-
Notifications
You must be signed in to change notification settings - Fork 275
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ARM64 Support #817
Comments
According to the folks at Rancher that I spoke with, the blocker on this issue is a Go lang issue: golang/go#39760 |
That is correct. |
This comment was marked as outdated.
This comment was marked as outdated.
This issue is still important to me. |
This comment was marked as outdated.
This comment was marked as outdated.
I don't think this issue should have been closed, not sure if stale bot will now re-open it. |
Sticking a label on it should keep it from going stale. |
This comment suggests that sufficient documentation might avoid misunderstandings around FIPS certifications on ARM platforms and I agree with this. I personally don't think FIPS certification of dependency libraries should be a blocker to ARM64 support on RKE2 or Harvester. |
Looks like The main blocker "Support BoringCrypto ARM64" for Go-lang is almost done and it is pending in go.dev/cl/423362 branch |
For what it's worth, go.dev/cl/423362 has now been merged. |
Am trying to setup k8's dev environment on Mac M1 and our installer is RHEL specific so I am using utm + Rocky Linux EL9 ISO image to spin up the environment but I just now realised that RKE2 doesn't support ARM64/aarch64, can we have this support added please |
Same issue trying to deploy in OCI. Running installation script throws an error |
Hi everyone, On 2023-01-04 BoringCrypto was validated for FIPS-140-2 compliance on the arm64 CPU architecture (certificate 4407). So, if the RKE2 Golang-based components are built using the validated version of BoringSSL (https://boringssl.googlesource.com/boringssl/+/refs/tags/fips-20210429), Rancher should be able to have RKE2 be validated for FIPS-140-2 compliance on arm64. |
Hi, is there anything from an OSS contributor standpoint that I could do to help drive this? |
Not really, no. I believe we need to line up a few things on the CI side, in addition to getting approval from a couple different teams (product/support/qa), before we can move forward on this. |
Two quick questions here: |
We're not relying on it, golang is. If there are changes to the api or abi, the golang project maintainers will manage that when updating the goboring code base, which is in the mainline golang branches as of Go 1.19. Also, api stability guarantees don't really have anything to do with whether or not the actual crypto implementation is or can be certified. So yes, we believe it makes sense to rely upon. |
Thanks for the clarifications. I'm trying to learn her. These certification processes and particularly the transitive chains thereof are fully opaque to me. Thank you for taking the time to explain it. |
Does this mean it's not going to drop for v1.26? |
based on the tagging, looks like it was put under Backlog again https://github.com/rancher/rke2/milestone/129 |
According to my understanding, the only points for closing/finishing this issue are to update the installer and the documentation (modulus the internal politics on whether or not to support another platform). I don't hope the backlog tag de-facto kills this issue? I would love to hear where in the process this issue is stuck and whether or not an individual contributor can help. |
This is being actively worked on, though to be clear there's a lot that needs to be defined in terms of support, but the goal is to have ARM64 builds in the near future, so this is very far from being dropped :) |
The work for this is nearly complete. Thanks for this info. |
@briandowns When will the arm architecture be supported? |
It will be in this coming release (tomorrow?) but marked experimental and not official. |
@briandowns Hi,can you provide a experimental package for arm architecture, |
@liyang516 an experimental package of what? The release artifacts for arm64 are on github now, what else are you looking for? Note that we are only publishing arm64 support for 1.27 and newer - there will be no artifacts for older minors. |
could install it on my node with the air-gap install. found two images which are not yet available
|
The scope of the arm work was purely RKE2. Further work will be done and is planned for rancher integration, etc. |
tks |
What operating system did you use to install it? |
@philiplehmann What operating system did you use to install it? |
running on an Ubuntu 22.04.2 LTS used the guide from https://docs.rke2.io/install/airgap#rke2-installsh-script-install
|
I think there is still an issue with Cilium ARM64 support in A new ARM64 node was stuck in Workaround is to create a
|
Hello everyone! The initial work on ARM64 support is done - as you encounter bugs or have enhancement requests, please open new issues, so we can appropriately track them. I'll be closing this issue as complete now. |
I'd like to start testing support for my workloads on AWS's Graviton-based EC2 instances. I see that this isn't in the backlog yet; hopefully this Issue can get labeled so its progress can be monitored.
The text was updated successfully, but these errors were encountered: