https://talos.autonomy.io/components/ Recent content in Components on Talos Hugo -- gohugo.io en-us Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/kernel/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/kernel/ The kernel included with Talos is configured according to the recommendations outlined in the Kernel Self Protection Project (KSSP). https://talos.autonomy.io/components/init/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/init/ A common theme throughout the design of Talos is minimalism. We believe strongly in the UNIX philosophy that each program should do one job well. The init included in Talos is one example of this. We wanted to create a focused init that had one job - run Kubernetes. There simply is no mechanism in place to do anything else. To accomplish this, we must address real world operations needs like: https://talos.autonomy.io/components/kubeadm/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/kubeadm/ At the heart of Talos is kubeadm, allowing it to harness the power of the official upstream bootstrap tool. By integrating with kubeadm natively, Talos stands to gain a strong community of users and developers already familiar with kubeadm. https://talos.autonomy.io/components/trustd/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/trustd/ Security is one of the highest priorities within Autonomy. To run a Kubernetes cluster a certain level of trust is required to operate a cluster. For example, orchestrating the bootstrap of a highly available control plane requires the distribution of sensitive PKI data. To that end, we created trustd. Based on the concept of a Root of Trust, trustd is a simple daemon responsible for establishing trust within the system. Once trust is established, various methods become available to the trustee. https://talos.autonomy.io/components/proxyd/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/proxyd/ Highly available Kubernetes clusters are crucial for production quality clusters. The proxyd component is a simple yet powerful reverse proxy that adapts to where Talos is employed and provides load balancing across all API servers. https://talos.autonomy.io/components/osd/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/osd/ Talos is unique in that it has no concept of host-level access. There are no shells installed. No ssh daemon. Only what is required to run Kubernetes. Furthermore, there is no way to run any custom processes on the host level. To make this work, we needed an out-of-band tool for managing the nodes. In an ideal world, the system would be self-healing and we would never have to touch it. https://talos.autonomy.io/components/osctl/ Mon, 29 Oct 2018 19:40:55 -0700 https://talos.autonomy.io/components/osctl/ The osctl CLI is the client to the osd service running on every node. With it you can do things like: retrieve container logs restart a service reset a node reboot a node retrieve kernel logs generate pki resources inject data into node configuration files https://talos.autonomy.io/components/blockd/ Tue, 30 Oct 2018 09:16:35 -0700 https://talos.autonomy.io/components/blockd/ Talos comes with a reserved block device with three partitions: an EFI System Partition (ESP) a ROOT partition mounted as read-only that contains the minimal set of binaries to operate system services and a DATA partion that is mounted as read/write at /var/run These partitions are reserved and cannot be modified. The one exception to this is that the DATA partition will be resized automatically in the init process to the maximum size possible.