talos/CHANGELOG.md at bf1e81b1f4ae3067bc5a27575f0a06e3f27086ff

Andrew Rynhard bf1e81b1f4 release(v0.8.0-alpha.0): prepare release

This is the official v0.8.0-alpha.0 release.

Signed-off-by: Andrew Rynhard <andrew@rynhard.io>

2020-11-10 12:23:02 -08:00

110 KiB

Raw Blame History

v0.8.0-alpha.0 (2020-11-10)

Chore

bump version of x/net module
bump Go to 1.15.4
enable gci linter
enable nlreturn linter
fix markdownlint command
fix markdown-lint
update golangci-lint
remove duplicate packages
remove unused binaries
output more logs from the installer
update CI scripts
move to newer release of rtnetlink with fn args
reduce numer of steps/parallelism of Drone build
fix the check-dirty command to abort on untracked files
bump module dependencies in go.mod
bump Go to 1.15.3
add Context as param to some methods of Platform interface
bump pkgs version
publish list of images to release notes
attempt to fix image pushing for GitHub
update qemu hack script to use ISO
fix 'push' targets
fix edge push
fix docker login
fix docker login
migrate to ghcr.io
push edge releases on successful nightly integration
update ntp time headers
upgrade Go to 1.15.1
remove extra COPY from rootfs
update k8s modules to 1.19 final version
upgrade Go to 1.14.8
drop vmlinux from assets
add a method to merge Talos client config
bump next version to v0.6.0-beta.2
update machinery version in go.mod
update node.js dependencies
re-import talos-systems/pkg/crypto/tls
extract pkg/crypto as external module
integrate importvet
update capi CI manifests to use control planes
update node dependencies
update packages
bump elliptic from 6.5.2 to 6.5.3 in /docs/website
add aliases to some talosctl commands
use qemu instead of firecracker in CI
really mount /tmp in CI as tmpfs
mount /tmp in CI to the build steps
add release notes
set default CIDRs
use outer docker as buildkit instance
upgrade pkgs and tools for Go 1.14.6
use Kubernetes pipelines
bump lodash from 4.17.15 to 4.17.19 in /docs/website
extract loadbalancer, network, crashdup and process from firecracker
initial extraction of base vm provisioner
move inmemhttp from firecracker provisioner to internal/pkg/
update module dependencies
update golangci-lint to 1.28.3
upgrade Go to 1.14.5
update clusterctl for CI testing
update meeting links
wait for resource deletion in sonobuoy
cleanup sonobuoy after failed attempts
enable 'testpackage' linter
make default pipeline run shorter integration test
enable godot linter
enable nolintlint linter
bring back tmp volume shared from e2e-docker to CAPI steps
stop mounting /tmp for the build pipeline
upgrade golangci-lint to 1.27
output where we are pulling configs for each platform
update kernel to support CONFIG_CRYPTO_USER_API_HASH
sign the drone file
run provision tests in parallel
use neutral terminology
update provision test versions
fix markdown lint
upgrade Go to 1.14.3 and use toolchain for race detector
replace underlying event implementation with single slice
fix nits in the events code
serialize firecracker e2e tests
pin markdown linting libraries
use clusterctl and v1alpha3 providers for tests
fix prototool lint
fix markdown linting issues
add bug report issue template
use a single CHANGELOG
remove random.trust_cpu references
update pkgs tag to v0.2.0
address random CI nits
prepare release v0.5.0-alpha.0
add PR template for contributors
update sonobuoy to v0.18.0
update timeout values for e2e tests
prepare release v0.4.0-alpha.8
update upgrade tests for new version, split into two tracks
run npm audit fix
prepare release v0.4.0-alpha.7
fix formatting of imports
update Firecracker Go SDK to the official release
cleanup assets dir after bootkube is done
improve handling of etcd responses in bootkube pre-func
add service state to postfunc
prepare release v0.4.0-alpha.6
update pkgs & tools for Go 1.14
fix small misprint
push installer & talos images to the CI registry on every build
move golangci-lint.yaml to .golangci.yml
remove KubernetesVersion from provision request
prepare release v0.4.0-alpha.5
build app container images skipping export to host
update pkgs
support bootloader emulation in firecracker provisioner
implement loadbalancer for firecracker provisioner
prepare release v0.4.0-alpha.4
sign .drone.yml
only run ok-to-test when PR
support slash commands in drone
get correct drone status in github actions
use upstream version of Firecracker Go SDK
update golangci-lint-1.23.3
use common method to pull etcd image
remove unused go module files (#159)
implement reboot test
enable slash commands in github PRs
update bootkube
update capi-upstream
provide provisioned cluster info to integration test
update bootkube fork
rework firecracker code around upstream Go SDK + PRs
remove Firecracker bridge interface in osctl cluster destroy
prepare release v0.4.0-alpha.3
refactor E2E scripts
fix CI
Clean up generated path for protoc
use firecracker in basic-integration
update bootkube config to include cluster name
prepare release v0.4.0-alpha.2
use v0.1.0 tools and pkgs
run sonobuoy in quick mode
validate installer image before upgrade
bump tools/pkgs for Go 1.13.6
remove test-framework
log ignored ACPI events
fix E2E script
publish boot.tar.gz
allow docgen to ignore a struct
prepare release v0.4.0-alpha.1
disable iso artifact publication
update all target in Makefile
allow re-use of docker network for local clusters
fix release dependency
fix push events
push latest tag on tag events
use the correct condition for latest and edge pushes
prepare release v0.4.0-alpha.0
fix releases
use osctl cluster --wait in basic-integration
exclude cron events in push-latest step
fix conformance
add more functions to the release script
remove gitmeta references
add help menu to the Makefile
refactor Makefile to be more DRY
use docker buildx
pull in latest version of grpc-proxy
fix KVM test
prepare release v0.3.0-beta.0
update client-go
make the CNI configurable in local KVM test
Remove increased timeouts for dhcp addressing.
Add link name to dhcp addressing error
upgrade sonobuoy to v0.16.5
update gcp disk sizes
update containerd client version
rewrite basic integration in go instead of bash
support image specification in drone step function
validate url input for osctl config generate
prepare release v0.3.0-alpha.10
upgrade packages
fix conformance
update bootkube
upgrade sonobuoy
push edge tag on succesful conformance
update CIS kube-bench version to 1.11 (#161)
add ability to specify custom intaller to libvirt setup
prepare release v0.3.0-alpha.9
disable all azure e2e temporarily
Fix formatting ( make fmt )
prepare release v0.3.0-alpha.8
reverse order of events in osctl service
address deprecation warning from netlink package
prepare release v0.3.0-alpha.7
format docs to one sentence per line
remove CertificateKey
Move back to official procfs repo
run gofumports after protoc-gen
re-enable e2e for aws clusters
add simple health check for etcd service
re-enable e2e testing
prepare release v0.3.0-alpha.6
remove bind mounts from OSD
Move data messages to common proto
install customization requirements with ONBUILD
force overwrite of output file
remove unused files
prepare release v0.3.0-alpha.5
remove RAW disk
update pkgs SHA
prepare release v0.3.0-alpha.4
add Digital Ocean image to release
replace /* */ comments with // comments in license header
bump tools/pkgs for toolchain refactor
fix markdown lint error
prepare release v0.3.0-alpha.3
attempt to avoid containerd shim socket conflicts in tests
attempt to fix test hanging with reaper enabled
fix containerd test hanging
make service_runner_test less flaky
fix flaky constant retry test
make Slack notifications more fancy
run 'git fetch --tags' as first step
Rename proto files into more appropriate names
prepare release v0.3.0-alpha.2
bump tools & pkgs for Go 1.13.2
Update gitmeta to latest release
bump golangci-lint to 1.21
remove custom log paths
prepare release v0.3.0-alpha.1
update sonobuoy for conformance tests
re-enable end to end tests
enable 'wsl' linter and fix all the issues
bump golangci-lint to 1.20
Improve error messages if there is a network config overlap
Add additional cert info to etcd peer cert.
prepare release v0.2.0
upgrade tools for go v1.13.1
bump kernel to 5.2.18
use the official Drone git plugin
prepare release v0.3.0-alpha.0
prepare release v0.2.0-rc.0
add version label to installer image
move gRPC API to public
fix AWS image dependency
prepare release v0.2.0-beta.0
upgrade Sonobuoy to v0.15.4
remove dead code
upgrade conformange image
make ntpd depend on networkd
update github.com/stretchr/testify library to 1.4.0
move interface type assertion to unit-tests
randomize containerd namespace in tests
make TestRunRestartFailed test more reliable
move from gofumpt to gofumports
add fmt target
upgrade golancgi-lint to 1.18.0
format code with gofumpt
tag and push docker image with semver (#165)
remove invalid TODO
remove unneeded packages
remove existing AMI
remove packer from installer
rename v1 node configs to v1alpha1
Rename maintainers channel
remove top output border
prepare v0.1.0-alpha.11 release (#171)
update provider-components for capi v0.1.9
Retry check for HA control plane
align time command with output standards
ignore .vscode (#175)
remove buildkit cache directory
enable unit-tests-race
make TestContainerdSuite/TestRunTwice more robust
make health tests more robust
disable go test result cache
fix generate version flag and mark v0 as deprecated
fix location of Go build cache mount for unit-tests-race
Fix azure image upload
Clean up e2e scripts
change upgrade request "url" to "image"
remove unused init token
remove generated raw disk
remove local upgrade functionality
lint protobuf definitions
output top header in all caps
ignore linting error (#285)
Increase timers for healthchecks
upgrade tools
use kubeadm v1beta2 structs everywhere
fix qemu-boot.sh
add QEMU script
disable CIS benchmarks
run CI jobs on dedicated nodes (#174)
Make losetup atomic during installation
Fix reread error value on retry
enforce one sentence per line in Markdown files
