talos

mirror of https://github.com/siderolabs/talos.git synced 2026-04-13 01:31:41 +02:00

Author	SHA1	Message	Date
Andrey Smirnov	ceec42f2a5	feat: update Linux to 6.18.19, CNI to 1.9.1 Also clean up some imports in go.mod, reduce replaced modules. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com> (cherry picked from commit 9c34591144f1e2fc759fdc6d56694541eb9f241a)	2026-03-26 16:01:35 +04:00
Andrey Smirnov	76931f4092	feat: enforce PID check on connections to services over file sockets Whitelist services which can access the file socket, refuse other connections. Fixes #12701 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com> (cherry picked from commit 038cb87354eea1c1ff4612bdd13d1e77e595955a)	2026-03-26 15:58:41 +04:00
Andrey Smirnov	08ba425e6c	feat: update Kubernetes to 1.36.0-beta.0 Update to the latest available release. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com> (cherry picked from commit b1a02f3681c7e361ee6a3ef3d230b47480b48408)	2026-03-26 15:58:02 +04:00
Mateusz Urbanek	f36f6ef54d	chore: update pkgs and tools Update dependencies: ``` pkgs: v1.13.0-beta.0 tools: v1.13.0-beta.0 ``` Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-03-17 14:32:17 +01:00
Andrey Smirnov	d2661d2531	fix: apparmor parser config files Bring in apparmor fix from https://github.com/siderolabs/pkgs/pull/1489 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-16 17:38:11 +04:00
Noel Georgi	e7e21fe8ee	feat: bump dependencies Bump dependencies. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-03-15 20:53:59 +05:30
Zadkiel AHARONIAN	a0b9d6e777	feat: bump kernel with uhci_hcd driver See https://github.com/siderolabs/pkgs/pull/1483 Signed-off-by: Zadkiel AHARONIAN <hello@zadkiel.fr> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-12 17:19:37 +04:00
Andrey Smirnov	1f0d2da396	feat: update containerd to 2.2.2 Pull in via pkgs, bump containerd module (our fork). Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-11 21:54:01 +04:00
Andrey Smirnov	fc9749b9eb	feat: pull in kernel with preemptible kernel Also sync tools, now the kernel is built with LLVM 22.1. See https://github.com/siderolabs/pkgs/issues/1479 for the context. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-11 12:12:23 +04:00
Andrey Smirnov	451b13c1b8	feat: update Linux to 6.18.16 Also test new extension versions. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-09 21:06:22 +04:00
Andrey Smirnov	e6d8669fb7	feat: update Go to 1.26.1 Update via pkgs/tools. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-06 23:00:10 +04:00
Laura Brehm	7f2eb48561	feat: add image verification endpoint Add support for whole machine-wide image verification configuration. Configuration is a set of rules applied top-down to the image reference, each specifying a specific cosign-based identity or static public key claim. Talos provides a machined API to verify an image reference, resolving it to the digest on the way as needed. Talos itself hooks up in the image verification process, while containerd CRI plugin accesses same API via the machined socket. Signed-off-by: Laura Brehm <laurabrehm@hey.com> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-06 20:06:07 +04:00
Andrey Smirnov	58e006461d	feat: update Kubernetes to 1.36.0-alpha.2 See https://github.com/kubernetes/kubernetes/releases/tag/v1.36.0-alpha.2 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-02 20:07:37 +04:00
Andrey Smirnov	ebcfafd4e2	feat: update Linux to 6.18.15 Latest LTS. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-03-02 18:36:10 +04:00
Andrey Smirnov	bf2cd0a850	feat: update Linux to 6.18.14 See if it works. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-27 21:58:31 +04:00
Mateusz Urbanek	cc636f1dd1	fix: image cache test fails with 'no space left on device' Talos failed booting with 'no space left on device'. Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-26 19:07:25 +01:00
Mateusz Urbanek	009f0d6ca0	chore: update pkgs Update pkgs to v1.13.0-alpha.0-61-g3c982f8 Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-25 08:24:09 +01:00
Andrey Smirnov	ae29a0dcce	feat: update Linux to 6.18.13 Also pulls in Cilium eBPF verifieer fixes. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-24 11:52:31 +04:00
Noel Georgi	0a7b6eb2c9	chore: test extensions Test extensions Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-23 19:02:22 +05:30
Dmitrii Sharshakov	9758bd4fe0	feat: update Go to 1.26 Via tools/pkgs, also pulling in Clang-built Linux Update go.mod dependencies Fix linter errors with new golangci-lint, modernize, use new() Signed-off-by: Dmitrii Sharshakov <dmitry.sharshakov@siderolabs.com> Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-19 22:15:19 +01:00
Andrey Smirnov	e00aed0f66	feat: update Kubernetes v1.36.0-alpha.1 Not updating Go modules yet, as there's a dependency conflict via fluxcd/pkg/ssa right now due to removed autoscaling API in k8s.io/api. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-19 21:18:43 +04:00
Andrey Smirnov	4d531884e9	chore: update dependencies Update Go modules, various test dependencies. Brings in: * CoreDNS 1.14.1 * Flannel 0.28.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-10 21:17:23 +04:00
Andrey Smirnov	52e8727d01	feat: add IPv6 GRE support Pulls in https://github.com/siderolabs/pkgs/pull/1458 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-02-09 14:41:39 +04:00
