talos

Talos 1.4.1 (2023-04-27)

Welcome to the v1.4.1 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 6.1.25

Contributors

• Andrey Smirnov
• Utku Ozdemir
• Noel Georgi
• Nico Berlee

Changes

• siderolabs/talos@647c6b4ef release(v1.4.1): prepare release
• siderolabs/talos@726d8d984 feat: update Linux to 6.1.25, fix virtio on arm64
• siderolabs/talos@ab09baf3d fix: bump max inhibit delay to 20 min
• siderolabs/talos@e94a19602 fix: udevd rules trigger
• siderolabs/talos@0cd177524 fix: display correct number of machines on dashboard
• siderolabs/talos@6b6e6c9c7 feat: clean up (garbage collect) system images which are not referenced
• siderolabs/talos@254086d6d fix: support kernel userspace module loading
• siderolabs/talos@0ef60514e feat: add startup probes to controller-manager and scheduler
• siderolabs/talos@9ce238794 fix: do not show control plane status for workers on dashboard
• siderolabs/talos@b92d9965f fix: allow talosctl cp to handle special files in /proc
• siderolabs/talos@c003fce72 chore: fix container image reproducibility
• siderolabs/talos@0a00a4ea7 fix: parse errors correctly
• siderolabs/talos@447c73b05 test: submit verbose flag to e2e tests
• siderolabs/talos@bf1cfe9c8 feat: show template URL in dashboard config URL tab

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@076874a chore: resolve blockdevice symlinks

Changes from siderolabs/pkgs

• siderolabs/pkgs@0657493 chore: allow more than one commit per PR
• siderolabs/pkgs@6ddcc52 feat: update Linux to 6.1.25
• siderolabs/pkgs@a969180 feat: add multi-gen LRU kernel support

Dependency Changes

• github.com/siderolabs/go-blockdevice v0.4.4 -> v0.4.5
• github.com/siderolabs/pkgs v1.4.1-5-ga333a84 -> v1.4.1-8-g0657493
• github.com/siderolabs/talos/pkg/machinery v1.4.0 -> v1.4.1

Previous release can be found at v1.4.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0-1-g9b07505
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.8
registry.k8s.io/kube-apiserver:v1.27.1
registry.k8s.io/kube-controller-manager:v1.27.1
registry.k8s.io/kube-scheduler:v1.27.1
registry.k8s.io/kube-proxy:v1.27.1
ghcr.io/siderolabs/kubelet:v1.27.1
ghcr.io/siderolabs/installer:v1.4.1
registry.k8s.io/pause:3.6

Talos 1.4.0 (2023-04-18)

Welcome to the v1.4.0 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Bond Device Selectors

Bond links can now be described using device selectors instead of explicit device names:

machine:
  network:
    interfaces:
      - interface: bond0
        bond:
          deviceSelectors:
            - hardwareAddr: '00:50:56:*'
            - hardwareAddr: '00:50:57:9c:2c:2d'

talosctl containers

talosctl logs -k and talosctl containers -k now support and output container display names with their ids.
This allows to distinguish between containers with the same name.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

Kernel Argument talos.environment

Talos now supports passing environment variables via talos.environment kernel argument.

Example:

talos.environment=http_proxy=http://proxy.example.com:8080 talos.environment=https_proxy=http://proxy.example.com:8080

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Kernel Reset Argument

Talos now supports talos.experimental.wipe=system:EPHEMERAL,STATE kernel argument.
Talos now also supports the new GRUB boot option - "Reset Talos installation and return to maintenance mode".
Both of this options will reset EPHEMERAL and STATE partitions and will return Talos into maintenance mode after the reboot.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

talosctl netstat

Talos API was extended to support retrieving a list of network connections (sockets) from the node and pods.
talosctl netstat command was added to retrieve the list of network connections.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

New Talos API os:operator role

Talos now supports a new os:operator role for the Talos API.
This role allows everything os:reader role allows plus access to maintenance APIs:
rebooting, shutting down a node, accessing packet capture, etcd alarm APIs, etcd backup, etc.

Component Updates

• Linux: 6.1.24
• containerd: v1.6.20
• runc: v1.1.5
• Kubernetes: v1.27.1
• etcd: v3.5.8
• CoreDNS: v1.10.1
• Flannel: v0.21.4

Talos is built with Go 1.20.3.

VMware Platform

Talos now supports loading network configuration on VMWare platform from the metadata key.
See CAPV IPAM Support and
Talos issue 6708 for details.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Artem Chernyshev
• Serge Logvinov
• Steve Francis
• Nico Berlee
• Tim Jones
• Seán C McCord
• Steffen Windoffer
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Dennis Marttinen
• Dzerom Dzenkins
• Erik Lund
• Jori Huisman
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Thomas Way
• Tim van Druenen
• Victor Seva
• budimanjojo
• xyhhx

Changes

• siderolabs/talos@58de249ff release(v1.4.0): prepare release
• siderolabs/talos@b18da0734 docs: update documentation for Talos 1.4
• siderolabs/talos@5d9c7ea61 feat: update Kubernetes to 1.27.1
• siderolabs/talos@c2e26e9b6 fix: fix dashboard crash when a non-existent node is specified
• siderolabs/talos@664d8c933 feat: update etcd to v3.5.8
• siderolabs/talos@8b22e7e8b chore: remove Go buildid
• siderolabs/talos@ae949d220 feat: update Kubernetes to 1.27.0
• siderolabs/talos@0b575c467 feat: update Linux to 6.1.24
• siderolabs/talos@404b72bee release(v1.4.0-beta.1): prepare release
• siderolabs/talos@a3d5c2a10 chore: allow more than one commit
• siderolabs/talos@69045b7d5 chore: module-sig-verify cleanup
• siderolabs/talos@be87b6529 fix: send 'STOP' event on phase end
• siderolabs/talos@805887e61 chore: add kernel module signtaure verification
• siderolabs/talos@58c55f30f feat: update Kubernetes to 1.27.0-rc.1
• siderolabs/talos@1f3c849e2 fix: quote ISO kernel args for GRUB
• siderolabs/talos@3600b648a fix: correctly parse static pod phase
• siderolabs/talos@b11de0c92 fix: improve action tracking post checks
• siderolabs/talos@f9fa8dc69 chore: update Go to 1.20.3
• siderolabs/talos@2f6823e74 release(v1.4.0-beta.0): prepare release
• siderolabs/talos@40c2e750a fix: rework DHCP flow
• siderolabs/talos@5a879bdaf feat: revert update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@b89808174 release(v1.4.0-alpha.4): prepare release
• siderolabs/talos@7ffabe0f1 feat: support network bond device selectors
• siderolabs/talos@cbab12e3a refactor: rename outbound to connectivity on dashboard
• siderolabs/talos@07c3c5d59 feat: return disk subsystem in the Disks API
• siderolabs/talos@b8497b99e feat: update containerd to 1.6.20
• siderolabs/talos@aa1499353 feat: introduce network probes
• siderolabs/talos@9dc1150e3 docs: update nvidia instructions
• siderolabs/talos@7967ccfc1 feat: add config code entry screen to dashboard
• siderolabs/talos@ddb014cfd fix: udevd rules trigger
• siderolabs/talos@0af8fe2fb feat: netstat pod support
• siderolabs/talos@52e857f55 feat: linux 6.1.22, runc 1.1.5
• siderolabs/talos@aa662ff63 fix: apply small fixes on dashboard
• siderolabs/talos@188560a33 fix: add a link-scope route if the cmdline gateway is not reachable
• siderolabs/talos@45c5b47a5 feat: dhcpv4: send current hostname, fix spec compliance of renewals
• siderolabs/talos@289b41fe4 fix: output of talosctl logs might be corruped
• siderolabs/talos@02f0a4526 feat: allow writing initial META values into the image
• siderolabs/talos@ea0e9bdbe feat: environment variables via the kernel arguments
• siderolabs/talos@94c24ca64 chore: add machine config version contract for v1.4
• siderolabs/talos@cefa9c3ec feat: update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@9e8603f53 feat: implement new download URL variable ${code}
• siderolabs/talos@d30cf9c86 test: fix misprint in e2e scripts
• siderolabs/talos@0d0bb31cf fix: use stripped kernel modules
• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"
• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-beta.1