add markdownlint
Retry reread partition table if EBUSY
Add log message for userdata backoff.
move to smaller azure instance type
Disable rate limited kmessage
remove sonobuoy spinner
apply manifests when init node is ready
update tools image
update go modules to use Kubernetes v1.16.0-alpha.3
use go runner in sonobuoy
enable floating IP creation in e2e tests
add kernel parameters doc for bare-metal
fix drone clone
fix default pipeline
fix release pipeline
prepare release v0.2.0-alpha.6
run unique E2E tests
exclude promotion event
add ability to promote to a release
add image test step
reenable AMI publishing
refactor the Jsonnet file
fix push step dependencies
fix clone logic
fix broken clone
build drone YAML via jsonnet
remove GitHub action workflow
Fix up adhoc e2e tests
add race-enabled test run
remove machined from rootfs target
prepare v0.1.0-alpha.12 release (#184)
re-add github actions
delete github actions temporarily
set docker server entrypoint to dockerd to avoid TLS generation
enable CIS testing in conformance runs
add azure e2e testing
stabilize one more health test
prepare release v0.2.0-alpha.5
stabilize health test
fix data race in goroutine runner
add tests for event.Bus
fix node selector (#185)
run CI jobs on CI nodes
update dockerfile/buildkit versions
prepare release v0.1.0
remove rootfs output param
prepare release v0.2.0-alpha.4
add AMI build
remove hack/dev/ scripts & docker-compose
implement first version of CRI runner
fix build cache
create raw image as sparse file
fix GOCACHE dir location
allow to run tests only for specified packages
compress Azure image
remove the raw disk after Azure build
fix release
fix image builds on tags
prepare v0.2.0-alpha.3 release
setup gce for e2e builds
repair 'make all'
run tests in the buildkit itself
prepare release v0.1.0-rc.0
publish Azure image on releases
add step to drone for kernel
prepare release v0.2.0-alpha.2
move init to /sbin
improve network setup logging
extract CRI client as separate package
make unit-tests use isolated instances of containerd
prevent duplicate build of test container
bump codecov project target to 33%
remove last updated field from proposal template
prepare release v0.2.0-alpha.1
update toolchain version and output created config files
prepare release v0.1.0-beta.1
upgrade conform to v0.1.0-alpha.16
upgrade conform to v0.1.0-alpha.15
use 'fast' gitmeta (#836)
fix CHANGELOGs (#834)
create a CHANGELOG.md for each minor version (#833)
update stretchr/testify to master version (#832)
fix GCE image creation (#830)
revert #816 (#829)
fix GCE image creation (#816)
upgrade conform to v0.1.0-alpha.14 (#825)
fix CHANGELOG (#814)
prepare release v0.1.0-beta.1 (#811)
publish gce images with releases (#809)
upgrade conform to v0.1.0-alpha.13 (#808)
use pull_request event for GitHub action (#805)
fix GitHub action (#804)
add GitHub action to enforce conform policies (#803)
build xfsprogs before binaries (#197)
seed math.rand PRNG on startup in every service (#801)
prepare release v0.1.0-beta.0 (#792)
disable e2e (#769)
remove ready plugin from CoreDNS (#764)
fix drone make command for basic and E2E integration tests (#763)
update floating IPs for E2E test (#762)
add e2e test (#736)
bump k8s version in makefile (#758)
tidy modules and verify module tidyness on build (#757)
update toolchain images (#754)
don't run tests in parallel across packages (#748)
improve test stability for containerd tests (#733)
add google group to readme (#730)
update artifact destination (#202)
download official gitmeta to BINDIR (#717)
address flaky tests instability (#713)
prepare release v0.1.0-alpha.28 (#687)
enable GOPROXY for go modules (#703)
improve the basic integration test (#685)
prepare release v0.1.0-alpha.27 (#671)
prepare release v0.1.0-alpha.26 (#652)
workaround flaky tests (#651)
remove AMI publish step (#650)
fix creation of syslinux config file (#639)
set PACKER_LOG=1 in AMI build (#637)
add env vars required for AMI publishing (#635)
publish AMIs on tags (#633)
move osinstall to cmd (#620)
prepare release v0.1.0-alpha.25 (#615)
build iso image (#616)
Fix kubeadm warnings (#612)
update codecov project threshold to 17% (#609)
fix install command in packer template (#603)
add make target for building AMIs (#602)
update example outputs in README (#600)
prepare release v0.1.0-alpha.24 (#598)
Make buildkit cache OS dependent (#595)
run tests before linting (#206)
prepare v0.1.0-alpha.13 release (#210)
add slack notification to drone (#589)
disable codecov patch status (#588)
add codecov configuration file (#587)
add helper script for pushing images (#233)
prepare release v0.1.0-alpha.23 (#565)
Update kernel image (#564)
pin protoc-gen-go to v1.2.0 (#235)
use the rootfs-base and initramfs-base images for builds (#558)
add slack invite badge (#555)
ignore checksum files create in release (#550)
remove modules from build output (#548)
remove release target in favor of build target (#547)
optimize the build for pull requests and tags (#546)
use gitmeta for image tag (#545)
improve drone parallel steps (#544)
fetch git tags (#543)
add BUILDKIT_HOST env var to release step (#542)
prepare release v0.1.0-alpha.22 (#541)
add github-release plugin (#540)
add dev-test make target to quickly re-run unit-tests (#539)
remove travis integration (#535)
push images for all branches (#534)
move codecov to drone build (#533)
split 'base' target, run tests in docker container (#528)
don't crate /lib/modules in symlink.sh (#529)
create /lib/modules (#527)
keep buildkitd cache as local volume (#522)
fix push step (#526)
push images for master branch (#525)
add drone build (#523)
enforce go.mod completeness and better buildkit cache (#520)
clean up outer variable used in inner func (#519)
refactor container image import code to avoid panics (#518)
provide /etc/resolv.conf to kubelet & kubeadm (#493)
rework process runner, add tests and stop method (#506)
add goreportcard badge (#516)
upgrade golangci-lint to v1.16.0 (#515)
expose crypto package (#512)
add codecov integration (#510)
export coverage info from unit-tests (#505)
prepare release v0.1.0-alpha.21 (#504)
add basic integration test (#502)
add /var/log as a volume to docker platform (#503)
add container for development (#501)
fixups for ProcessLog (#494)
export vmlinux kernel (#500)
run lint and test first (#496)
refactor and dry up process runner (#495)
take osctl/kubectl out of docker-compose (#492)
fixes for talos in docker-compose environment (#488)
add release target to Makefile (#490)
make provided certificateKey 32 bytes (#489)
switch back docker image org name to 'autonomy' (#487)
fix Twitter badge (#486)
remove static images directory (#485)
move docs to a dedicated repo (#484)
remove 'Autonomy' from os-release (#483)
move website to netlify (#482)
upgrade DHCP package (#481)
update org to new name (#480)
expose userdata and osctl client packages (#471)
prepare release v0.1.0-alpha.20 (#478)
report errors in osctl cli in a consistent way (#477)
DRY userdata Kubeadm struct marshal/unmarshal (#475)
split ignorePreflightErrors as settings on its own (#474)
use protobuf compiler from the toolchain image (#468)
improve error reporting in osctl cli (#467)
add gpt scope (#239)
prepare release v0.1.0-alpha.19 (#448)
upgrade Golang to v1.12.0 (#452)
upgrade conform (#440)
update go modules (#429)
create images that consider the size of /var (#441)
fix git commit hook (#431)
improve Makefile for newcomers (#419)
fix installer image name (#394)
fix Travis double builds (#380)
upgrade conform to v0.1.0-alpha.10 (#379)
upgrade golangci-lint to v1.14.0 (#366)
prepare v0.1.0-alpha.18 release (#346)
remove GPG requirement (#341)
prepare v0.1.0-alpha.17 release (#339)
add CONTRIBUTING.md (#337)
add build toolchain to makefile (#338)
update slack room (#332)
add slack notification to travis (#330)
prepare v0.1.0-alpha.16 release (#331)
reduce xz compression level of initramfs (#252)
update README with a link to the documentation (#327)
update README badges (#326)
add travis config (#321)
pin AWS AMI (#325)
update go packages (#324)
update conform config (#322)
use buildkitd for builds (#320)
use the toolchain for go builds (#317)
improve build time (#315)
add nolint annotation (#313)
remove redundant tasks in build (#311)
use the TAG var for container tags (#305)
output a raw image (#306)
enforce commit and license policies (#304)
prepare v0.1.0-alpha.15 release (#301)
remove unneeded files from initramfs (#299)
use the existing docker install for AMI builds (#297)
use buildkit for builds (#295)
remove toolchain and kernel builds (#290)
prepare release v0.2.0-alpha.7
prepare v0.1.0-alpha.14 release (#277)
add proposals template (#590)
*: use https wherever possible in source URLs (#109)
*: update conform commands (#150)
*: build AMI (#83)
*: upgrade Go to v1.11.0 (#145)
*: update generated files (#110)
ci: fix build script (#248)
ci: Update buildkit v0.5 (#594)
ci: modularize integration test (#722)
ci: download golangci-lint only once (#802)
ci: apply manifests and wait for healthy nodes (#580)
ci: Add e2e promotion pipeline
ci: Only push latest tags if branch is master.
ci: Update buildkit to 0.4 (#538)
ci: add pod resource requests and limits (#247)
ci: add brigade configuration (#166)
conformance: add usage to sonobuoy script (#156)
conformance: sonobuoy script and kube-bench job (#154)
conformance: remove old conformance tasks (#155)
conformance: fix output path of sonobuoy (#329)
generate: reduce the size of artifacts (#52)
image: push docker images (#131)
image: upgrade Packer to v1.3.1 (#163)
init: rearrange phase handling to push shutdown to main
initramfs: update generated code (#91)
initramfs: disable cgo for osctl (#113)
machined: implement process reaper for PID 1 machined process
machined: Increase pid_max to 262k
machined: Clean up unnecessary ticker alloc
networkd: Ignore bonded interfaces without config
networkd: Report on errors during interface configuration
rootfs: cleanup include and share directories (#28)
tools: use Go compiler from toolchain image (#460)