Mateusz Urbanek	8b85c7c637	chore: update deps Updated the following dependencies: tools v1.13.0-alpha.0-13-gdecb988 pkgs v1.13.0-alpha.0-46-g605ac0d Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>	2026-02-06 08:47:27 +01:00
Noel Georgi	900516e689	chore: update image signer Update image signer. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-03 13:38:51 +05:30
Noel Georgi	938de566ec	feat: bump kernel Bump kernel to 6.18.8 Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-02-03 05:20:58 +05:30
Andrey Smirnov	2165280d0e	refactor: change the way one2many proxying is picked Instead of defaulting to one2many, list explicitly one2many supported APIs. The idea is that any new API will only be "normal" gRPC API, so we can flip the switch, and consider one2many APIs as "legacy". Extracted from #12392 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-29 16:45:02 +04:00
Andrey Smirnov	b9e27ebe72	feat: update Linux kernel with dm-integrity Update pkgs with Linux 6.18.6 and dm-integrity module added. Drops some crc kmods, as they are now compiled in. See https://github.com/siderolabs/pkgs/pull/1447 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-26 13:50:12 +04:00
Andrey Smirnov	a4f1c5239e	feat: update GRUB to 2.14 It looks like xfs with modern 6.18 settings is supported with GRUB 2.14 now. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-22 22:35:18 +04:00
Andrey Smirnov	150c41c30e	feat: update Linux to 6.18.5 Also test new NVIDIA drivers. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-16 18:27:46 +04:00
Andrey Smirnov	e36863470b	feat: add it87 hwmon module See https://github.com/siderolabs/pkgs/pull/1437 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2026-01-12 21:26:40 +04:00
Noel Georgi	27253d7317	feat: use new xfs config file Use new xfs config file version. Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-01-09 18:06:46 +05:30
Noel Georgi	70e67787d6	feat: imager: populate filesystems with root owned files Populate filesystems from source directories with root owned files. This completes running imager fully rootless. Fixes: #12498 Signed-off-by: Noel Georgi <git@frezbo.dev>	2026-01-05 21:13:42 +05:30
Andrey Smirnov	43937c1cd4	feat: update Linux and systemd Bump Linux to 6.18.2 and systemd to 259. Also cryptsetup 2.8.3. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-24 20:52:21 +04:00
Noel Georgi	8f2b337994	feat: imager support rootless builds Also changes the bootloader interface. Disks are formatted/created with pre-populated source directories in Install/Image mode. Signed-off-by: Noel Georgi <git@frezbo.dev>	2025-12-24 11:02:37 +05:30
Andrey Smirnov	b5dd560320	test: upgrade versions in upgrade tests Preparing for v1.13.0. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-23 14:16:36 +04:00
Andrey Smirnov	786c8e2ee7	feat: ship pigz/igzip in rootfs to speed up image decompression Fixes https://github.com/siderolabs/extensions/discussions/931 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-23 12:43:11 +04:00
Andrey Smirnov	48d242918b	feat: update containerd to 2.2.1 Use the latest release. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-22 13:58:25 +04:00
Andrey Smirnov	39117d4576	feat: update dependencies Bump Go modules, Helm charts, other versions. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-18 22:59:51 +04:00
Andrey Smirnov	8d6a7a8677	feat: update Kubernetes to 1.35.0 Update to the final version for v1.12.0. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-18 16:18:40 +04:00
Andrey Smirnov	a4879a5fa2	feat: update Linux to 6.18.1 Use the latest LTS. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-17 12:28:37 +04:00
Andrey Smirnov	6d17c18bf9	feat: enable Powercap and Intel RAPL Fixes siderolabs/pkgs#1405 See https://github.com/siderolabs/pkgs/pull/1409 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-16 19:00:27 +04:00
Andrey Smirnov	f871ab241c	fix: provide json support in `nft` binary Fixes https://github.com/siderolabs/talos/issues/12413 See https://github.com/siderolabs/pkgs/pull/1407 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-15 19:42:01 +04:00
Andrey Smirnov	39feb16d2e	fix: update containerd 2.2.0 with cgroups patch Resolve cgroups issue with Linux 6.18. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-12 20:51:29 +04:00
Andrey Smirnov	585abe9443	feat: update Kubernetes to v1.35.0-rc.1 See https://github.com/kubernetes/kubernetes/releases/tag/v1.35.0-rc.1 Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-10 18:37:07 +04:00
Andrey Smirnov	d347ca1af1	fix: update CNI plugins to 1.9.0 See https://github.com/containernetworking/plugins/releases/tag/v1.9.0 This fixes CVE https://github.com/containernetworking/plugins/security/advisories/GHSA-jv3w-x3r3-g6rm Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-10 14:31:04 +04:00
Andrey Smirnov	0f9f4c05ff	feat: update Kubernetes to 1.35.0-rc.0 Latest 1.35.0 release. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-04 14:35:13 +04:00
Andrey Smirnov	dd6c1089c8	feat: update Linux to 6.18.0 Using the next LTS Linux for Talos 1.12. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-03 20:10:33 +04:00
Andrey Smirnov	18f8ac369b	feat: update Kubernetes to 1.35.0-beta.0 Use the latest 1.35.0 version. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-01 17:23:49 +04:00
Andrey Smirnov	92fa7c5e43	chore: update pkgs for NVIDIA 580.105.08 Main goal is to test new NVIDIA drivers. Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>	2025-12-01 12:31:01 +04:00

1 2 3 4 5 ...

1002 Commits