georgi	48423a9830	chore: bump kernel to 5.15.44 Bump kernel to [5.15.44](https://github.com/siderolabs/pkgs/pull/494) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-31 18:33:18 +05:30
Andrey Smirnov	4ad773f017	feat: update CoreDNS to 1.9.3 See https://github.com/coredns/coredns/releases/tag/v1.9.3 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-27 22:48:46 +04:00
Andrey Smirnov	3ed254976b	feat: update Kubernetes to 1.24.1 See https://github.com/kubernetes/kubernetes/releases/tag/v1.24.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-27 19:33:07 +04:00
Noel Georgi	0dc4ad58e5	chore: bump kernel to 5.15.43 Bump kernel to [5.15.43](https://github.com/siderolabs/pkgs/pull/490) Also pulls in: - [Azure disks udev rules](https://github.com/siderolabs/pkgs/pull/488) - [pkgs stable build time](https://github.com/siderolabs/pkgs/pull/489) - [extras stable build time](https://github.com/siderolabs/extras/pull/49) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-26 18:16:28 +05:30
Andrey Smirnov	a1b6f21a82	chore: bump dependencies dependabot-based, go-mod-outdated is broken due to sum issue with Azure SDK package :( Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-23 21:25:04 +04:00
Noel Georgi	f477eb8820	chore: bump kernel to 5.15.41 Bump kernel to [5.15.41](https://github.com/siderolabs/pkgs/pull/483) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-18 18:55:04 +05:30
Artem Chernyshev	396e1386cf	feat: implement network device selector Fixes: https://github.com/siderolabs/talos/issues/4203 Signed-off-by: Artem Chernyshev <artem.chernyshev@talos-systems.com>	2022-05-18 13:46:52 +03:00
Noel Georgi	5ec4e9096e	chore: bump kernel to 5.15.40 Bump kernel to [5.15.40](https://github.com/siderolabs/pkgs/pull/481) Also bumps u-boot to [v2022.04](https://github.com/siderolabs/pkgs/pull/479) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-16 19:28:09 +05:30
Andrey Smirnov	554edd3e89	chore: bump dependencies dependabot + go-mod-outdated `arp` library is now using Go stdlib `netip.Addr`, so we need an ugly way to convert `netaddr.IP` to `netip.Addr`. We should soon refactor to use `netip.Addr` everywhere (starting with `siderolabs/net` package). Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-16 16:11:54 +03:00
Noel Georgi	166d2585c6	chore: bump kernel and runc Bump kernel to [5.15.39](https://github.com/siderolabs/pkgs/pull/476) Bump runc to [v1.1.2](https://github.com/siderolabs/pkgs/pull/473) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-12 22:32:18 +05:30
Dmitriy Matrenichev	8d9b0cde0a	chore: update deps to go 1.18.2 Update tools, pkgs and extras Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2022-05-12 22:11:18 +08:00
Andrey Smirnov	b52962c440	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-11 20:30:03 +03:00
Noel Georgi	da7b24ba57	chore: bump kernel to 5.15.38 Bump kernel to 5.15.38 LTS Ref: https://github.com/siderolabs/pkgs/pull/468 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-11 01:00:11 +05:30
Noel Georgi	bc88de729c	chore: bump coredns to v1.9.2 Bump CoreDNS to v1.9.2 Ref: - https://github.com/coredns/coredns/releases/tag/v1.9.2 - https://github.com/coredns/coredns/blob/master/notes/coredns-1.9.2.md Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-10 21:45:02 +05:30
Noel Georgi	89cab200b8	chore: bump kubernetes to v1.24.0 Bump kubernetes to v1.24.0 Ref: https://github.com/siderolabs/kubelet/pull/45 Also update coredns [manifests](https://github.com/coredns/deployment/blob/master/kubernetes/coredns.yaml.sed) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-05 00:34:35 +05:30
Noel Georgi	bb932c2970	chore: bump containerd to v1.6.4 Bump containerd to v1.6.4 Ref: https://github.com/siderolabs/pkgs/pull/466 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-04 00:41:30 +05:30
Noel Georgi	4eaaa2d597	chore: bump kernel to 5.15.37 Bump kernel to 5.15.37 Ref: https://github.com/siderolabs/pkgs/pull/463 Also bump [pkgs](https://github.com/siderolabs/pkgs/pull/465) and [tools](https://github.com/siderolabs/tools/pull/193) Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-05-03 21:36:59 +05:30
Andrey Smirnov	bd089e702d	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-05-03 16:30:59 +03:00
Noel Georgi	f06e6acf2f	chore: bump kernel to 5.15.36 Bump kernel to 5.15.36 LTS Ref: - https://github.com/siderolabs/pkgs/pull/458 - https://github.com/siderolabs/pkgs/pull/460 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-28 01:09:54 +05:30
Andrey Smirnov	45464412e0	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-25 16:26:41 +03:00
Artem Chernyshev	2b03057b91	feat: implement a new mode `try` in the config manipulation commands The new mode allows changing the config for a period of time, which allows trying the configuration and automatically rolling it back in case if it doesn't work for example. The mode can only be used with changes that can be applied without a reboot. When changed it doesn't write the configuration to disk, only changes it in memory. `--timeout` parameter can be used to customize the rollback delay. The default timeout is 1 minute. Any consequent configuration change will abort try mode and the last applied configuration will be used. Signed-off-by: Artem Chernyshev <artem.chernyshev@talos-systems.com>	2022-04-21 20:31:45 +03:00
Noel Georgi	1d5c08e74f	chore: bump kernel to 5.15.35 Bump kernel to 5.15.35 LTS Ref: https://github.com/siderolabs/pkgs/pull/454 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-20 20:33:10 +05:30
Andrey Smirnov	9bf23e5162	feat: update Kubernetes to 1.24.0-rc.0 See https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0-rc.0 Go modules are not updated due to missing tags: https://github.com/kubernetes/kubernetes/issues/109565 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-20 16:53:51 +03:00
Andrey Smirnov	39721ee939	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-18 21:20:14 +03:00
Noel Georgi	8ff8fc77f3	chore: enable rpi4 poe hat fan control Enable the Rpi4 PoE hat fan control by pulling in the overlay compatible with the upstream kernel driver. Ref: https://github.com/siderolabs/pkgs/pull/450 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-15 00:17:40 +05:30
Artem Chernyshev	2b9722d1f5	feat: add `dry-run` flag in `apply-config` and `edit` commands Dry run prints out config diff, selected application mode without changing the configuration. Signed-off-by: Artem Chernyshev <artem.chernyshev@talos-systems.com>	2022-04-14 19:12:57 +03:00
Noel Georgi	13f41baddf	chore: bump kernel to 5.15.34 Bump kernel to 5.15.34 Ref: https://github.com/siderolabs/pkgs/pull/448 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-14 12:19:05 +05:30
Noel Georgi	a91eb9358d	chore: bump deps Ref: - https://github.com/siderolabs/tools/pull/185 - https://github.com/siderolabs/pkgs/pull/447 - https://github.com/siderolabs/extras/pull/44 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-13 22:22:11 +05:30
Andrey Smirnov	a4060513c6	feat: build Talos with support for x86-64-v2 microarchitecture See https://github.com/golang/go/wiki/MinimumRequirements#microarchitecture-support This relies on new Go 1.18 feature to use more efficient x86-64 instructions. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-11 21:12:59 +03:00
Noel Georgi	8faebd410b	chore: bump tools and pkgs Bump tools and pkgs to get kernel 5.15.33 5.15.33 has a bunch of fixes for some CVE's, it was too hard to track those and reference Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-11 19:56:42 +05:30
Andrey Smirnov	8499b7e7dc	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-11 16:53:39 +03:00
Dmitriy Matrenichev	a7ba7ea679	feat: migrate to go 1.18 Increase go.mod version from 1.17 to 1.18 in all projects. Update Makefile to use latest tooling. Fix golangci by disable nolintlint for now. Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>	2022-04-11 17:17:54 +04:00
Andrey Smirnov	9dace93b59	feat: enable Pod Security Admission by default As Talos 1.1 supports Kubernetes 1.22-1.24, we can finally enable Pod Security Admission by default: ```yaml apiVersion: apiserver.config.k8s.io/v1 kind: AdmissionConfiguration plugins: - configuration: apiVersion: pod-security.admission.config.k8s.io/v1alpha1 defaults: audit: restricted audit-version: latest enforce: baseline enforce-version: latest warn: restricted warn-version: latest exemptions: namespaces: - kube-system runtimeClasses: [] usernames: [] kind: PodSecurityConfiguration name: PodSecurity path: "" ``` Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-11 15:36:04 +03:00
Noel Georgi	a6eebee36f	chore: update eudev Update eudev Ref: https://github.com/siderolabs/pkgs/pull/443 Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-08 00:05:48 +05:30
Noel Georgi	1e4320b64e	chore: add support for rockpi 4A and 4B Add support for RockPi 4A and 4B Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-04-06 23:35:16 +05:30
Andrey Smirnov	8619f95c5c	chore: bump dependencies dependabot + go-mod-outdated Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-04 17:29:49 +03:00
Andrey Smirnov	19bf12af07	fix: enable IPv6 in Docker-based Talos clusters Docker by default disable IPv6 completely in the containers which breaks SideroLink on Docker-based clusters, as SideroLink is using IPv6 addresses for the Wiregurard tunnel. This change might break `talosctl cluster create` on host systems which have IPv6 disabled completely, so provide a flag to revert this behavior. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-04-01 20:28:12 +03:00
Andrey Smirnov	1ed1f73e51	test: bump CAPI to 1.1.3 This probably fixes the incompatibility with 1.24.0-beta.0. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-03-31 22:50:16 +03:00
Andrey Smirnov	2ee1d2c720	feat: update Kuberentes to 1.24.0-beta.0 See https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0-beta.0 Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-03-31 18:06:56 +03:00
Andrey Smirnov	ca8b9c0a3a	feat: update Kubernetes to 1.24.0-alpha.4 See https://github.com/kubernetes/kubernetes/releases/tag/v1.24.0-alpha.4 Fix some incompatibilities around dropped flags/API versions. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-03-30 22:59:07 +03:00
Andrey Smirnov	4bfe686105	feat: update runc to 1.1.1 Also drop kernel sound/PCMCIA, enable random trust CPU, update for Jetson Nano u-boot. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-03-30 18:17:26 +03:00
Andrey Smirnov	a5d64fc814	feat: update Flannel to 0.17.0 See https://github.com/flannel-io/flannel/releases/tag/v0.17.0 Flannel image was copied without any changes to `ghcr.io` to avoid Docker Hub download limits. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>	2022-03-30 16:42:44 +03:00
Noel Georgi	bd0035f6a2	docs: add NVIDIA docs Add NVIDIA docs Signed-off-by: Noel Georgi <git@frezbo.dev>	2022-03-29 00:21:48 +05:30

1 2 3 4 5 ...

587 Commits