Core

generate: use first unused loopback device (#112)

Docs

add a description of endpoints and nodes
describe talos upgrade
fix AWS guides
address small nits
update config reference docs
add redirect for /docs/latest
fix small CSS issues
use grid instead of flexbox
improve the config reference documentation
improve search bar
address small nits
add robots.txt and fix sitemap.xml
fix config reference types links
move to gridsome
link container images to our repository
fix latest tag
add link to latest docs
small fixes for the config docs and air-gapped
add guide on setting up air-gapped environment with images
add note on settings endpoints on MacOS
remove second meeting from README
fix cluster name in docker docs
add note around link-local addressing
add ghcr.io to the registry cache docs
add v0.7 docs
add recommneded settings in overview
update upgrade guide with talosctl upgrade-k8s
update 0.6 links
graduate v0.6 docs
add Kubernetes upgrade guide
add reset doc
add QEMU provisioner documentation
fix download link
use latest talosctl download link
update worker creation flags for azure docs
update firecracker for new home of tc-redirect-tap plugin
digital rebar docs
add local registry cache documentation
update firecracker with one more CNI plugin
specs added
specs added
extend contribution doc
extend contribution doc
add v0.6 docs
add kernel options to firecracker reqs
remove repeated component in the Arges architecture image
add talosctl docs document
fix a few minor styling issues
make v0.5 docs the default
fix markdown
add metal overview diagram
fix broken links in components pages (fixes #2117)
add some information about Arges and expand the bare metal section a bit
overview of talos components
add a sitemap and Netlify redirects
adjust docs layouts and add tables of contents
update copyright date
backport intro text to 0.3 and 0.4 docs
fix netlify deep linking for 0.5 docs by generating fallback routes
add 0.5 pre-release docs, add linkable anchors, other fixes
add install and troubleshooting section in firecracker getting started
improve CLI menu and metal docs
default to v0.4
add firecracker documentation
sidebar improvements and content organization
Add example of a VLAN configured device.
add bare-metal install example yaml
update the website generator's npm packages
add a link to the Talos Systems company site to the OSS site's header
add section navigation to theme (#176)
remove invalid field from docs
fix machined component
update metal section
remove pre-release from v0.3 docs
add missing docs
reorganize components sidebar and add ntpd
update osctl kubeconfig references
simplify corporate proxy
update generated osctl documentation
update with new cni abilities
clarify vmware instructions
add automated upgrades proposal
fix documentation link
add matchbox getting started guide
Add examples to networkd
update gcp docs
Update azure doc
add docs command to osctl
add a project dropdown
remove stale docs
fix proxy Dockerfile example
disable PurgeCSS
add customization guide for running behing a proxy
add autogenerated config reference
fix roadmap layout
update landing page
add public roadmap
Add machine.env section
various layout and responsiveness fixes
remove v0.2 docs
fix list-style-position
add customization guide
add VMware docs to menu
add troubleshooting guide on common PKI scenarios
add note on CRNG initialization
fix Digital Ocean docs
more whitespace, wording, and responsiveness changes
responsiveness fixes and wording changes
update getting started guide
add v0.3 AWS guide
improve asciinema casts
remove header animation
make the footer bigger
improve landing page terminal
add ephemeral feature note
add API examples to the landing page
improve landing page
make the sidebar sticky
change doc content margins and padding
move docs version dropdown to docs page
use horizontal containerd logo
add FAQs page
add community dropdown
improve dropdown menu
show background only on landing page
add landing page
add v0.3 boilerplate
add documentation website
some docs improvements based on community feedback (try 2)
Add machine config docs
add machine configuration proposal
Add Azure docs
add project layout standards
minor spelling corrections.
target developers in the README and users in the docs (#791)
update getting started guide (#787)
add use cases section (#786)
fix the everytimezone.com link (#778)
update menu (#775)
improve description and layout (#774)
refresh getting started guide (#773)
rename Google Cloud to GCP (#772)
bring in missing changes from docs repo (#771)
move docs repo to talos repo (#770)
change meeting times to 24 hour format (#675)
add Zoom meeting schedule to README (#674)
fix typo in README.md (#655)
update README.md with drone build status (#552)
refer to talos as an operating system (#517)
remove ip=dhcp flag from documentation (#428)
improve contributing documentation (#418)
properly wrap layouts in html/body tags (#411)
add Twitter badge to README (#405)
add contact info to README (#392)
add comparison to similar distributions (#352)
fix Google Cloud example (#391)
fix badge for MPL license (#371)
fix typos in README.md and CONTRIBUTING.md (#370)
update master configuration documentation (#359)
add kubeadm mention in README (#344)
improve the README (#333)
update README (#302)
update docs for new year (#300)
add Xen example (#193)
fix typos (#188)
improve configuration documentation (#186)
add rendered files (#183)
improve search result previews (#182)
add search (#181)
improve sidebar style (#180)
fix CDN to use https (#179)
add navbar to theme (#178)
update CSS for small screens (#177)
add documention (#158)
apid: Add apid docs

