IF YOU WOULD LIKE TO GET AN ACCOUNT, please write an
email to Administrator. User accounts are meant only to access repo
and report issues and/or generate pull requests.
This is a purpose-specific Git hosting for
BaseALT
projects. Thank you for your understanding!
Только зарегистрированные пользователи имеют доступ к сервису!
Для получения аккаунта, обратитесь к администратору.
Fix the inconsistent use of KubeSpan in docs and Config suffix for the
yaml config doc kind.
Signed-off-by: Tim Jones <tim.jones@siderolabs.com>
(cherry picked from commit e46227ab95a6d06132e82315f55b5ced533ddabb)
Refactor tests to avoid code duplication.
Signed-off-by: Noel Georgi <git@frezbo.dev>
(cherry picked from commit 9fa08e843728dbd85ed7e0035f59cdd6232de9a9)
Fixes: #7081
Review all reservations and limits set, test under stress load (using
both memory and CPU).
The goal: system components (Talos itself) and runtime (kubelet, CRI)
should survive under extreme resource starvation (workloads consuming
all CPU/memory).
Uses #9337 to visualize changes, but doesn't depend on it.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit 6b15ca19cd1291b8a245d72d5153827945cad037)
Otherwise the output might be distorted by characters like `\n`.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit 8166a58b364f760212b2a610ce0d764b8b4c5c46)
Support lvm auto-activation as per
https://man7.org/linux/man-pages/man7/lvmautoactivation.7.html.
This changes from how Talos previously used to unconditionally tried to
activate all volume groups to based on udev events.
Fixes: #9300
Signed-off-by: Noel Georgi <git@frezbo.dev>
(cherry picked from commit d8ab4981b626ff41fbcdb526a032a5584519e3df)
When a map key is deleted, it should be deleted as a whole.
Before the fix it was zeroing out map value by key.
Fixes#9325
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit 18daedb511e769717ba56eb05cccab72118a4813)
Run SideroLink API server via TLS with self-signed certificate, inject
that certificate into Talos via `talos.config.inline=`.
Fix a couple of place where our special TLS root CA provider supporting
reloading on the fly was not used.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit 8d6884a8e28e1bfa29f9a479e0f7179819cf70cd)
Due to the bug introduced when refactoring for PTP devices, invalid NTP
responses (including for example NTP kiss of death), were incorrectly
handled when only a single NTP server was used.
The error was logged, but the response was used to adjust the time which
leads to unexpected time jumps.
Properly ignore any invalid NTP response.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit d4a6d017dbb91e22c60787cdf64b242057b1ebef)
The fix in #9233 wasn't correct, as it was looking for number of
replicas in a "random" ReplicaSet. If the deployment has multiple
replica sets, it leads to unexpected results.
Instead, read the Deployment resource directly.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit 780a1f198a5eedd33a27060bdf116bd3a3b26426)
`List` returns a sorted (by id) list of resources. This doesn't work when the order of dns upstreams is important. Because of that
add an `Idx` field to the "DNSUpstreams.net.talos.dev" resource, so we can preserve order.
Fixes#9274
Signed-off-by: Dmitriy Matrenichev <dmitry.matrenichev@siderolabs.com>
(cherry picked from commit 79cd031588a0710b865414f919742ee3ffb998ed)
In the status controller, there was a wrong method to parse the endpoint
which doesn't account for all supported formats.
Use already parsed version in the config resource instead.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit a294b366f24c6580d304c6c8ad34f481079dc795)
We should ignore this, it's a totally an optional feature used in
containers (Talos on its own kernel has ethtool-netlink).
Fixes#9296
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
(cherry picked from commit a9269ac7b1217aa2d247c0215c5f2755af468b44)
The initramfs unarchive won't work as it's extension is `xz` while the
actual compression is `zst`.
Signed-off-by: Artem Chernyshev <artem.chernyshev@talos-systems.com>
Otherwise the internal code might assume that the service is still
running and healthy, never issuing a health change event.
Fixes#9271
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Add support for uploading images to GCP in cloud image uploader.
GCP is not enabled by default since it's going to be used for e2e-tests
for now.
Signed-off-by: Noel Georgi <git@frezbo.dev>
Move META constants out to machinery, and fix up imports. The internal
`pkg/meta` package shold not be consumed in public-facing commands.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
The previous code didn't work, as it was manipulating args before they
were reset by the platform.
Also it was producing wrong order of console args.
Both fixed, plus a unit-test.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
This implements the first round of changes, replacing the volume backend
with the new implementation, while keeping most of the external
interfaces intact.
See #8367
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Pause sequencer till the boot timeout if talos is booted from ISO/PXE, but
an existing talos is installed to disk and
`talos.iso.boot.halt_if_installed` kernel argument is set.
Fixes: #9232
Signed-off-by: Noel Georgi <git@frezbo.dev>
Kaniko adds an entry for the root folder `/` in its tarballs.
Processing the file causes the process to hang when trying to
recreate the destination directory.
The root directory already exists, so it triggers an error, but as the
errors were not correctly propagated, the process hangs forever.
Fix both issues.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
Talos config files greater than 32kb will create an error when trying to
create Hetzner servers. This also applies for the default configuration.
Signed-off-by: Josia Scheytt <jscheytt@googlemail.com>
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
When you run the helm install, you get an error saying kubeProxyReplacement requires a value of true or false and not disabled
Signed-off-by: Amadeus Mader <156795523+a-mader@users.noreply.github.com>
Signed-off-by: Noel Georgi <git@frezbo.dev>
Update tools, pkgs, extras, Go dependencies, Go tools, etc.
Linux 6.6.47 and containerd 2.0.0-rc.4.
Signed-off-by: Andrey Smirnov <andrey.smirnov@siderolabs.com>
