feat(container): update image ghcr.io/siderolabs/talosctl to v1.8.0 #127
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
1.7.6
->1.8.0
Release Notes
siderolabs/talos (ghcr.io/siderolabs/talosctl)
v1.8.0
Welcome to the v1.8.0-alpha.1 release of Talos!
This is a pre-release of Talos
Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.
Workload Apparmor Profile
Talos Linux can now apply the default AppArmor profiles to all workloads started via containerd, if the machine is installed with the AppArmor LSM enforced via the extraKernelArgs.
Eg:
Bridge Interface
Talos Linux now support configuring 'vlan_filtering' for bridge interfaces.
Diagnostics
Talos Linux now shows diagnostics information for common problems related to misconfiguration via
talosctl health
and Talos dashboard.DNS Forwarding for CoreDNS pods
Usage of the host DNS resolver as upstream for Kubernetes CoreDNS pods is now enabled by default. You can disable it
with:
Please note that on running cluster you will have to kill CoreDNS pods for this change to apply.
PCI Devices
A list of PCI devices can now be obtained via
PCIDevices
resource, e.g.talosctl get pcidevices
.Component Updates
Kubernetes: 1.30.2
Linux: 6.6.36
containerd: 2.0.0-rc.3
runc: 1.2.0-rc.2
etcd: 3.5.14
Flannel: 0.25.3
Flannel CNI plugin: 1.5.1
Talos is built with Go 1.22.5.
ZSTD Compression
Talos Linux now compresses kernel and initramfs using ZSTD.
Linux arm64 kernel is now compressed (previously it was uncompressed).
Contributors
Changes
160 commits
0454130ad
feat: suppress controller runtime first N failures on the console3d35e5468
chore: update hydrophone library1f28726d4
chore: support version with and withoutv
prefix9a56b8527
chore(ci): fix parallel runs of tf pipelinesbe35f380c
chore: update pkgs/tools/extras93df23444
docs: update opengraph image for main landing pagesd9d62d4da
feat: update Linux to 6.6.366b0fe5b8c
docs: update deploying cilium docs for v1.7 and v1.852611a90d
feat: update Kubernetes to v1.30.2c19cc4ccb
docs: clarify direct access needed to nodes in insecure modeb4c871e4b
chore: bump dependenciescc345c8c9
feat: add support for configuring vlan filtering on the bridge2d054ad35
chore: handle documents diff inapply-config
dry runbd34f71f3
feat: add apparmor pkg71857fd4d
docs: fix typo:messure
->measure
f75f16b0a
chore(ci): fix cluster name generationc603d2bf9
chore: output more info whenExecuteCommandInPod
fails4b5a7445e
docs: fix missing Akamai platform in supported matrix4701498a1
chore(ci): run e2e-aws-nvidia with zfs extension enabled86a3222ae
chore: use new disks api for iscsi tests5ffc3f14b
feat: show siderolink status on dashboard6f6a5d105
chore: upgrade to rtnetlink/v2 library1fb8453c2
chore: update Go modules8e15621e8
chore(ci): add conformance pipelines7fcb521a6
feat: use hydrophone instead of sonobuoyd1a0c1f98
test: fix the integration test for no META name535006334
chore: fix our dns server implementationc6f90d014
chore: replace sync.Map with concurrent.HashTrieMape8ced2c2d
chore: drop k8s timeout in the default kubeconfig7cbdce73f
fix: detect CD devices, fix user disks wipe testaca475c66
chore: small usability fixes26cf566dc
chore: bump our coredns fork5e66e117e
fix: initial assignment of Hetzner Cloud Alias IPf07b79f4a
feat: provide disk detection based on new blockdevices8ee087268
chore(ci): drop crashdump, save logs as artifacts7c9a14383
fix: volume discovery improvements80ca8ff71
fix: update the cgroups for Talos core servicesfe317f1e1
docs: fix typo in QEMU guest agent support on Proxmox8dbe2128a
feat: implement Talos diagnostics357d7754f
fix: clean up VM runners on cluster destroy41f92e0ba
chore: update Go to 1.22.4, other updates4621e9bb7
chore: add stale and lock issue workflows82d9cd322
fix: add upgrade errata for arm64/zboot kernels9a23d846c
fix: downgrade Azure IMDS required version30860210c
