7e50e24c01
When upgrading from older version of Talos using static pod manifests directory to new version providing static pods via internal web server, we need to make sure that legacy static pods are cleaned up, otherwise kubelet receives "two" versions of the static pods which makes it fail to run them. The previous cleanup location wasn't working properly, as `/etc/kubernetes/manifests` exists in the rootfs (and it's empty), while actual contents are in `/var`, and they appear only when respective overlay mount is done. The controller tried to clean up on start, saw nothing (looking into rootfs), then started doing other functions. The result was that when overlay was mounted, static pods were still there, while the controller will do next attempt only when it fails, and it fails next time when kubelet is already running, and when it already picked up those stale definitions. Fix all of that by moving cleanup into sequencer after overlayfs mount. Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>
Talos Linux
A modern OS for Kubernetes.
Talos is a modern OS for running Kubernetes: secure, immutable, and minimal. Talos is fully open source, production-ready, and supported by the people at Sidero Labs All system management is done via an API - there is no shell or interactive console. Benefits include:
- Security: Talos reduces your attack surface: It's minimal, hardened, and immutable. All API access is secured with mutual TLS (mTLS) authentication.
- Predictability: Talos eliminates configuration drift, reduces unknown factors by employing immutable infrastructure ideology, and delivers atomic updates.
- Evolvability: Talos simplifies your architecture, increases your agility, and always delivers current stable Kubernetes and Linux versions.
Documentation
For instructions on deploying and managing Talos, see the Documentation.
Community
- Slack: Join our slack channel
- Support: Questions, bugs, feature requests GitHub Discussions
- Forum: community
- Twitter: @SideroLabs
- Email: info@SideroLabs.com
If you're interested in this project and would like to help in engineering efforts or have general usage questions, we are happy to have you! We hold a weekly meeting that all audiences are welcome to attend.
We would appreciate your feedback so that we can make Talos even better! To do so, you can take our survey.
Office Hours
- When: Mondays at 16:30 UTC.
- Where: Google Meet.
You can subscribe to this meeting by joining the community forum above.
Note: You can convert the meeting hours to your local time.
Contributing
Contributions are welcomed and appreciated! See Contributing for our guidelines.
License
Some software we distribute is under the General Public License family of licenses or other licenses that require we provide you with the source code. If you would like a copy of the source code for this software, please contact us via email: info at SideroLabs.com.