Feat

detect if an install has already occurred (#549)
upgrade packages
add ISO support
add webconfig service
build talosctl-cni-bundle, use it in talosctl for QEMU
skip resizing ephemeral partition if not required
allow specifying user-disks in talosctl cluster create
bump CoreDNS to 1.7.0
bump Linux to 5.8.16, enable mpt3sas driver
bump CoreDNS to 1.7.0
encode comments as part of talosctl generated configs
extend etcd health check on upgrade
wipe disks faster in the installer
upgrade Kubernetes to 1.19.3
support MTU and route changes for DHCP
bump packages for Linux 5.8.15 and containerd 1.4.1
support metric values for DHCP
bump packages version for the kernel with BBR TCP congestion algo
handle unsupported commands being called for docker
support disk usage command in talosctl
bring in install-cni & pod-checkpointer from extras packages
implement talos.shutdown=[halt|poweroff] kernel argument
add etcd API
allow disabling NoSchedule on master nodes
colorize output of cluster health checks
pull kubeconfig from the cluster on successful cluster create
use kubeconfig merge in talosctl kubeconfig by default
support --registry-insecure-skip-verify for cluster create
show cluster state when talosctl cluster create finishes
support custom filename for talosctl kubeconfig
add support for disabling time
add ApplyConfiguration API
validate cluster DNS name
build Talos images/artifacts for amd64/arm64
bump default resource limits for talosctl cluster create
add default install image
add images command
ugrade Linux kernel to 5.8.10
allow for link local networking
use architecture-specific image for core k8s components
update Flannel to 0.12, support for arm64
upgrade kubernetes to 1.19.1
implement command talosctl upgrade-k8s
use latest packages
upgrade runc to v1.0.0-rc92
upgrade containerd to v1.4.0
remove ISO support
add grub bootloader
upgrade etcd to 3.4.12
provide option to run Talos under UEFI in QEMU
update linux to 5.8.5
update kubernetes to v1.19.0
make boostrap via API default choice in talosctl cluster create
upgrade Linux to v5.7.15
upgrade etcd to 3.4.10
add persist flag to gen config
add dynamic config decoder
taint master nodes with NoSchedule taint
upgrade Kubernetes to v1.19.0-rc.3
qemu provisioner
pull in kernel with fuse support
force nodes to be set in talosctl commands using the API
upgrade etcd to 3.3.22 version
make partitions on additional disk without size occupy full disk
implement talosctl dashboard command
implement server-side API for cluster health checks
upgrade Kubernetes to v1.19.0-rc.0
add names to tasks and phases
merge mode in talosctl kubeconfig
print crash dump in talosctl cluster create on failure
uncordon nodes automatically on boot
add round-robin LB policy to Talos client by default
implement API access to event history
implement service events
upgrade runc to v1.0.0-rc90
upgrade Linux to v5.7.7
upgrade containerd to v1.3.6
add /system directory
implement circular buffer for system logs
allow ability to create dummy nics
add rollback command
add open-iscsi
update linux kernel (with 32 bit support) and talos pkgs for v0.6
allow recovery at all times
update kubernetes to 1.19.0-beta.1
update k8s and sonobuoy versions
add rollback API
allow reset API at all times
adjust time properly in timed via adjtime()
add LVM2
implement simplified client method to consume events
upgrade Linux to v5.6.13
add events API
add support for file scheme
enable rpfilter
add bootstrap API
add recovery API
allow dual-stack support with bootkube wrapper
add commands talosctl health/crashdump
disable kubelet ro port
make machine config persist by default
add extra headers to fetch of extraManifests
upgrade Go to 1.14.2
upgrade Linux to v5.5.15
add BNX drivers
introduce ability to specify extra hosts in /etc/hosts
allow for exposing ports on docker clusters
move bootkube out as full service
upgrade kubernetes to 1.18
make --wait default option to talosctl cluster create
update bootkube
add usb storage support
initial work for supporting vlans
build talosctl for ARM v7
build talosctl for ARM64
rename osctl to talosctl
add support for --with-debug to osctl cluster create
split osctl commands into Talos API and cluster management
upgrade Go to version 1.14.1
update talos base packages
add debug logs to networkd health check
respect panic kernel flag
allow for persistence of config data
split routerd from apid
make admin kubeconfig cert lifetime configurable
add function for mounting a specific system disk partition
generate kubeconfig on the fly on request
support proxy in docker buildx
support sending machine info
add reboot flag to reset API
implement registry mirror & config for image pull
update gcc to 8.3.0, drop gcompat (#433)
add blockd service (#172)
update kernel
allow ability to customize containerd
allow for bootkube images to be customized
upgrade kubernetes version to 1.17.1
allow additional manifests to be provided to bootkube
upgrade Linux to v5.4.11
upgrade Linux to v5.4.10
add a basic architectural diagram and a call to action
enable DynamicKubeletConfiguration
Upgrade bootkube
support configurable docker-based clusters
upgrade linux to v5.4.8
add installer command to installer container
upgrade Linux to v5.4.5
add support for tftp download
humanize timestamp and size in osctl list output
add support for tailing logs
support specifying CIDR for docker network
osctl bash/zsh completion support
implement streaming mode of dmesg, parse messages
add create and overwrite file operations
add config nodes command
Upgrade kubernetes to 1.17.0
add security hardening settings
rename confusing target options, --endpoints, etc.
make osd.Dmesg API streaming
add domain search line to resolv.conf
allow configurable SANs for API
allow ability to specify custom CNIs
add support for osctl logs -f
add ability to append to existing files with extrafiles
upgrade Linux to v5.3.15
add universal TUN/TAP device driver support
use containerd-shim-runc-v2
upgrade containerd to v1.3.2
osctl logs now supports multiple targets
support output directory for osctl config generate
support client only version for osctl
allow deep-linking to specific docs pages
embed the kubeadm config (#205)
support force flag for osctl kubeconfig
enable webhook authorization mode
use grpc-proxy in apid
upgrade packages
add Google Analytics tracking to the project website
enable aggregation layer
atomic partition table operations (#234)
add IMA policy
enable IMA measurement and appraisal
add read API
allow sysctl writes
upgrade packages
allow extra arguments to be passed to etcd
Add context key to osctl
Add support for resetting the network during bootup
implement grpc request loggging
Add support for defining ntp servers via config
Add meminfo api
Disable networkd configuration if ip kernel parameter is specified
Add support for streaming apis in apid
udevd service (#231)
Add support for setting container output to stdout
add metadata file to boot partition
output machined logs to /dev/kmsg and file
add timestamp to installed file
create cluster with default PSP
Add support for creating VMware images
use Ed25519 public-key signature system
upgrade Kubernetes to 1.16.2
lock down container permissions
add support for Digital Ocean
Add retry on get kubeconfig
Add network api to apid
Add time api to apid
Add APId
detect gzipped machine configs
Add node metadata wrapper to machine api
upgrade Kubernetes to v1.13.1 (#291)
allow specifcation of full url for endpoint
add config validation task
add Runtime interface
remove proxyd
use the unified pkgs repo artifacts
add external IP discovery for azure
add retry package
output cluster network info for all node types
default docker based cluster to 1 master
add CNI, and pod and service CIDR to configurator
use bootkube for cluster creation
add configurator interface
add etcd service
Discover platform external addresses
Add kubeadm flex on etcd if service is enabled
add etcd service to config
Add etcd ca generation to userdata.Generate
discover control plane endpoints via Kubernetes
Allow env override of hack/qemu image location
allow Kubernetes version to be configured
use kubeadm to distribute Kubernetes PKI
write audit policy instead of using trustd
add aescbcEncryptionSecret field to machine config
return a struct for processes RPC
default processes command to one shot
upgrade Kubernetes to v1.16.0
return a data structure in version RPC
upgrade Kubernetes to v1.16.0-rc.2
upgrade Kubernetes to v1.16.0-rc.1
use Containerd as CRI (#292)
move node certificate to tmpfs
set expiry of certificates to 24 hours
Allow spec of canonical controlplane addr
allow network interface to be ignored
configure interfaces concurrently
run installs via container
upgrade kubernetes to v1.16.0-beta.1
perform upgrades via container
generate and use v1 machine configs
add ability to pass data on event bus
add filesystem probing library (#298)
import core service containers from local store (#309)
add sequencer interface
add overlay task
use BLKPG ioctl for partition events
allow specification of additional API SANs
run dedicated instance of containerd for system services
mount /sys/fs/bpf
add standardized command runner
Add gRPC server for ntp
use musl libc (#316)
rename DATA partition to EPHEMERAL
Allow hostname to be specified in userdata
upgrade Linux to v5.2.8
remove the machine config on reset
upgrade kubernetes to v1.16.0-alpha.3
bump k8s version to v1.15.2
upgrade containerd to v1.2.2 (#318)
break up osctl cluster create and basic/e2e tests
upgrade Kubernetes to v1.13.2 (#319)
run rootfs from squashfs
enable missing KSPP sysctls
move df API to init
attempt to connect to all trustd endpoints when downloading PKI
set default mtu for gce platform
allow mtu specification for network devices
allow specification of mtu for cluster create
add machined
disable session tickets (#334)
use new pkgs for initramfs and rootfs
add install flag for extra kernel args
update kernel
Use individual component steps for drone
upgrade Kubernetes to v1.13.3 (#335)
add gcloud integration (#385)
upgrade containerd to v1.2.4 (#395)
change AWS instance type to t2.micro (#399)
enable debug in udevd service (#783)
upgrade musl to 1.1.21 (#401)
use eudev for udevd (#780)
add support for upgrading init nodes (#761)
upgrade linux to v4.19.23 (#402)
add route printing to osctl (#404)
add osinstall cli utility (#368)
add config flag to osctl (#413)
add hostname to node certificate SAN (#415)
add automated PKI for joining nodes (#406)
add TALOSCONFIG env var (#422)
create certificates with all non-loopback addresses (#424)
leave etcd before upgrading (#702)
allow user specified IP addresses in SANs (#425)
add DHCP client (#427)
upgrade Kubernetes to v1.15.0-beta.1 (#696)
add arg to target nodes per command (#435)
add dosfstools to initramfs and rootfs (#444)
add docker-os make target, Kubeadm.ExtraArgs, and a dev Makefile (#446)
add container based deploy support to init (#447)
log to stdout when in container mode (#450)
add plural alias of service command (#670)
dd bootloader components (#438)
remove DenyEscalatingExec admission plugin (#457)
use osctl in installer (#654)
add bootstrap token package (#657)
use github.com/mdlayher/kobject (#653)
install bootloader to block device (#455)
add basic ntp implementation (#459)
add support for UEFI (#642)
improve package for /proc/cmdline parsing and management (#645)
add ability to create multiple entries in extlinux.conf (#636)
add power off functionality (#462)
remove EC2 verification step (#631)
add helper package for cordon and drain (#626)
upgrade Linux to v4.19.40 (#630)
update toolchain (#628)
upgrade containerd to v1.2.5 (#463)
update partition layout to accomodate upgrades (#621)
Add additional kubernetes certs (#619)
upgrade Linux to v4.19.31 (#464)
add support for ISO based installations (#606)
Add calico manifests for local dev setup (#608)
Validate userdata (#593)
upgrade Kubernetes to v1.14.0 (#466)
upgrade runc to v1.0.0-rc.7 (#469)
add packet support (#473)
add network configuration support (#476)
add support for extra disk management (#524)
upgrade Kubernetes to v1.14.1 (#530)
add ability to generate userdata secrets (#581)
upgrade Linux to v4.19.34 (#531)
upgrade containerd to v1.2.6 (#532)
add package for generating userdata (#574)
add shutdown command (#577)
log the xfs_growfs of the data partition (#537)
remove blockd (#536)
upgrade kernel to v5.9.3
*: update Kubernetes to v1.10.0 (#26)
*: run system services via containerd (#149)
*: upgrade Kubernetes to v1.11.2 (#139)
*: upgrade all core components (#153)
*: upgrade Kubernetes to v1.13.0-alpha.1 (#162)
*: update to linux 4.15.13 (#30)
*: mount ROOT partition as RO (#11)
*: add version command (#85)
*: upgrade Kubernetes to v1.13.0-alpha.2 (#173)
*: upgrade Kubernetes to v1.13.0-alpha.3 (#189)
*: use CRI-O as the container runtime (#12)
*: HA control plane (#144)
*: upgrade Containerd to v1.2.0 (#190)
*: upgrade kubernetes to v1.11.0-beta.0 (#92)
*: upgrade Kubernetes to v1.11.1 (#123)
*: automate signed certificates (#81)
*: run the kubelet in a container (#122)
*: add a debug pod manifest (#120)
*: upgrade Kubernetes to v1.10.2 (#61)
*: dynamic resolv.conf (#86)
*: raw kubeadm configuration in user data (#79)
*: initial implementation (#2)
*: docker as an optional container runtime (#57)
*: upgrade to Kubernetes v1.10.1 (#50)
*: update Kubernetes to v1.10.0-rc.1 (#25)
*: list and restart processes (#141)
*: osctl configuration file (#90)
*: enable IPVS (#42)
ami: enable ena support (#164)
ci: enable nightly e2e tests (#716)
conformance: add conformance image (#126)
conformance: add quick mode config (#129)
generate: enable kernel logging (#58)
generate: set RAW disk sizes dynamically (#71)
hack: add osctl/kubelet dev tooling and document usage (#449)
hack: use ubuntu 18.04 image in debug pod (#135)
hack: add CIS Kubernetes Benchmark script (#134)
image: make AMI regions a variable (#137)
image: build AMI with random.trust_cpu=on (#287)
image: generate image (#114)
init: Implement 'ls' command (#721)
init: configurable kubelet arguments (#99)
init: Add azure as a supported platform
init: update 'waiting' state descritpion when conditions change (#698)
init: implement complete API for service lifecycle (start/stop)
init: Prioritize usage of local userdata (#694)
init: expose networkd as goroutine-based server (#682)
init: implement service dependencies, correct start and shutdown (#680)
init: Add support for control plane join config (#700)
init: Add initToken parameter to userdata (#664)
init: don't print kubeadm token (#74)
init: use CoreDNS by default (#39)
init: implement healthchecks for the services (#667)
init: add node join functionality (#38)
init: unify filesystem walkers for ls/cp APIs (#779)
init: implement services list API and osctl service CLI (#662)
init: platform discovery (#101)
init: add label and force options for xfs (#244)
init: add support for installing to a device (#225)
init: implement health checks for services (#656)
init: enable PSP admission plugin (#230)
init: reboot node on panic (#284)
init: create CNI mounts (#226)
init: add calico support (#223)
init: core health check package (#632)
init: user data (#17)
init: service env var option (#219)
init: verify EC2 PKCS7 signature (#84)
init: add VMware support (#200)
init: log to /dev/kmsg (#214)
init: add file creation option (#132)
init: add NoCloud user-data support (#209)
init: Add support for stopping individual services (#706)
init: enforce use of hyperkube and Kubernetes version (#207)
init: move 'ls' API to init from osd (#755)
init: enforce CIS requirements (#198)
init: Add service stop api (#708)
init: gRPC with mutual TLS authentication (#64)
init: set kubelet log level to 4 (#13)
init: Add support for hostname kernel parameter (#591)
init: Add support for kubeadm reset during upgrade (#714)
init: enforce KSPP kernel parameters (#585)
init: debug option (#138)
init: mount partitions dynamically (#169)
init: provide and endpoint for getting logs of running processes (#9)
init: load only the images required by the node type (#582)
init: implement init gRPC API, forward reboot to init (#579)
init: basic process managment (#6)
init: implement graceful shutdown of 'init' (#562)
init: run udevd as a container (#601)
init: Add upgrade endpoint (#623)
initramfs: check for self-hosted-kube-apiserver label (#130)
initramfs: Add support for specifying static routes (#513)
initramfs: Kubernetes API reverse proxy (#107)
initramfs: add support for refreshing dhcp lease (#454)
initramfs: retry userdata download (#283)
initramfs: rewrite user data (#121)
initramfs: API for creating new partition tables (#227)
initramfs: set the platform explicitly (#124)
initramfs: Add kernel arg for default interface
kernel: upgrade Linux to v4.17.10 (#128)
kernel: add low level SCSI support (#215)
kernel: add vmxnet3 support (#213)
kernel: add igb and ixgb drivers (#221)
kernel: add virtio support (#208)
kernel: add raw iptables support (#222)
kernel: upgrade Linux to v4.19.1 (#192)
kernel: configure Kernel Self Protection Project recommendations (#152)
kernel: enable NVMe support (#170)
kernel: enable nf_tables and ebtables modules (#41)
kernel: upgrade Linux to v4.17.15 (#140)
kernel: upgrade Linux to v4.19.10 (#293)
kernel: compile with Linux guest support (#75)
kernel: enable Ceph (#105)
kernel: upgrade Linux to v4.18.5 (#147)
kernel: use LTS kernel v4.14.34 (#48)
machined: filter actions stop/start/restart on per-service level
networkd: Add grpc endpoint
networkd: Add health api
networkd: Make healthcheck perform a check
networkd: Add support for kernel nfsroot arguments.
networkd: Add support for bonding
networkd: Add support for custom nameservers
osctl: allow configurable number of masters to cluster create
osctl: add df command (#569)
osctl: add ability to create docker based clusters (#584)
osctl: handle ^C by aborting context (#693)
osctl: expose osd and api server ports on master-1 (#592)
osctl: add config generate command
osctl: improve output of stats and ps commands (#788)
osctl: Add osctl top (#560)
osctl: output namespace (#312)
osctl: add stats command (#314)
osctl: add flag for number of workers to create (#625)
osctl: implement 'cp' to copy files out of the Talos node (#740)
osd: implement container metrics for CRI inspector (#824)
osd: Add ntpd client
osd: Enable hitting multiple OSD endpoints
osd: node reset and reboot (#142)
osd: extend Routes API (#756)
osd: implement CRI inspector for containers (#817)
proxyd: Add gRPC server
rootfs: upgrade cri-o and cri-tools (#35)
rootfs: upgrade crictl to v1.12.0 (#191)
rootfs: upgrade CRI-O to v1.10.1 (#70)
rootfs: upgrade Docker to v17.03.2-ce (#111)
rootfs: install cut (#106)
rootfs: upgrade Kubernetes to v1.11.0-beta.1 (#104)
trustd: use a token instead of username and password (#586)

Fix

clean up docs page scripts in preparation for 0.5 docs
update packages
remove log.Fatal from maintenance service
address issues in webconfig
prevent blind mode boot
read/write human readable representations for bytes and octals
bump type for DiskSize to be 64-bit
properly initialize manifest in user disks creation
remove default time server in time command
retry connection refused errors while bootstrapping a cluster
re-implement upgrade (install) with preserve
revert "feat: bump CoreDNS to 1.7.0"
stop CRI pods on upgrade with preserve
stop etcd on any path on upgrade
ignore transient errors in upgrade Kubernetes code
stop ignoring EINVAL on mount
implement preserving contents of partition on install
correctly calculate output width in colored health reporter
update handling of ntp disable
address nil pointer panic
improve logging and errors for extra manifests by URL
random failures in cluster health checks
apply --removable option always to get standard UEFI filename
nil pointer panic in talosctl dashboard
make CLI context exit immediately on second ^C
registry auth config building
provide unique username in generate kubeconfig
make Flannel CNI image follow $PKGS version
retry container image import
update one more places which had stale reference for constants
update the docs to fix the lint-markdown
use images package in integration tests
move installer image variables out of machinery
enable --removable options for GRUB
retry image pulling, stop on 404, no duplicate pulls
address node package update
validate cluster endpoint
improve error message on empty config
gracefully handle invalid interfaces in bond
set environment variable for etcd on arm64
don't enforce k8s version in talosctl cluster create by default
tell grub to use console output
update vmware image and platform
don't abort reboot sequence on bootloader meta failure
default endpoint to 127.0.0.1 for Docker/OS X
remove udevd debug flag
update permissions for directories and files created via extraFiles
allow static pod files
change apid container image name to expected value
add syslinux to create ISO
pass config via stdin
handle bootkube recover correctly, support recovery from etcd
run health check for etcd service with Get API
ignore eth0 interface in docker provisioner
update e2e scripts to work with python3
retry non-HTTP errors from API server
update qemu launcher on arm64 to boot Talos properly
update AMI link to latest
workaround edge case for etcd re-injection on bootstrap
update status when adjusting the time
fail ntpd service if initial time sync fails
bump timeouts
generate admin kubeconfig with default namespace
log interface on validation error
skip removing CRI state when doing upgrade with preserve
skip vmware platform for !amd64
log messages properly when sequence/phase/task fails
ignore sequence lock errors in machined
wrap errors in upgrade API handler
update container name in docker crashdump
improve node uncordon tasks
update the control plane cluster health check
update timeouts on service startup to match boot timeout
implement Unload() for services to make sure bootkube runs always
print correct sequence/task duration
provide default DNS domain to talosctl cluster create
report the correct containerd version
use kubernetes version in config generator
make installer re-read partition table before formatting
attempt to pull machine config from mounted disk in azure
isolate kubelet /run directory
check if machine networking is nil
detect failed bootkube run properly
delete manifests dir on bootkube failure
detect if partition table is missing
revert default boot properly
allow for using /dev/disk/* symlinks
skip services when in container mode
activate logical volumes
update LVM2
allow node names
make services depend on timed
correctly handle IPv6 address in apid
prevent panic on nil pointer in ServiceInfo method
bump service wait to ten minutes
allow all seccomp profile names
wrap etcd address URLs with formatting
run machined API as a service
respect nameservers when using docker cluster
update Events API response type to match proxying conventions
register event service with router
refactor client creation API
update kernel package
write machined RPC logs to file
disable AlwaysPullImages admission plugin (#273)
ipv6 static default gateway not set if gateway is a LL unicast address
ensure disk is not busy
pass dev path to mkfs
prevent formatting the ephemeral partition twice
set ephemeral partition to max size
ensure ordering of interfaces when deciding hostname
resolve race condition in createNodes
add hpsa drivers
add bnx2 and bnx2x firmware
wait for system-containerd to become healthy before proceeding
mount TLS certs into bootkube container
make sure Close() is called on every path
delete tag on revert with empty label
move empty label check
wait for USB storage
ignore EINVAL on unmounting when mount point isn't mounted
make upgrades work with UEFI
don't use ARP table for networkd health check
update k8s to 1.17.3
update rtnetlink checks for bit masks
respect dns domain from machine config
ensure printing of panic message
add debug option to v1alpha1 config
skip links without a carrier
ensure hostname is never empty
ensure CA cert generation respects the hour flag
ensre proxy is used when fetching additional manifests for bootkube
unmount bind mounts for system (fixes upgrade stuck on disk busy)
refresh proxy settings from environment in image resolver
default reboot flag to false
add reboot flag to reset command
stop firecracker launcher on signal
fix reset command
allow kublet to handle multiple service CIDRs
validate install disk
PodCIDR, ServiceCIDR should be comma sets
don't proxy gRPC unix connections
do not add empty netconf
bind etcd to IPv6 if available
symlink kubernetes libexec directory (#294)
follow symlinks
implement kubelet extra mounts
parse correctly kernel command line missing DNS config
retry system disk busy check
correctly split lines with /dev/kmsg output
re-enable control plane flags
leave etcd after draining node
install sequence stuck on event bus
block when handling bus event
stop race condition between kubelet and networkd
update networkd permissions
raw image output (#307)
use version tag for container tags (#308)
Update bootkube to include node ready check
Ensure assets directory does not exist
add Close func in remote generator
refuse to upgrade if single master
update kernel version constant
shutdown on button/power ACPI event
set kube-dns labels
check for installer image before proceeding with upgrade
raise default NOFILE limit
make the CNI URL error better
set the correct kernel args for VMware
fix error format
use the correct mf file name
Minor adjustments to makefile (#340)
use the correct TLD for the container version label
don't log token metadata field in grpc request log
add libblkid to the rootfs (#345)
fix output formats
extend list of kmsg facilities
verify system disk not in use
Reset default http client to work around proxyEnv
update osctl list to report node name
issues discovered by lgtm tool
use dash for default talos cluster name in docker
use specified kubelet and etcd images
fail on muliple nodes for commands which don't support it
mount as rshared
allow initial-cluster-state to be set
kill POD network mode pods first on upgrades
improve the project site meta description
response filtering for client API, RunE for osctl
update node dependencies for project website
append domainname to DHCP-sourced hostname
strip line feed from domainname after read
don't set br_netfilter sysctls in container mode
add missing sysctl params required by containerd
add initialization for userdata download (#367)
don't use netrc
run go mod tidy
error reporting in osctl kubeconfig
make retry errors ordered
return a unique set of errors on retry failure
mount /run as shared in container mode
close io.ReadCloser
Add hostname setting to networkd
extract errors from API response
update kernel version constant
reverse preference order of network config
provide peer remote address for 'NODE': as default in osctl
update kernel version constant
osctl panic when metadata is nil
prevent nil pointer panic
containers test by locking image to specific tag (#734)
recover control plane on reboot
ensure etcd comes back up on reboot of all members
require mode flag when validating
don't measure overlayfs
retry cordon and uncordon
require arg length of 1 for kubeconfig command
set --upgrade flag properly on installs
honor the extraArgs option for the kubelet
make logging middleware first in the list, fix duration
use the config's cluster version for control plane image
upgrade rtnetlink package
mount extra disks after system disk
remove duplicate line
recover from panics in grpc servers
pass x509 options to NewCertificateFromCSR
remove global variable in bootkube
conditionally create a new etcd cluster
Disable support for proxy variables for apid.
sleep in NTP query loop
Add host network namespace to networkd and ntpd
verify that all etcd members are running before upgrading
don't use 127.0.0.1 for etcd client
add etcd member conditionally
stop etcd and remove data-dir
use CRI to stop containers
remove 'token creds' from maintenance service
retry BLKPG operations
stop leaking file descriptors
send SIGKILL to hanging containers
be explicit about installs
add iptables to rootfs (#378)
Avoid running bootkube on reboots
check if endpoint is nil
add cluster endpoint to certificate SANs
Fix osctl version output
append localhost to cert sans if docker platform
create external IP failures as non-fatal
ensure control plane endpoint is set
set packet and metal platform mode to metal
always run networkd
run only essential services in container mode
add slub_debug=P to ISO kernel args
use talos.config instead of talos.userdata
use localhost for osd endpoint on masters
check if cluster network config is nil
retry endpoint discovery
Make updating cert sans an append operation
Use correct names for kubelet config
generate admin client certificate with 10 year expiration
always write the config to disk
marshal v1alpha1 config in String() method
update platform task to set hostname and cert SANs
set --cluster-dns kubelet flag properly
set kubelet-preferred-address-types to prioritize InternalIP
catch panics in boot go routine
set target if specified on command line
update bootkube fork to fix pod-checkpointer
ignore case in install platform check
create etcd data directory
generate CA certificates with 10 year expiration
set extra kernel args for all platforms
generate CA certificates with 1 year expiration
add kerenel config required by Cilium
ensure DNS works in early boot (#382)
log system services to /run/system/log
conditionally set log path
generate client admin cert with 1 year expiry
use /var/log for default log path
enable slub_debug=P
move to per-platform console setup
output userdata fails, ignore numcpu for kubeadm (#398)
Add retry/delay to probing device file
delay gitmeta until needed in Makefile (#407)
use ntp client constructor
translate machine.network to networking.os
write config changes to specified config file (#416)
prepend custom options for kernel commandline
remove basic integration teardown
prevent EBUSY when unmounting system disk
set default install image
increase retries for DHCP
distribute PKI from initial master to joining masters (#426)
fallback on IP address when DHCP reply has no hostname (#432)
leave etcd when upgrading control plane node
assign to existing target variable (#436)
use unique variables for CLI flags
make --target persistent across all commands
enclose target in quotes
join masters in serial (#437)
verify installation definition
name the serde functions appropriately
add missing mounts and remove memory limits (#442)
format IPv6 host entries properly
mount /dev/shm as tmpfs (#445)
revert runc to v1.0.0-rc.6 (#470)
remove static resolv.conf (#491)
enable IPv6 forwarding
enclose address in brackets gRPC client
enclose server address is bracks if IPv6
store PartitionName when on NVMe disk
stalls in local Docker cluster boot
check link state before bringing it up (#497)
create GCE disk as disk.raw (#498)
mount the owned partitions in cloud platforms
remove redundant netlink connection, use netlink.IsNotExist in init (#511)
Explicitly set upstream/forward servers for coredns in dev setup (#578)
set mtu value regardless of interface state
Run cleanup script earlier in rootfs build
mount cgroups properly
add support for trustd username and password auth back in (#604)
check proper value of parseip in dhcp
make /etc/resolv.conf writable
Only generate pki from trustd if not control plane
Truncate hostname if necessary
prefix file stat with rootfs prefix
create symlinks to /etc/ssl/certs
Fix integration of extra kernel args
use the correct param in root label check (#622)
return non-nil response in reset
allow no trustd endpoints to be specified (#634)
append probed block devices
use existing logic to perform reset
probe specified install device (#818)
Update filesystem check to open device as a device (#641)
move to crypto/rand for token gen (#794)
add libressl to rootfs (#659)
top-level docs now appear properly with sidebar (#785)
Address lint warning for unknown linter (#676)
ensure shebang at top of userdata (#695)
update hack/dev for new userdata location (#777)
don't set BUILDKIT_CACHE to empty string in Makefile (#705)
ensure index remains in bounds for ud gen (#710)
we don't need no stinkin' localapiendpoint (#741)
run basic-integration on nightly cron (#735)
provide a way for client TLS config to use Provider
Add gitmeta as dependency for push (#718)
create overlay mounts after install
*: use commit SHA on master and tag name on tags (#98)
*: generate /etc/hosts and /etc/resolv.conf (#54)
*: force the kernel to reread partition table (#88)
*: field tag should be yaml instead of json (#100)
*: create build directory (#108)
generate: use xvda instead of sda (#77)
gpt: Fix partition naming to be >8 characters
gpt: do not inform kernel of partition when writing (#237)
hack: add /etc/kubernetes to CIS benchmark jobs (#199)
hack: remove privileged options from debug manifest (#224)
image: align VERSION env var with pkg/version (#168)
image: install gzip (#272)
image: VMDK generation (#204)
init: address linter error (#146)
init: fix leaky ticker (#784)
init: node join (#195)
init: allow custom image for kubeadm (#212)
init: fix containerd healthcheck leaking memory in init/containerd (#661)
init: mount /sys into kubelet container (#660)
init: move directory creation to kubeadm pre-func (#688)
init: don't close ACPI listen handle too early (#647)
init: avoid kernel panic on recover (#216)
init: ensure VMware user data is not empty (#217)
init: unlink unix bind address (#643)
init: secret data at rest encryption key should be truly random (#797)
init: log to kmsg after /dev is mounted (#218)
init: Dont log an error when context canceled
init: retry mounts (#220)
init: Fix routes endpoint
init: start udevd with parent cgroup devices (#605)
init: consider 'finished' services to be 'up' (#699)
init: use kubeadm experimental-control-plane (#194)
init: use text/template (#228)
init: make /etc/hosts writable (#125)
init: flip concurrency of tasks/services, fix small issues
init: use PARTLABEL to identity Talos block devices (#238)
init: update probe for NVMe (#323)
init: Add modules mountpoint for kube services (#767)
init: unmount / last (#249)
init: conditionally set version in /etc/os-release (#97)
init: revert e94095b and fix bad attribute lookups (#274)
init: typo in service subnet field; pin version of Kubernetes (#10)
init: don't create the EncryptionConfig if it exists (#282)
init: no memory limit for container runtime (#289)
init: use 127.0.0.1 IP in healthchecks to avoid resolver weirdness (#715)
init: don't create CRI-O CNI configurations (#36)
init: make log handling non-blocking (#37)
init: address linter errors (#251)
init: Enable containerd subreaper
init: use /proc/net/pnp as resolv.conf (#87)
init: bad variable name and missing package (#78)
init: disable megacheck until it gains module support (#167)
init: enable hierarchical accounting and reclaim (#59)
init: remove unused code (#56)
init: missing parameter (#55)
init: add /dev and /usr/libexec/kubernetes to docker service (#160)
init: printf formatting (#51)
init: switch_root implementation (#49)
init: use the correct blkid lookup values (#243)
init: use smaller default install sizes (#240)
init: address crio errors and warns (#40)
init: read kubeadm env file (#136)
initramfs: fix case where we download a non archive file (#421)
initramfs: invalid reference to template variable (#94)
initramfs: quote -X flag (#95)
initramfs: minor fixes for booting from bare metal (#241)
initramfs: fix hardcoded version (#275)
initramfs: escape double quotes (#96)
initramfs: Allow data partition to grow
initramfs: fix printf statement (#250)
initramfs: align go tests with upstream change (#133)
initramfs: build variables (#93)
initramfs: imports (#276)
initramfs: fix bare metal install (#245)
kernel: remove slub_debug kernel param (#157)
kernel: add missing kernel config options (#236)
machined: add nil checks to metal initializer
machined: limit max stderr output, use pkg/cmd consistently
machined: Clean up installation process
machined: Add additional defaults for http transport
machined: Fix hostname value when retrieving from cloud providers
machined: Remove host mounts for specific CNI providers
networkd: Check for IFF_RUNNING on link up
networkd: Set hostname properly for dhcp when no hostname option is returned
networkd: Fix incorrect resolver settings
networkd: fix ticker leak
networkd: Make better route scoping decisions
networkd: Ignore loopback interface during hostname decision.
networkd: Fix hostname retrieval
osctl: output config without localAPIEndpoint (#665)
osctl: Generate correct config with master IPs (#681)
osctl: don't print message on first ^C (#704)
osctl: nil pointer when injecting kubernetes PKI (#187)
osctl: Fix panic on osctl df if error is returned (#646)
osctl: display non-fatal errors from ps/stats in osctl (#724)
osctl: avoid panic on empty 'talosconfig' (#725)
osctl: Fix formatting of command/args to be useful (#638)
osctl: Revert "display non-fatal errors from ps/stats in osctl (#724)" (#727)
osctl: output talosconfig on generate (#627)
osctl: ensure image is present (#599)
osctl: fix issue with downloading image (#597)
osctl: use real userdata as defaults for install
osctl: add missing flags (#479)
osctl: build Linux binary with CGO (#196)
osctl: allow '-target' flag for osctl restart (#732)
osctl: compile static binary with CGO enabeld (#328)
osd: Mount host directory for grpc sockets
osd: Fix osctl ps output (#554)
osd: read log files only on write events (#583)
osd: Use correct context in stats endpoint (#644)
osd: Read talos service logs from file (#663)
osd: Sanitize request.id for log streams (#673)
osd: Add additional capabilities for osd
osd: Fix k8s.io namespace logs (#557)
osd: consistent container ids in stats, ps and reset (#707)
proxyd: Use local apiserver endpoint (#776)
proxyd: wrap Dial addresses
proxyd: remove self-hosted label in listwatch (#782)
proxyd: Add support for dropping broken backends (#790)
proxyd: print bootstrap backend dial errors
proxyd: do not pre-bracket IPv6 backend addrs
proxyd: Fix backend deletion (#729)
rootfs: don't remove the docker binary (#119)
rootfs: install conntrack (#27)
trustd: allow hostnames for trustd endpoints

Perf

proxyd: filter listwatch and remove backend on non-running pod (#781)

Refactor

use os.Remove instead of unix.Unlink (#648)
bring more control to install.Manifest execution
extract blockdevice library
garbage collect unused constants
deduplicate packages version in Dockerfile
move udevadm trigger/settle to udevd healthcheck
extract packages loadbalancer and retry
extract cluster bootstrapper via API as common component
move external API packages into machinery/
rework pkg/grpc/tls to break dependency on pkg/grpc/gen
extract pkg/net as github.com/talos-systems/net
expose provision as public package
remove structs from config provider
make pkg/config not rely on machined/../internal/runtime
use humanize.Bytes everywhere
merge osd into machined
implement LoggingManager as central log flow processor
remove warning about missing boot partition
improve machined
use upstream bootkube
rename ntpd to timed
rename system-containerd and containerd services
don't log installer verification
move Talos client package to pkg/
include partition label when unmount fails
perform upgrade upon reboot
use go-procfs
use tls.Config as client credentials
use ConfiguratorBundle interface for config generate
unify generate type and machine type
use an interface for config data
use config struct instead of string
extract Talos cluster provisioner as common code
osctl code cleanup, no functional changes
use all validation code
rename protobuf services, RPCs, and messages
update --image shorthand flag to -i
rename project to Talos (#211)
extract TLS bits from apid main.go
set CRI config to /etc/cri/containerd.toml
simplify NewTemporaryClientFromPKI
rename virtual package to pseudo
rename version label
remove CNI bundle
rename initial network task func
rename Helper to Client
Move logs to machined
Move kubeconfig to machined
use retry package in ntpd
unify service stop on upgrade
use constants.SystemContainerdNamespace
pass runtime to initializer
align platform names with kernel args
use etcd package
improve validate flag names
use go 1.13 error wrapping
add helper func to create cert and key
improve metal platform
use control plane endpoint instead of master IPs
decouple grpc client and userdata code
rename RPCs
use reserved ports for services (#288)
use containerd exported defaults (#310)
Make userdata.Open userdata.Download consistent return types (#363)
add more runtime modes
improve installer code (#472)
restructure the project layout
improve installation reliability
split machined into phases
move setup logic into machined
Userdata.download supports functional args (#819)
improve artifact names (#499)
containerd runner refactoring and unit-tests (#551)
add unit-test for containerd image import (#553)
add stub unit-tests to non-trivial Go packages (#556)
extract 'restart' piece of the runners into wrapper runner (#559)
move osinstall into osctl (#629)
change conditions to be interface, add descriptions (#677)
fix stream chunker & provide some tests (#672)
fix filechunker not exiting on context cancel (#668)
use gRPC for interactive installation
*: address linter errors and warnings (#69)
*: move source code into src directory (#118)
*: move gRPC service to dedicated binary (#73)
image: Changing rootfs from xz -> gz (#232)
init: remove unnecessary unmount/mount (#246)
init: use 'switch' instead of long condition (#701)
init: use /root for new root path (#53)
init: add helper for getting specific kernel parameters (#596)
init: small changes to improve readability (#76)
init: Allow kubeadm init on controlplane (#658)
init: use recover builtin to avoid kernel panics (#15)
init: make baremetal consume install package (#414)
init: DRY symlink creation (#280)
initramfs: rename rotd to trustd (#148)
initramfs: verify shared mounts with kubelet (#461)
initramfs: clean up network code (#507)
initramfs: Compose Install better (#624)
networkd: Update bond config parameters to align with kernel
networkd: Replace networkd with a standalone app
networkd: Switch from rtnetlink to rtnl
ntpd: Improvements to the robustness of ntp
osctl: use UserHomeDir to detect user home directory (#749)
osctl: move cli code out of 'client' package (#692)
osctl: DRY up osctl sources by using common client setup (#686)
osd: implement container inspector for a single container (#720)
proxyd: Update multilisteners to use error chan.
rootfs: install conntrack-tools earlier in the pipeline (#31)

Release

v0.5.0-alpha.1: prepare release
v0.5.0-alpha.2: prepare release
v0.6.0-alpha.0: prepare release
v0.6.0-alpha.1: prepare release
v0.6.0-alpha.2: prepare release
v0.6.0-alpha.3: prepare release
v0.6.0-alpha.4: prepare release
v0.6.0-alpha.5: prepare release
v0.6.0-alpha.6: prepare release
v0.7.0-alpha.0: prepare release
v0.7.0-alpha.1: prepare release
v0.7.0-alpha.1: prepare release
v0.7.0-alpha.2: prepare release
v0.7.0-alpha.3: prepare release
v0.7.0-alpha.4: prepare release
v0.7.0-alpha.5: prepare release
v0.7.0-alpha.6: prepare release
v0.7.0-alpha.7: prepare release
v0.7.0-alpha.8: prepare release

Style

run gofmt (#229)

Test

bump Talos version for upgrade tests, bump Cilium version
clean up integration test code, fix flakes
add unit-test for the installer manifest
potential fix for talosctl cluster destroy being stuck
implement API for QEMU VM provisioner
re-enable Cilium e2e upgrade test
verify kubernetes control plane upgrade in provision tests
add e2e test to the provision (upgrade) tests
determine reboots using boot id
add support for PXE nodes in qemu provision library
use registry mirrors in CI
destroy clusters in e2e tests (qemu/firecracker)
bump timeout for upgrade tests
update qemu/firecracker provisioners
upgrade versions the upgrade tests are operating on
provide node discovery for cli tests via kubectl
remove apid load balancer for firecracker
add an option to bind docker to specific host IP
fix racy test ReaderNoFollow
provider correct installer kernel args for firecracker
workaround famous flaky Containerd.RunTwice test
update events test with more flow control
update tests for pkg/follow to be less time-dependent
update init node check in reset API tests
fix cli tests after load-balancing got enabled
fix sonobuoy delete
resolve old TODO item
run integration pipeline nightly
stabilize race unit-tests (circular, events)
run e2e-firecracker-short for default pipeline only
add short integration test with custom CNI
fix and improve reboot/reset tests
default to using the bootstrap API
fix race in some tests caused by SetT
improve reboot/reset test resiliency against request timeouts
update Talos versions for upgrade tests
add node name to error messages in RebootAllNodes
stabilize tests by bumping timeouts
update versions used for upgrade tests
serialize docs step execution
mark long tests as !short
add test for empty hostname option
add 'reset' integration test for Reset() API
enable upgrade tests 0.4.x -> latest
implement new class of tests: provision tests (upgrades)
fix RebootAllNodes test to reboot all nodes in one call
implement RebootAllNodes test
skip reboot tests
firecracker provisioner fixes, implement cluster destroy
provision Talos clusters via Firecracker VMs
ensure etcd is healthy on all control plane nodes
add kernel pkg tests, improve parsing (#430)
add retries to the test which verifies cluster version
fix flakey test on linear retries
fix integration version test as 'NODE:' might be missing
disable discovery-based test as it might break e2e
add integration test for full boot sequence
implement node discovery for integration tests
fix integration test for k8s version
add 'integration-test' to e2e runs
add k8s integration tests
add CLI integration test
add integration test framework
add another test case for setting kernel params (#649)
add integration tests for (most) CLI commands
ci: Add aws for e2e and conformance targets
kernel: runc check-config.sh (#82)
proxyd: Add basic suite of tests (#789)

Breaking change

in pkg/provision: now NodeRequest.Type should be set to the node type (as config can be missing now).

In talosctl cluster create add a flag to skip providing config to the nodes so that they enter maintenance mode, while the generated configs are written down to disk (so they can be tweaked and applied easily).

BREAKING CHANGE

Single node upgrades will fail in this change. This will also break the A/B fallback setup since this version introduces an entirely new partition scheme, that any fallback will not know about. We plan on addressing these issues in a follow up change.

This PR fixes a bug where we were only passing cluster.local to the kubelet configuration. It will also pull in a new version of the bootkube fork to ensure that custom domains got propogated down to the API Server certs, as well as the CoreDNS configuration for a cluster.

Existing users should be aware that, if they were previously trying to use this option in machine configs, that an upgrade will may break their cluster. It will update a kubelet flag with the new domain, but CoreDNS and API Server certs will not change since bootkube has already run. One option may be to change these values manually inside the Kubernetes cluster. However, it may prove easier to rebuild the cluster if necessary.

Additionally, this PR also exposes a flag to osctl config generate to allow tweaking this domain value as well.

110 KiB Raw Blame History