test: fix hardware test not to require PCI devices9fcc9b841
feat: update Flannel to v0.25.39d395b9de
chore: use bun instead of npma1684bdf8
chore: speed up go generate for enumer4dd0aa712
feat: implement PCI device bus enumerationb0466e0ab
fix: disable kexec on GCP/Azure911c25574
chore: fix go.work resolution2f088ede0
docs: add another example for installing cilium3967e0777
feat: update etcd to 3.5.143367ded9f
fix: correct time adjustment intime.SyncController
893e64fcb
fix: replacenslookup
withdig
in integration tests0359c8537
chore: unify toml packages being used4feb94ca0
feat: add multidoc check to the Talos quirks module0b4a9777f
docs: update talosctl install instructions for 1.8da8305ffb
test: add a test for watchdog timersda7f27640
fix: mounttracefs
filesystem7b37e5b63
chore(ci): fix integration extensionsde7553d77
fix(ci): cron jobseb510d9fd
chore: require enabled bootloader for docker provisionera9cf9b789
fix: correctly handle dns messages in our dns implementationc2b19dcb9
chore: move to containerd 2.0 API92a274e9a
fix: workaround problems with udevd races31b24ea3d
chore(ci): split integration misc8a1371337
fix: produce stable order of bonds with equinix6406193f4
test: add Equnix Metal sample metadata with two bonds01ea82053
fix: time sync over NTP from future era5aea42427
fix(ci): fix crons by setting up buildx always84706c3e2
docs: default to brew docs for talosctlfcd65ff65
feat: enable forwardKubeDNSToHost by default2e64e9e4e
fix: require accepted CAs on worker nodes23c1c4560
fix(ci): fix crons fby rekres2d50392c5
feat: update containerd to 2.0.0-rc.2, runc to 1.2.0-rc.1a12e4bb24
chore(ci): fix github action cronse7bd9cd2b
fix: decrease maximum negative ttl for dns responses9c3ebad9f
chore(ci): kresify gh actionsff60f6fde
refactor: make some of the extensions package publicce8c86d64
fix: panic in osroot controllere1711cd3c
chore: stop using containerd package for cri namespaced4307043f
fix: update go-tail library to fix 'short read' error7cd13ef4a
docs: add documentation on using Multus with Talos4784da3ef
feat: use new circular buffer compressed chunks feature78b48eb3a
feat: include EDAC drivers0bf2d69fb
feat: update Kubernetes to 1.30.153f548913
fix: increase host dns packet ttl for podsdedb6d360
fix: update github.com/siderolabs/siderolink to v0.3.743939f1a6
docs: fix typos, add docker socket info6663068bb
chore: update project in GCP testingb86edc677
chore: update office hours in talos repocfa25d22d
chore: remove docs prior to 1.0 from website navigation120705459
chore: handle I/O error for xfs_repairb7afe2669
feat: update Linux 6.6.3026519ceed
docs: update proxmox.md851b91a0e
fix: don't enable hostDNS for versions of Talos which do not have it42ac5cd0c
fix: check fornil
machine config during installation1d29111d4
chore: update Go to 1.22.3f4d7b9d9a
feat: gather plaform dns names0b0f9995a
docs: add resource information, some grammar fixes763dae250
fix: add cluster name to the worker machine config4aac5b4ec
feat: mount /sys/kernel/security into kubelet817f18153
docs: remove mention of enabling KubePrism after v1.6c08d79732
docs: fix the variable name typo478b862b4
fix: do not fail cli action tracker when boot id cannot be readbe510f9eb
docs: fix grpc_tunnel value to trueb7b8a8d8f
docs: add logs example for the certificate errors troubleshooting8df5b85ec
release(v1.8.0-alpha.0): prepare release07f78182c
fix: use a fresh context for etcd unlock84cd7dbec
feat: update Linux to 6.6.2970fdca6a4
chore: update minimum hardware requirement for vmware ovab690ffeb8
test: improve DNS resolver test stability5aa0299b6
style: use correct capitalization for openstack4c0c626b7
feat: use zstd compression in place of xz98906ed6e
fix: use reboot delay only in case of error05fd042bb
test: improve the reset integration tests8cdf0f7cb
docs: fix typo in Cilium instructionsdd1d279da
fix: allow more flags intalosctl cluster create --input-dir
ef4394e58
chore: update kernel and other packagesccdb4c8b1
chore: update google.golang.org/grpc to 1.63.2c5b59df69
fix: wait for devices to be discovered before probing filesystems0821b9c50
feat: add--non-masquerade-cidrs
flag totalosctl cluster create
2bf613ad3
fix: add endpoints for "virtual"host-dns
servicef4163aefe
fix: bump priority of OpenStack routes if IPv6 and default gateway6fbd1263c
feat: report process MAC labelsd46032821
fix: return proper value from Bridge.STP instead of plain nilbac1d00c3
chore: prepare for Talos 1.8d6c8067e1
docs: make 1.7 docs the defaultd7c3a0735
docs: add what's new for v1.7908f67fa1
feat: add host dns support for resolving member addrs0d20b637d
feat: update Kubernetes to 1.30.0ec69d7a78
chore: replace math/rand with math/rand/v289040ce43
chore: update go-blockdevice/v2 library to the latest version0a785802e
fix: overlay installer operationsb1b63f658
fix: mark overlay installer executable3433fa13b
feat: use container DNS when in container mode5d07ac5a7
fix: close apid inter-backend connections gracefully for real7ba18555b
docs: fix typos in Akamai and AWS platform docs3dd1f4e88
chore: extractpkg/imager/quirks
topkg/machinery
78bc3a433
docs: update Cilium docs831f3d39e
feat: update Flannel to v0.25.1ea5b3ff0c
feat: update Kubernetes to v1.30.0-rc.254dac5ed4
feat: update Linux 6.6.24, containerd 1.7.15c51f146da
docs: update Akamai platform docs9550f5ff7
docs: fix getAuthenticationMethod and completePathFromNode docsbfbd02abf
fix: assign different priority to IPv6 default gateway on OpenStackc8f674bd3
test: add a test for 'spin' container runtime5390ccd48
chore: replace []byte with string and use go:embed for templatesba7cdc8c8
chore: optimize DNSResolveCacheController145f24063
fix: don't modify a global map of profiles6fe91ad9c
feat: provide Kubernets/Talos version compatibility for 1.8909a5800e
fix: generate secureboot ISO .der certificate correctlyb0fdc3c8c
fix: make static pods check output consistentc6ad0fcce
fix: validate that workers don't get cluster CA key3735add87
fix: reconnect to the logs stream in dashboard after reboot9aa1e1b79
fix: present all accepted CAs to the kube-apiserver336e61174
fix: close the apid connection to other machines gracefullyff2c427b0
fix: pre-create nftables chain to make kubelet use nftables5622f0e45
docs: change localDNS to hostDNS in release notes yaml sectionChanges since v1.8.0-alpha.0
108 commits
0454130ad
feat: suppress controller runtime first N failures on the console3d35e5468
chore: update hydrophone library1f28726d4
chore: support version with and withoutv
prefix9a56b8527
chore(ci): fix parallel runs of tf pipelinesbe35f380c
chore: update pkgs/tools/extras93df23444
docs: update opengraph image for main landing pagesd9d62d4da
feat: update Linux to 6.6.366b0fe5b8c
docs: update deploying cilium docs for v1.7 and v1.852611a90d
feat: update Kubernetes to v1.30.2c19cc4ccb
docs: clarify direct access needed to nodes in insecure modeb4c871e4b
chore: bump dependenciescc345c8c9
feat: add support for configuring vlan filtering on the bridge2d054ad35
chore: handle documents diff inapply-config
dry runbd34f71f3
feat: add apparmor pkg71857fd4d
docs: fix typo:messure
->measure
f75f16b0a
chore(ci): fix cluster name generationc603d2bf9
chore: output more info whenExecuteCommandInPod
fails4b5a7445e
docs: fix missing Akamai platform in supported matrix4701498a1
chore(ci): run e2e-aws-nvidia with zfs extension enabled86a3222ae
chore: use new disks api for iscsi tests5ffc3f14b
feat: show siderolink status on dashboard6f6a5d105
chore: upgrade to rtnetlink/v2 library1fb8453c2
chore: update Go modules8e15621e8
chore(ci): add conformance pipelines7fcb521a6
feat: use hydrophone instead of sonobuoyd1a0c1f98
test: fix the integration test for no META name535006334
chore: fix our dns server implementationc6f90d014
chore: replace sync.Map with concurrent.HashTrieMape8ced2c2d
chore: drop k8s timeout in the default kubeconfig7cbdce73f
fix: detect CD devices, fix user disks wipe testaca475c66
chore: small usability fixes26cf566dc
chore: bump our coredns fork5e66e117e
fix: initial assignment of Hetzner Cloud Alias IPf07b79f4a
feat: provide disk detection based on new blockdevices8ee087268
chore(ci): drop crashdump, save logs as artifacts7c9a14383
fix: volume discovery improvements80ca8ff71
fix: update the cgroups for Talos core servicesfe317f1e1
docs: fix typo in QEMU guest agent support on Proxmox8dbe2128a
feat: implement Talos diagnostics357d7754f
fix: clean up VM runners on cluster destroy41f92e0ba
chore: update Go to 1.22.4, other updates4621e9bb7
chore: add stale and lock issue workflows82d9cd322
fix: add upgrade errata for arm64/zboot kernels9a23d846c
fix: downgrade Azure IMDS required version30860210c
test: fix hardware test not to require PCI devices9fcc9b841
feat: update Flannel to v0.25.39d395b9de
chore: use bun instead of npma1684bdf8
chore: speed up go generate for enumer4dd0aa712
feat: implement PCI device bus enumerationb0466e0ab
fix: disable kexec on GCP/Azure911c25574
chore: fix go.work resolution2f088ede0
docs: add another example for installing cilium3967e0777
feat: update etcd to 3.5.143367ded9f
fix: correct time adjustment intime.SyncController
893e64fcb
fix: replacenslookup
withdig
in integration tests0359c8537
chore: unify toml packages being used4feb94ca0
feat: add multidoc check to the Talos quirks module0b4a9777f
docs: update talosctl install instructions for 1.8da8305ffb
test: add a test for watchdog timersda7f27640
fix: mounttracefs
filesystem7b37e5b63
chore(ci): fix integration extensionsde7553d77
fix(ci): cron jobseb510d9fd
chore: require enabled bootloader for docker provisionera9cf9b789
fix: correctly handle dns messages in our dns implementationc2b19dcb9
chore: move to containerd 2.0 API92a274e9a
fix: workaround problems with udevd races31b24ea3d
chore(ci): split integration misc8a1371337
fix: produce stable order of bonds with equinix6406193f4
test: add Equnix Metal sample metadata with two bonds01ea82053
fix: time sync over NTP from future era5aea42427
fix(ci): fix crons by setting up buildx always84706c3e2
docs: default to brew docs for talosctlfcd65ff65
feat: enable forwardKubeDNSToHost by default2e64e9e4e
fix: require accepted CAs on worker nodes23c1c4560
fix(ci): fix crons fby rekres2d50392c5
feat: update containerd to 2.0.0-rc.2, runc to 1.2.0-rc.1a12e4bb24
chore(ci): fix github action cronse7bd9cd2b
fix: decrease maximum negative ttl for dns responses9c3ebad9f
chore(ci): kresify gh actionsff60f6fde
refactor: make some of the extensions package publicce8c86d64
fix: panic in osroot controllere1711cd3c
chore: stop using containerd package for cri namespaced4307043f
fix: update go-tail library to fix 'short read' error7cd13ef4a
docs: add documentation on using Multus with Talos4784da3ef
feat: use new circular buffer compressed chunks feature78b48eb3a
feat: include EDAC drivers0bf2d69fb
feat: update Kubernetes to 1.30.153f548913
fix: increase host dns packet ttl for podsdedb6d360
fix: update github.com/siderolabs/siderolink to v0.3.743939f1a6
docs: fix typos, add docker socket info6663068bb
chore: update project in GCP testingb86edc677
chore: update office hours in talos repocfa25d22d
chore: remove docs prior to 1.0 from website navigation120705459
chore: handle I/O error for xfs_repairb7afe2669
feat: update Linux 6.6.3026519ceed
docs: update proxmox.md851b91a0e
fix: don't enable hostDNS for versions of Talos which do not have it42ac5cd0c
fix: check fornil
machine config during installation1d29111d4
chore: update Go to 1.22.3f4d7b9d9a
feat: gather plaform dns names0b0f9995a
docs: add resource information, some grammar fixes763dae250
fix: add cluster name to the worker machine config4aac5b4ec
feat: mount /sys/kernel/security into kubelet817f18153
docs: remove mention of enabling KubePrism after v1.6c08d79732
docs: fix the variable name typo478b862b4
fix: do not fail cli action tracker when boot id cannot be readbe510f9eb
docs: fix grpc_tunnel value to trueb7b8a8d8f
docs: add logs example for the certificate errors troubleshootingChanges from siderolabs/discovery-client
2 commits
ca662d2
feat: export default GRPC dial options for the client7a767fa
chore: bump Go, deps and rekresChanges from siderolabs/extras
4 commits
cab51d8
feat: update dependencies0efb05f
feat: update Go to 1.22.401ad9f5
feat: update Go to 1.22.3fa6663c
feat: update Go to 1.22.2Changes from siderolabs/gen
2 commits
7654108
chore: add hashtriemap implementation8485864
chore: optimize maps.Values and maps.KeysChanges from siderolabs/go-api-signature
1 commit
782aac0
chore: bump depsChanges from siderolabs/go-circular
3 commits
cbce5c3
feat: add persistence support3c48c53
feat: implement extra compressed chunks835f04c
chore: rekres, update dependenciesChanges from siderolabs/go-loadbalancer
1 commit
0639758
chore: bump depsChanges from siderolabs/go-pcidb
1 commit
2e79017
feat: rekres, update PCI IDsChanges from siderolabs/go-tail
1 commit
7cb7294
fix: remove unexpected short read errorChanges from siderolabs/go-talos-support
1 commit
69891cf
chore: remove containerd dependencyChanges from siderolabs/pkgs
36 commits
ce49757
feat: update flannel-cni plugin to v1.5.1289ed6b
feat: bump deps8d6b19a
feat: update Linux to 6.6.36b671d46
feat: update containerd/runc to the next rc versionsc7e9591
feat: enable CONFIG_X86_AMD_PSTATE84bad89
feat: add 'apparmor' package4d9869a
feat: update Linux to 6.6.33e5990e8
feat: enable CONFIG_KSMa37f382
fix: network for Rockchip boards like Rock6495218c7
fix: enable PAGE_TABLE_CHECKcbd9cd7
feat: enable SCTP supportc309452
feat: bump dependencies3a56032
chore: rekresdb7f60c
feat: bump Linux to 6.6.32c647a05
feat: update ipxe to the latestf350879
feat: update containerd to 2.0.0-rc.2, runc to 1.2.0-rc.1f8392fb
feat: update Linux firmware to2024051
f414bbd
fix: disable CONFIG_EFI_DISABLE_PCI_DMA option9ebfd1b
feat: enable EDAC driversf9559de
fix: drbd module installation492638d
feat: update dependenciesbd70572
feat: update Go to 1.22.3edb600a
feat: update zfs package to v2.2.46775002
feat: enable NFT FIB lookups28c5696
feat: update Linux to 6.6.299c8a02c
feat: update containerd to 1.7.16ca6249b
feat: compress amd64 Linux kernel using zstd718a7da
feat: enable SELinux207481f
feat(intel): add support for power management and ACPI options for Intel CPUsdfa7dce
feat: update Linux to 6.6.287b30b61
fix: use proper EFI zBoot image010913b
feat: update Linux 6.6.26, containerd 1.7.15da397fa
feat: enable BFQ IO schedulerc839801
feat: enable zboot on arm64 with zstd compression1b28e2c
feat: go 1.22.2, Linux 6.6.2405db2a8
fix: revert musl to 1.2.4Changes from siderolabs/siderolink
4 commits
e76747b
chore: migrate to rtnetlink/23a587fc
fix: do not ever skip updates which have remove flagbe00ff5
chore: redo event filtering as a sequence of iteratorsa936b60
chore: handle peer events in batchesChanges from siderolabs/tools
7 commits
31ad71b
feat: update dependenciesd2746e5
feat: update Go to 1.22.406ba64e
feat: update dependencies7e5a248
feat: update dependenciesc34ec5b
feat: update Go to 1.22.33c25a6f
fix: update pkg-config configure flagbd405ff
feat: update go to 1.22.2Dependency Changes
48be911
->205d559
ee6cbcd
-> v0.9.1c728f5d
->bf3278a
a22293b
->b0a7293
3265299
->f4a4030
69891cf
e1711cd
3a66d9d
91065c9
newPrevious release can be found at [v1.7.0](htt
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.