• siderolabs/talos@58de249ff release(v1.4.0): prepare release
• siderolabs/talos@b18da0734 docs: update documentation for Talos 1.4
• siderolabs/talos@5d9c7ea61 feat: update Kubernetes to 1.27.1
• siderolabs/talos@c2e26e9b6 fix: fix dashboard crash when a non-existent node is specified
• siderolabs/talos@664d8c933 feat: update etcd to v3.5.8
• siderolabs/talos@8b22e7e8b chore: remove Go buildid
• siderolabs/talos@ae949d220 feat: update Kubernetes to 1.27.0
• siderolabs/talos@0b575c467 feat: update Linux to 6.1.24

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@9b07505 chore: update Go to 1.20.3
• siderolabs/extras@7faf14a chore: bump pkgs to v1.4.0
• siderolabs/extras@343956e feat: update Go to 1.20.2
• siderolabs/extras@6209d87 chore: bump tc-redirect-tap
• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@b4386f3 feat: make disk utils read subsystem information from the /sys/block
• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@7a51094 fix: exit properly on context cancel

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@81887dc feat: add kubelet flag checks
• siderolabs/go-kubernetes@fe473c0 refactor: make sync easier to consume without CLI
• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@a333a84 feat: update Linux to 6.1.24
• siderolabs/pkgs@62c50e2 chore: copy over the kernel signing public key
• siderolabs/pkgs@5176d7b chore: reorder pkgs for better kernel caching
• siderolabs/pkgs@b447e04 fix: remove FB_NVIDIA drivers, Linux 6.1.23
• siderolabs/pkgs@a6e9ad5 feat: update Go to 1.20.3
• siderolabs/pkgs@aadb943 feat: update containerd to 1.6.20
• siderolabs/pkgs@5a7b33e chore: bump deps
• siderolabs/pkgs@5d77814 fix: strip kernel modules when installing
• siderolabs/pkgs@c26b0b5 chore: bump deps
• siderolabs/pkgs@7d8f5bd feat: enable Hyper-V dynamic memory driver
• siderolabs/pkgs@ea40205 chore: bump deps
• siderolabs/pkgs@21e5a68 feat: update Go 1.20.2, Linux 6.1.15 and other
• siderolabs/pkgs@1d7e60c feat: enable framebuffer drivers and console fonts
• siderolabs/pkgs@0e63e95 chore: bump deps
• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@955aabc feat: update Go to 1.20.3
• siderolabs/tools@95f814a feat: cmake 3.26.2
• siderolabs/tools@a3d5bac chore: bump deps
• siderolabs/tools@2d710f9 chore: bump deps
• siderolabs/tools@9bea7d0 chore: skip rc versions for util-linux
• siderolabs/tools@a94850e chore: bump deps
• siderolabs/tools@e6b2956 fix: protoc install
• siderolabs/tools@601e347 feat: go 1.20.2 + other bumps
• siderolabs/tools@ca67d0b chore: bump deps
• siderolabs/tools@662a906 feat: add libnl
• siderolabs/tools@a8440a9 fix: partially revert e6c98fdf54425e6382f226e33bccca6f3875aad3a
• siderolabs/tools@e6c98fd chore: remove swig
• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.232
• github.com/benbjohnson/clock v1.1.0 new
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.19
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0
• github.com/docker/docker v20.10.21 -> v23.0.2
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.4.2
• github.com/fatih/color v1.13.0 -> v1.15.0
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 -> v1.4.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.1
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.41.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> 74ae03f2425e
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.18
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/nberlee/go-netstat v0.1.1 new
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 281d14d896d7
• github.com/safchain/ethtool v0.2.0 -> v0.3.0
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.15
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-1-g9b07505
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.4
• github.com/siderolabs/go-kmsg v0.1.2 -> v0.1.3
• github.com/siderolabs/go-kubernetes v0.2.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.1-5-ga333a84
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-1-g955aabc
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.16
• github.com/vmware/govmomi v0.29.0 -> v0.30.4
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.8
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.8
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.8
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.8
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> f1b76eb4bb35
• golang.org/x/net v0.4.0 -> v0.8.0
• golang.org/x/sys v0.3.0 -> v0.6.0
• golang.org/x/term v0.3.0 -> v0.6.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.54.0
• google.golang.org/protobuf v1.28.1 -> v1.30.0
• k8s.io/api v0.26.0 -> v0.27.1
• k8s.io/apimachinery v0.26.0 -> v0.27.1
• k8s.io/apiserver v0.26.0 -> v0.27.1
• k8s.io/client-go v0.26.0 -> v0.27.1
• k8s.io/component-base v0.26.0 -> v0.27.1
• k8s.io/cri-api v0.26.0 -> v0.27.1
• k8s.io/klog/v2 v2.80.1 -> v2.90.1
• k8s.io/kubectl v0.26.0 -> v0.27.1
• k8s.io/kubelet v0.26.0 -> v0.27.1
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.68

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0-1-g9b07505
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.8
registry.k8s.io/kube-apiserver:v1.27.1
registry.k8s.io/kube-controller-manager:v1.27.1
registry.k8s.io/kube-scheduler:v1.27.1
registry.k8s.io/kube-proxy:v1.27.1
ghcr.io/siderolabs/kubelet:v1.27.1
ghcr.io/siderolabs/installer:v1.4.0
registry.k8s.io/pause:3.6

Talos 1.4.0-beta.1 (2023-04-11)

Welcome to the v1.4.0-beta.1 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Bond Device Selectors

Bond links can now be described using device selectors instead of explicit device names:

machine:
  network:
    interfaces:
      - interface: bond0
        bond:
          deviceSelectors:
            - hardwareAddr: '00:50:56:*'
            - hardwareAddr: '00:50:57:9c:2c:2d'

talosctl containers

talosctl logs -k and talosctl containers -k now support and output container display names with their ids.
This allows to distinguish between containers with the same name.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

Kernel Argument talos.environment

Talos now supports passing environment variables via talos.environment kernel argument.

Example:

talos.environment=http_proxy=http://proxy.example.com:8080 talos.environment=https_proxy=http://proxy.example.com:8080

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Kernel Reset Argument

Talos now supports talos.experimental.wipe=system:EPHEMERAL,STATE kernel argument.
Talos now also supports the new GRUB boot option - "Reset Talos installation and return to maintenance mode".
Both of this options will reset EPHEMERAL and STATE partitions and will return Talos into maintenance mode after the reboot.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

talosctl netstat

Talos API was extended to support retrieving a list of network connections (sockets) from the node and pods.
talosctl netstat command was added to retrieve the list of network connections.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

New Talos API os:operator role

Talos now supports a new os:operator role for the Talos API.
This role allows everything os:reader role allows plus access to maintenance APIs:
rebooting, shutting down a node, accessing packet capture, etcd alarm APIs, etcd backup, etc.

Component Updates

• Linux: 6.1.23
• containerd: v1.6.20
• runc: v1.1.5
• Kubernetes: v1.27.0-rc.1
• etcd: v3.5.7
• CoreDNS: v1.10.1
• Flannel: v0.21.4

Talos is built with Go 1.20.3.

VMware Platform

Talos now supports loading network configuration on VMWare platform from the metadata key.
See CAPV IPAM Support and
Talos issue 6708 for details.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Artem Chernyshev
• Serge Logvinov
• Steve Francis
• Nico Berlee
• Tim Jones
• Seán C McCord
• Steffen Windoffer
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Dennis Marttinen
• Dzerom Dzenkins
• Erik Lund
• Jori Huisman
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Thomas Way
• Tim van Druenen
• Victor Seva
• budimanjojo
• xyhhx

Changes

• siderolabs/talos@404b72bee release(v1.4.0-beta.1): prepare release
• siderolabs/talos@a3d5c2a10 chore: allow more than one commit
• siderolabs/talos@69045b7d5 chore: module-sig-verify cleanup
• siderolabs/talos@be87b6529 fix: send 'STOP' event on phase end
• siderolabs/talos@805887e61 chore: add kernel module signtaure verification
• siderolabs/talos@58c55f30f feat: update Kubernetes to 1.27.0-rc.1
• siderolabs/talos@1f3c849e2 fix: quote ISO kernel args for GRUB
• siderolabs/talos@3600b648a fix: correctly parse static pod phase
• siderolabs/talos@b11de0c92 fix: improve action tracking post checks
• siderolabs/talos@f9fa8dc69 chore: update Go to 1.20.3
• siderolabs/talos@2f6823e74 release(v1.4.0-beta.0): prepare release
• siderolabs/talos@40c2e750a fix: rework DHCP flow
• siderolabs/talos@5a879bdaf feat: revert update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@b89808174 release(v1.4.0-alpha.4): prepare release
• siderolabs/talos@7ffabe0f1 feat: support network bond device selectors
• siderolabs/talos@cbab12e3a refactor: rename outbound to connectivity on dashboard
• siderolabs/talos@07c3c5d59 feat: return disk subsystem in the Disks API
• siderolabs/talos@b8497b99e feat: update containerd to 1.6.20
• siderolabs/talos@aa1499353 feat: introduce network probes
• siderolabs/talos@9dc1150e3 docs: update nvidia instructions
• siderolabs/talos@7967ccfc1 feat: add config code entry screen to dashboard
• siderolabs/talos@ddb014cfd fix: udevd rules trigger
• siderolabs/talos@0af8fe2fb feat: netstat pod support
• siderolabs/talos@52e857f55 feat: linux 6.1.22, runc 1.1.5
• siderolabs/talos@aa662ff63 fix: apply small fixes on dashboard
• siderolabs/talos@188560a33 fix: add a link-scope route if the cmdline gateway is not reachable
• siderolabs/talos@45c5b47a5 feat: dhcpv4: send current hostname, fix spec compliance of renewals
• siderolabs/talos@289b41fe4 fix: output of talosctl logs might be corruped
• siderolabs/talos@02f0a4526 feat: allow writing initial META values into the image
• siderolabs/talos@ea0e9bdbe feat: environment variables via the kernel arguments
• siderolabs/talos@94c24ca64 chore: add machine config version contract for v1.4
• siderolabs/talos@cefa9c3ec feat: update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@9e8603f53 feat: implement new download URL variable ${code}
• siderolabs/talos@d30cf9c86 test: fix misprint in e2e scripts
• siderolabs/talos@0d0bb31cf fix: use stripped kernel modules
• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"
• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-beta.0

• siderolabs/talos@404b72bee release(v1.4.0-beta.1): prepare release
• siderolabs/talos@a3d5c2a10 chore: allow more than one commit
• siderolabs/talos@69045b7d5 chore: module-sig-verify cleanup
• siderolabs/talos@be87b6529 fix: send 'STOP' event on phase end
• siderolabs/talos@805887e61 chore: add kernel module signtaure verification
• siderolabs/talos@58c55f30f feat: update Kubernetes to 1.27.0-rc.1
• siderolabs/talos@1f3c849e2 fix: quote ISO kernel args for GRUB
• siderolabs/talos@3600b648a fix: correctly parse static pod phase
• siderolabs/talos@b11de0c92 fix: improve action tracking post checks
• siderolabs/talos@f9fa8dc69 chore: update Go to 1.20.3

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@9b07505 chore: update Go to 1.20.3
• siderolabs/extras@7faf14a chore: bump pkgs to v1.4.0
• siderolabs/extras@343956e feat: update Go to 1.20.2
• siderolabs/extras@6209d87 chore: bump tc-redirect-tap
• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@b4386f3 feat: make disk utils read subsystem information from the /sys/block
• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@7a51094 fix: exit properly on context cancel

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@81887dc feat: add kubelet flag checks
• siderolabs/go-kubernetes@fe473c0 refactor: make sync easier to consume without CLI
• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@62c50e2 chore: copy over the kernel signing public key
• siderolabs/pkgs@5176d7b chore: reorder pkgs for better kernel caching
• siderolabs/pkgs@b447e04 fix: remove FB_NVIDIA drivers, Linux 6.1.23
• siderolabs/pkgs@a6e9ad5 feat: update Go to 1.20.3
• siderolabs/pkgs@aadb943 feat: update containerd to 1.6.20
• siderolabs/pkgs@5a7b33e chore: bump deps
• siderolabs/pkgs@5d77814 fix: strip kernel modules when installing
• siderolabs/pkgs@c26b0b5 chore: bump deps
• siderolabs/pkgs@7d8f5bd feat: enable Hyper-V dynamic memory driver
• siderolabs/pkgs@ea40205 chore: bump deps
• siderolabs/pkgs@21e5a68 feat: update Go 1.20.2, Linux 6.1.15 and other
• siderolabs/pkgs@1d7e60c feat: enable framebuffer drivers and console fonts
• siderolabs/pkgs@0e63e95 chore: bump deps
• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@955aabc feat: update Go to 1.20.3
• siderolabs/tools@95f814a feat: cmake 3.26.2
• siderolabs/tools@a3d5bac chore: bump deps
• siderolabs/tools@2d710f9 chore: bump deps
• siderolabs/tools@9bea7d0 chore: skip rc versions for util-linux
• siderolabs/tools@a94850e chore: bump deps
• siderolabs/tools@e6b2956 fix: protoc install
• siderolabs/tools@601e347 feat: go 1.20.2 + other bumps
• siderolabs/tools@ca67d0b chore: bump deps
• siderolabs/tools@662a906 feat: add libnl
• siderolabs/tools@a8440a9 fix: partially revert e6c98fdf54425e6382f226e33bccca6f3875aad3a
• siderolabs/tools@e6c98fd chore: remove swig
• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.232
• github.com/benbjohnson/clock v1.1.0 new
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.19
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0
• github.com/docker/docker v20.10.21 -> v23.0.2
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.4.2
• github.com/fatih/color v1.13.0 -> v1.15.0
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 -> v1.4.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.1
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.41.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> 74ae03f2425e
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.18
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/nberlee/go-netstat v0.1.1 new
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 281d14d896d7
• github.com/safchain/ethtool v0.2.0 -> v0.3.0
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.15
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-1-g9b07505
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.4
• github.com/siderolabs/go-kmsg v0.1.2 -> v0.1.3
• github.com/siderolabs/go-kubernetes v0.2.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.1-4-g62c50e2
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-beta.1
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-1-g955aabc
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.16
• github.com/vmware/govmomi v0.29.0 -> v0.30.4
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> f1b76eb4bb35
• golang.org/x/net v0.4.0 -> v0.8.0
• golang.org/x/sys v0.3.0 -> v0.6.0
• golang.org/x/term v0.3.0 -> v0.6.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.54.0
• google.golang.org/protobuf v1.28.1 -> v1.30.0
• k8s.io/api v0.26.0 -> v0.27.0-rc.1
• k8s.io/apimachinery v0.26.0 -> v0.27.0-rc.1
• k8s.io/apiserver v0.26.0 -> v0.27.0-rc.1
• k8s.io/client-go v0.26.0 -> v0.27.0-rc.1
• k8s.io/component-base v0.26.0 -> v0.27.0-rc.1
• k8s.io/cri-api v0.26.0 -> v0.27.0-rc.1
• k8s.io/klog/v2 v2.80.1 -> v2.90.1
• k8s.io/kubectl v0.26.0 -> v0.27.0-rc.1
• k8s.io/kubelet v0.26.0 -> v0.27.0-rc.1
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.68

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0-1-g9b07505
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.27.0-rc.1
registry.k8s.io/kube-controller-manager:v1.27.0-rc.1
registry.k8s.io/kube-scheduler:v1.27.0-rc.1
registry.k8s.io/kube-proxy:v1.27.0-rc.1
ghcr.io/siderolabs/kubelet:v1.27.0-rc.1
ghcr.io/siderolabs/installer:v1.4.0-beta.1
registry.k8s.io/pause:3.6

Talos 1.3.7 (2023-04-06)

Welcome to the v1.3.7 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.106
• containerd: 1.6.20
• runc: 1.1.5
• Kubernetes: v1.26.3

Talos is built with Go 1.19.8.

Contributors

• Andrey Smirnov
• Dmitriy Matrenichev

Changes

• siderolabs/talos@d17c9ee82 release(v1.3.7): prepare release
• siderolabs/talos@fe76c56fe fix: correctly parse static pod phase
• siderolabs/talos@dc001d28f fix: output of talosctl logs might be corruped
• siderolabs/talos@422e30a2f fix: always shutdown maintenance API service
• siderolabs/talos@19f7f7f39 feat: update Kubernetes to 1.26.3
• siderolabs/talos@13456dab3 fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@93dfa86d7 fix: nil pointer exception in syncLink
• siderolabs/talos@34677b931 feat: update Go 1.19.8, Linux 5.15.106

Changes from siderolabs/extras

• siderolabs/extras@75d687a chore: update Go to 1.19.8

Changes from siderolabs/pkgs

• siderolabs/pkgs@49b4ba8 feat: update Go 1.19.8, Linux 5.15.106
• siderolabs/pkgs@d1b0e28 feat: containerd 1.6.20, runc 1.1.5

Changes from siderolabs/tools

• siderolabs/tools@9a1d3ec feat: update Go to 1.19.8

Dependency Changes

• github.com/siderolabs/extras v1.3.0-4-gcb97438 -> v1.3.0-5-g75d687a
• github.com/siderolabs/pkgs v1.3.0-15-g3b37079 -> v1.3.0-17-g49b4ba8
• github.com/siderolabs/talos/pkg/machinery v1.3.6 -> v1.3.7
• github.com/siderolabs/tools v1.3.0-3-ge225a7e -> v1.3.0-4-g9a1d3ec
• k8s.io/api v0.26.2 -> v0.26.3
• k8s.io/apiserver v0.26.2 -> v0.26.3
• k8s.io/client-go v0.26.2 -> v0.26.3
• k8s.io/component-base v0.26.2 -> v0.26.3
• k8s.io/kubectl v0.26.2 -> v0.26.3
• k8s.io/kubelet v0.26.2 -> v0.26.3

Previous release can be found at v1.3.6

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-5-g75d687a
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.3
registry.k8s.io/kube-controller-manager:v1.26.3
registry.k8s.io/kube-scheduler:v1.26.3
registry.k8s.io/kube-proxy:v1.26.3
ghcr.io/siderolabs/kubelet:v1.26.3
ghcr.io/siderolabs/installer:v1.3.7
registry.k8s.io/pause:3.6

Talos 1.4.0-beta.0 (2023-04-04)

Welcome to the v1.4.0-beta.0 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Bond Device Selectors

Bond links can now be described using device selectors instead of explicit device names:

machine:
  network:
    interfaces:
      - interface: bond0
        bond:
          deviceSelectors:
            - hardwareAddr: '00:50:56:*'
            - hardwareAddr: '00:50:57:9c:2c:2d'

talosctl containers

talosctl logs -k and talosctl containers -k now support and output container display names with their ids.
This allows to distinguish between containers with the same name.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

Kernel Argument talos.environment

Talos now supports passing environment variables via talos.environment kernel argument.

Example:

talos.environment=http_proxy=http://proxy.example.com:8080 talos.environment=https_proxy=http://proxy.example.com:8080

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Kernel Reset Argument

Talos now supports talos.experimental.wipe=system:EPHEMERAL,STATE kernel argument.
Talos now also supports the new GRUB boot option - "Reset Talos installation and return to maintenance mode".
Both of this options will reset EPHEMERAL and STATE partitions and will return Talos into maintenance mode after the reboot.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

talosctl netstat

Talos API was extended to support retrieving a list of network connections (sockets) from the node and pods.
talosctl netstat command was added to retrieve the list of network connections.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

New Talos API os:operator role

Talos now supports a new os:operator role for the Talos API.
This role allows everything os:reader role allows plus access to maintenance APIs:
rebooting, shutting down a node, accessing packet capture, etcd alarm APIs, etcd backup, etc.

Component Updates

• Linux: 6.1.22
• containerd: v1.6.20
• runc: v1.1.5
• Kubernetes: v1.27.0-beta.0
• etcd: v3.5.7
• CoreDNS: v1.10.1
• Flannel: v0.21.4

Talos is built with Go 1.20.2.

VMware Platform

Talos now supports loading network configuration on VMWare platform from the metadata key.
See CAPV IPAM Support and
Talos issue 6708 for details.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Artem Chernyshev
• Serge Logvinov
• Steve Francis
• Nico Berlee
• Tim Jones
• Seán C McCord
• Steffen Windoffer
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Dennis Marttinen
• Dzerom Dzenkins
• Erik Lund
• Jori Huisman
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Thomas Way
• Tim van Druenen
• Victor Seva
• budimanjojo
• xyhhx

Changes

• siderolabs/talos@2f6823e74 release(v1.4.0-beta.0): prepare release
• siderolabs/talos@40c2e750a fix: rework DHCP flow
• siderolabs/talos@5a879bdaf feat: revert update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@b89808174 release(v1.4.0-alpha.4): prepare release
• siderolabs/talos@7ffabe0f1 feat: support network bond device selectors
• siderolabs/talos@cbab12e3a refactor: rename outbound to connectivity on dashboard
• siderolabs/talos@07c3c5d59 feat: return disk subsystem in the Disks API
• siderolabs/talos@b8497b99e feat: update containerd to 1.6.20
• siderolabs/talos@aa1499353 feat: introduce network probes
• siderolabs/talos@9dc1150e3 docs: update nvidia instructions
• siderolabs/talos@7967ccfc1 feat: add config code entry screen to dashboard
• siderolabs/talos@ddb014cfd fix: udevd rules trigger
• siderolabs/talos@0af8fe2fb feat: netstat pod support
• siderolabs/talos@52e857f55 feat: linux 6.1.22, runc 1.1.5
• siderolabs/talos@aa662ff63 fix: apply small fixes on dashboard
• siderolabs/talos@188560a33 fix: add a link-scope route if the cmdline gateway is not reachable
• siderolabs/talos@45c5b47a5 feat: dhcpv4: send current hostname, fix spec compliance of renewals
• siderolabs/talos@289b41fe4 fix: output of talosctl logs might be corruped
• siderolabs/talos@02f0a4526 feat: allow writing initial META values into the image
• siderolabs/talos@ea0e9bdbe feat: environment variables via the kernel arguments
• siderolabs/talos@94c24ca64 chore: add machine config version contract for v1.4
• siderolabs/talos@cefa9c3ec feat: update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@9e8603f53 feat: implement new download URL variable ${code}
• siderolabs/talos@d30cf9c86 test: fix misprint in e2e scripts
• siderolabs/talos@0d0bb31cf fix: use stripped kernel modules
• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"
• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-alpha.4

• siderolabs/talos@2f6823e74 release(v1.4.0-beta.0): prepare release
• siderolabs/talos@40c2e750a fix: rework DHCP flow
• siderolabs/talos@5a879bdaf feat: revert update Kubernetes to 1.27.0-rc.0

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@7faf14a chore: bump pkgs to v1.4.0
• siderolabs/extras@343956e feat: update Go to 1.20.2
• siderolabs/extras@6209d87 chore: bump tc-redirect-tap
• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@b4386f3 feat: make disk utils read subsystem information from the /sys/block
• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@7a51094 fix: exit properly on context cancel

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@81887dc feat: add kubelet flag checks
• siderolabs/go-kubernetes@fe473c0 refactor: make sync easier to consume without CLI
• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@aadb943 feat: update containerd to 1.6.20
• siderolabs/pkgs@5a7b33e chore: bump deps
• siderolabs/pkgs@5d77814 fix: strip kernel modules when installing
• siderolabs/pkgs@c26b0b5 chore: bump deps
• siderolabs/pkgs@7d8f5bd feat: enable Hyper-V dynamic memory driver
• siderolabs/pkgs@ea40205 chore: bump deps
• siderolabs/pkgs@21e5a68 feat: update Go 1.20.2, Linux 6.1.15 and other
• siderolabs/pkgs@1d7e60c feat: enable framebuffer drivers and console fonts
• siderolabs/pkgs@0e63e95 chore: bump deps
• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@95f814a feat: cmake 3.26.2
• siderolabs/tools@a3d5bac chore: bump deps
• siderolabs/tools@2d710f9 chore: bump deps
• siderolabs/tools@9bea7d0 chore: skip rc versions for util-linux
• siderolabs/tools@a94850e chore: bump deps
• siderolabs/tools@e6b2956 fix: protoc install
• siderolabs/tools@601e347 feat: go 1.20.2 + other bumps
• siderolabs/tools@ca67d0b chore: bump deps
• siderolabs/tools@662a906 feat: add libnl
• siderolabs/tools@a8440a9 fix: partially revert e6c98fdf54425e6382f226e33bccca6f3875aad3a
• siderolabs/tools@e6c98fd chore: remove swig
• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.232
• github.com/benbjohnson/clock v1.1.0 new
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.19
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0
• github.com/docker/docker v20.10.21 -> v23.0.2
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.4.2
• github.com/fatih/color v1.13.0 -> v1.15.0
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 -> v1.4.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.1
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.41.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> 74ae03f2425e
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.18
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/nberlee/go-netstat v0.1.1 new
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 281d14d896d7
• github.com/safchain/ethtool v0.2.0 -> v0.3.0
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.15
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.4
• github.com/siderolabs/go-kmsg v0.1.2 -> v0.1.3
• github.com/siderolabs/go-kubernetes v0.2.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.1
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-beta.0
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.16
• github.com/vmware/govmomi v0.29.0 -> v0.30.4
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> f1b76eb4bb35
• golang.org/x/net v0.4.0 -> v0.8.0
• golang.org/x/sys v0.3.0 -> v0.6.0
• golang.org/x/term v0.3.0 -> v0.6.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.54.0
• google.golang.org/protobuf v1.28.1 -> v1.30.0
• k8s.io/api v0.26.0 -> v0.27.0-beta.0
• k8s.io/apimachinery v0.26.0 -> v0.27.0-beta.0
• k8s.io/apiserver v0.26.0 -> v0.27.0-beta.0
• k8s.io/client-go v0.26.0 -> v0.27.0-beta.0
• k8s.io/component-base v0.26.0 -> v0.27.0-beta.0
• k8s.io/cri-api v0.26.0 -> v0.27.0-beta.0
• k8s.io/klog/v2 v2.80.1 -> v2.90.1
• k8s.io/kubectl v0.26.0 -> v0.27.0-beta.0
• k8s.io/kubelet v0.26.0 -> v0.27.0-beta.0
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.68

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.27.0-beta.0
registry.k8s.io/kube-controller-manager:v1.27.0-beta.0
registry.k8s.io/kube-scheduler:v1.27.0-beta.0
registry.k8s.io/kube-proxy:v1.27.0-beta.0
ghcr.io/siderolabs/kubelet:v1.27.0-beta.0
ghcr.io/siderolabs/installer:v1.4.0-beta.0
registry.k8s.io/pause:3.6

Talos 1.4.0-alpha.4 (2023-03-31)

Welcome to the v1.4.0-alpha.4 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Bond Device Selectors

Bond links can now be described using device selectors instead of explicit device names:

machine:
  network:
    interfaces:
      - interface: bond0
        bond:
          deviceSelectors:
            - hardwareAddr: '00:50:56:*'
            - hardwareAddr: '00:50:57:9c:2c:2d'

talosctl containers

talosctl logs -k and talosctl containers -k now support and output container display names with their ids.
This allows to distinguish between containers with the same name.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

Kernel Argument talos.environment

Talos now supports passing environment variables via talos.environment kernel argument.

Example:

talos.environment=http_proxy=http://proxy.example.com:8080 talos.environment=https_proxy=http://proxy.example.com:8080

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Kernel Reset Argument

Talos now supports talos.experimental.wipe=system:EPHEMERAL,STATE kernel argument.
Talos now also supports the new GRUB boot option - "Reset Talos installation and return to maintenance mode".
Both of this options will reset EPHEMERAL and STATE partitions and will return Talos into maintenance mode after the reboot.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

talosctl netstat

Talos API was extended to support retrieving a list of network connections (sockets) from the node and pods.
talosctl netstat command was added to retrieve the list of network connections.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

New Talos API os:operator role

Talos now supports a new os:operator role for the Talos API.
This role allows everything os:reader role allows plus access to maintenance APIs:
rebooting, shutting down a node, accessing packet capture, etcd alarm APIs, etcd backup, etc.

Component Updates

• Linux: 6.1.22
• containerd: v1.6.20
• runc: v1.1.5
• Kubernetes: v1.27.0-rc.0
• etcd: v3.5.7
• CoreDNS: v1.10.1
• Flannel: v0.21.4

Talos is built with Go 1.20.2.

VMware Platform

Talos now supports loading network configuration on VMWare platform from the metadata key.
See CAPV IPAM Support and
Talos issue 6708 for details.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Artem Chernyshev
• Serge Logvinov
• Steve Francis
• Nico Berlee
• Tim Jones
• Seán C McCord
• Steffen Windoffer
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Dennis Marttinen
• Dzerom Dzenkins
• Erik Lund
• Jori Huisman
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Thomas Way
• Tim van Druenen
• Victor Seva
• budimanjojo
• xyhhx

Changes

• siderolabs/talos@b89808174 release(v1.4.0-alpha.4): prepare release
• siderolabs/talos@7ffabe0f1 feat: support network bond device selectors
• siderolabs/talos@cbab12e3a refactor: rename outbound to connectivity on dashboard
• siderolabs/talos@07c3c5d59 feat: return disk subsystem in the Disks API
• siderolabs/talos@b8497b99e feat: update containerd to 1.6.20
• siderolabs/talos@aa1499353 feat: introduce network probes
• siderolabs/talos@9dc1150e3 docs: update nvidia instructions
• siderolabs/talos@7967ccfc1 feat: add config code entry screen to dashboard
• siderolabs/talos@ddb014cfd fix: udevd rules trigger
• siderolabs/talos@0af8fe2fb feat: netstat pod support
• siderolabs/talos@52e857f55 feat: linux 6.1.22, runc 1.1.5
• siderolabs/talos@aa662ff63 fix: apply small fixes on dashboard
• siderolabs/talos@188560a33 fix: add a link-scope route if the cmdline gateway is not reachable
• siderolabs/talos@45c5b47a5 feat: dhcpv4: send current hostname, fix spec compliance of renewals
• siderolabs/talos@289b41fe4 fix: output of talosctl logs might be corruped
• siderolabs/talos@02f0a4526 feat: allow writing initial META values into the image
• siderolabs/talos@ea0e9bdbe feat: environment variables via the kernel arguments
• siderolabs/talos@94c24ca64 chore: add machine config version contract for v1.4
• siderolabs/talos@cefa9c3ec feat: update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@9e8603f53 feat: implement new download URL variable ${code}
• siderolabs/talos@d30cf9c86 test: fix misprint in e2e scripts
• siderolabs/talos@0d0bb31cf fix: use stripped kernel modules
• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"
• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-alpha.3

• siderolabs/talos@b89808174 release(v1.4.0-alpha.4): prepare release
• siderolabs/talos@7ffabe0f1 feat: support network bond device selectors
• siderolabs/talos@cbab12e3a refactor: rename outbound to connectivity on dashboard
• siderolabs/talos@07c3c5d59 feat: return disk subsystem in the Disks API
• siderolabs/talos@b8497b99e feat: update containerd to 1.6.20
• siderolabs/talos@aa1499353 feat: introduce network probes
• siderolabs/talos@9dc1150e3 docs: update nvidia instructions
• siderolabs/talos@7967ccfc1 feat: add config code entry screen to dashboard
• siderolabs/talos@ddb014cfd fix: udevd rules trigger
• siderolabs/talos@0af8fe2fb feat: netstat pod support
• siderolabs/talos@52e857f55 feat: linux 6.1.22, runc 1.1.5
• siderolabs/talos@aa662ff63 fix: apply small fixes on dashboard
• siderolabs/talos@188560a33 fix: add a link-scope route if the cmdline gateway is not reachable
• siderolabs/talos@45c5b47a5 feat: dhcpv4: send current hostname, fix spec compliance of renewals
• siderolabs/talos@289b41fe4 fix: output of talosctl logs might be corruped
• siderolabs/talos@02f0a4526 feat: allow writing initial META values into the image
• siderolabs/talos@ea0e9bdbe feat: environment variables via the kernel arguments
• siderolabs/talos@94c24ca64 chore: add machine config version contract for v1.4
• siderolabs/talos@cefa9c3ec feat: update Kubernetes to 1.27.0-rc.0
• siderolabs/talos@9e8603f53 feat: implement new download URL variable ${code}
• siderolabs/talos@d30cf9c86 test: fix misprint in e2e scripts
• siderolabs/talos@0d0bb31cf fix: use stripped kernel modules

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@7faf14a chore: bump pkgs to v1.4.0
• siderolabs/extras@343956e feat: update Go to 1.20.2
• siderolabs/extras@6209d87 chore: bump tc-redirect-tap
• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@b4386f3 feat: make disk utils read subsystem information from the /sys/block
• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@7a51094 fix: exit properly on context cancel

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@81887dc feat: add kubelet flag checks
• siderolabs/go-kubernetes@fe473c0 refactor: make sync easier to consume without CLI
• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@aadb943 feat: update containerd to 1.6.20
• siderolabs/pkgs@5a7b33e chore: bump deps
• siderolabs/pkgs@5d77814 fix: strip kernel modules when installing
• siderolabs/pkgs@c26b0b5 chore: bump deps
• siderolabs/pkgs@7d8f5bd feat: enable Hyper-V dynamic memory driver
• siderolabs/pkgs@ea40205 chore: bump deps
• siderolabs/pkgs@21e5a68 feat: update Go 1.20.2, Linux 6.1.15 and other
• siderolabs/pkgs@1d7e60c feat: enable framebuffer drivers and console fonts
• siderolabs/pkgs@0e63e95 chore: bump deps
• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@95f814a feat: cmake 3.26.2
• siderolabs/tools@a3d5bac chore: bump deps
• siderolabs/tools@2d710f9 chore: bump deps
• siderolabs/tools@9bea7d0 chore: skip rc versions for util-linux
• siderolabs/tools@a94850e chore: bump deps
• siderolabs/tools@e6b2956 fix: protoc install
• siderolabs/tools@601e347 feat: go 1.20.2 + other bumps
• siderolabs/tools@ca67d0b chore: bump deps
• siderolabs/tools@662a906 feat: add libnl
• siderolabs/tools@a8440a9 fix: partially revert e6c98fdf54425e6382f226e33bccca6f3875aad3a
• siderolabs/tools@e6c98fd chore: remove swig
• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.232
• github.com/benbjohnson/clock v1.1.0 new
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.19
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0
• github.com/docker/docker v20.10.21 -> v23.0.2
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.4.2
• github.com/fatih/color v1.13.0 -> v1.15.0
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 -> v1.4.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.1
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.41.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> 74ae03f2425e
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.18
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/nberlee/go-netstat v0.1.1 new
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 281d14d896d7
• github.com/safchain/ethtool v0.2.0 -> v0.3.0
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.15
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.4
• github.com/siderolabs/go-kmsg v0.1.2 -> v0.1.3
• github.com/siderolabs/go-kubernetes v0.2.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.0-1-gaadb943
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-alpha.4
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.16
• github.com/vmware/govmomi v0.29.0 -> v0.30.4
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> f1b76eb4bb35
• golang.org/x/net v0.4.0 -> v0.8.0
• golang.org/x/sys v0.3.0 -> v0.6.0
• golang.org/x/term v0.3.0 -> v0.6.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.54.0
• google.golang.org/protobuf v1.28.1 -> v1.30.0
• k8s.io/api v0.26.0 -> v0.27.0-rc.0
• k8s.io/apimachinery v0.26.0 -> v0.27.0-rc.0
• k8s.io/apiserver v0.26.0 -> v0.27.0-rc.0
• k8s.io/client-go v0.26.0 -> v0.27.0-rc.0
• k8s.io/component-base v0.26.0 -> v0.27.0-rc.0
• k8s.io/cri-api v0.26.0 -> v0.27.0-rc.0
• k8s.io/klog/v2 v2.80.1 -> v2.90.1
• k8s.io/kubectl v0.26.0 -> v0.27.0-rc.0
• k8s.io/kubelet v0.26.0 -> v0.27.0-rc.0
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.68

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.27.0-rc.0
registry.k8s.io/kube-controller-manager:v1.27.0-rc.0
registry.k8s.io/kube-scheduler:v1.27.0-rc.0
registry.k8s.io/kube-proxy:v1.27.0-rc.0
ghcr.io/siderolabs/kubelet:v1.27.0-rc.0
ghcr.io/siderolabs/installer:v1.4.0-alpha.4
registry.k8s.io/pause:3.6

Talos 1.4.0-alpha.3 (2023-03-23)

Welcome to the v1.4.0-alpha.3 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

talosctl containers

talosctl logs -k and talosctl containers -k now support and output container display names with their ids.
This allows to distinguish between containers with the same name.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Kernel Reset Argument

Talos now supports talos.experimental.wipe=system:EPHEMERAL,STATE kernel argument.
Talos now also supports the new GRUB boot option - "Reset Talos installation and return to maintenance mode".
Both of this options will reset EPHEMERAL and STATE partitions and will return Talos into maintenance mode after the reboot.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

talosctl netstat

Talos API was extended to support retrieving a list of network connections (sockets) from the node.
talosctl netstat command was added to retrieve the list of network connections.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

New Talos API os:operator role

Talos now supports a new os:operator role for the Talos API.
This role allows everything os:reader role allows plus access to maintenance APIs:
rebooting, shutting down a node, accessing packet capture, etcd alarm APIs, etcd backup, etc.

Component Updates

• Linux: 6.1.20
• containerd: v1.6.19
• Kubernetes: v1.27.0-beta.0
• etcd: v3.5.7
• CoreDNS: v1.10.1
• Flannel: v0.21.4

Talos is built with Go 1.20.2.

VMware Platform

Talos now supports loading network configuration on VMWare platform from the metadata key.
See CAPV IPAM Support and
Talos issue 6708 for details.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Serge Logvinov
• Artem Chernyshev
• Steve Francis
• Tim Jones
• Nico Berlee
• Seán C McCord
• Steffen Windoffer
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Dzerom Dzenkins
• Erik Lund
• Jori Huisman
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Tim van Druenen
• Victor Seva
• budimanjojo
• xyhhx

Changes

• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"
• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-alpha.2

• siderolabs/talos@3583eea98 release(v1.4.0-alpha.3): prepare release
• siderolabs/talos@a7b79ef1b feat: add network config screen to dashboard
• siderolabs/talos@cf2ccc521 fix: always shutdown maintenance API service
• siderolabs/talos@a0a5db590 feat: update Flannel to 0.21.4
• siderolabs/talos@d1a61fd34 chore: bump golangci-lint
• siderolabs/talos@36a9a208e chore: bump deps
• siderolabs/talos@c63cf90e3 feat: update k8s to v1.27.0-beta.0
• siderolabs/talos@b246c90ab fix: add uint32 to Magic1 and Magic2
• siderolabs/talos@777c8d6f6 chore: update COSI to watch aggregated version
• siderolabs/talos@bec89bf6e fix: use 'no block' etcd dial with multiple endpoints
• siderolabs/talos@28713c2c4 feat: update Kubernetes to 1.26.3
• siderolabs/talos@a3cf41647 docs: add InstallConfig ignored notice to doc
• siderolabs/talos@df9b851fb chore: load all external artifacts earlier
• siderolabs/talos@2dd0964c5 refactor: use resource watches on dashboard
• siderolabs/talos@9933ebb6a chore: fix loaded artifacts file permission
• siderolabs/talos@a14a0aba0 fix: nil pointer exception in syncLink
• siderolabs/talos@cf101e56f fix: add --force flag for talosctl gen
• siderolabs/talos@ea2aa0611 fix: fix data race on network config read
• siderolabs/talos@64e3d24c6 feat: provide platform network config for 'metal' in META
• siderolabs/talos@442cb9c1b feat: implement APIs to write to META
• siderolabs/talos@9e07832db feat: implement summary dashboard
• siderolabs/talos@1df841bb5 refactor: change the interface of META
• siderolabs/talos@e9962bc3e chore: update CI to tag azure buckets
• siderolabs/talos@9f5f5cf9b feat: update Flannel to v0.21.3
• siderolabs/talos@02b0ff35e feat: generate Flannel CNI manifest from upstream
• siderolabs/talos@6656d35ec docs: fix Talos version to use template
• siderolabs/talos@72a6d1d70 docs: update nocloud
• siderolabs/talos@9948a646d feat: coredns node uninitialized toleration
• siderolabs/talos@e03902b54 feat: update Go to 1.20.2
• siderolabs/talos@c8f8579f2 fix: upgrade-k8s to flag should not be required since there is a default
• siderolabs/talos@230cfaf80 feat: use network information from guestinfo.metadata
• siderolabs/talos@97048f7c3 feat: netstat in API and client
• siderolabs/talos@fda6da692 fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@b97e1abaa feat: set default image, validate empty image
• siderolabs/talos@121220a3b chore: bump dependencies via renovate bot
• siderolabs/talos@ebc92f3c1 chore: add container id to talosctl -k containers and talosctl -k logs
• siderolabs/talos@22ef81c1e feat: add grub option to drop to maintenance mode
• siderolabs/talos@642fe0c90 feat: update pkgs with framebuffer console
• siderolabs/talos@69cb414f0 docs: update cilium install instructions
• siderolabs/talos@e71cc6619 fix: redo assertHostnames in HostnameMergeSuite.TestMerge
• siderolabs/talos@8ea4bfad8 refactor: improve the kubernetes upgrade flow
• siderolabs/talos@81879fc0c docs: add how tos for workloads on control planes, and scaling up
• siderolabs/talos@05b0b721c chore: move blob storage to azure for builds
• siderolabs/talos@a78281214 feat: add cilium e2e tests
• siderolabs/talos@061640ccc feat: add pod ip to kube-proxy spec
• siderolabs/talos@dea17d723 feat: update Kubernetes to v1.26.2
• siderolabs/talos@337aaba7a feat: add 'os:operator' role
• siderolabs/talos@40e69af22 fix: improve etcd leave on reset process
• siderolabs/talos@638dc9128 fix: fix "defer" leak in ResetUserDisks
• siderolabs/talos@bfba3677b chore: handle grub option - "wipe"

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@343956e feat: update Go to 1.20.2
• siderolabs/extras@6209d87 chore: bump tc-redirect-tap
• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@7a51094 fix: exit properly on context cancel

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@81887dc feat: add kubelet flag checks
• siderolabs/go-kubernetes@fe473c0 refactor: make sync easier to consume without CLI
• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@c26b0b5 chore: bump deps
• siderolabs/pkgs@7d8f5bd feat: enable Hyper-V dynamic memory driver
• siderolabs/pkgs@ea40205 chore: bump deps
• siderolabs/pkgs@21e5a68 feat: update Go 1.20.2, Linux 6.1.15 and other
• siderolabs/pkgs@1d7e60c feat: enable framebuffer drivers and console fonts
• siderolabs/pkgs@0e63e95 chore: bump deps
• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@2d710f9 chore: bump deps
• siderolabs/tools@9bea7d0 chore: skip rc versions for util-linux
• siderolabs/tools@a94850e chore: bump deps
• siderolabs/tools@e6b2956 fix: protoc install
• siderolabs/tools@601e347 feat: go 1.20.2 + other bumps
• siderolabs/tools@ca67d0b chore: bump deps
• siderolabs/tools@662a906 feat: add libnl
• siderolabs/tools@a8440a9 fix: partially revert e6c98fdf54425e6382f226e33bccca6f3875aad3a
• siderolabs/tools@e6c98fd chore: remove swig
• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.226
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.19
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0-alpha.10
• github.com/docker/docker v20.10.21 -> v23.0.1
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.3.1
• github.com/fatih/color v1.13.0 -> v1.15.0
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 -> v1.4.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.1
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.41.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> e252950ab961
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.17
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/nberlee/go-netstat 19cc338ee40a new
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 84f9c0ff9de8
• github.com/safchain/ethtool v0.2.0 -> v0.3.0
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.15
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-alpha.0-7-g343956e
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.3
• github.com/siderolabs/go-kmsg v0.1.2 -> v0.1.3
• github.com/siderolabs/go-kubernetes v0.2.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.0-alpha.0-35-gc26b0b5
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-alpha.3
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-alpha.0-26-g2d710f9
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.16
• github.com/vmware/govmomi v0.29.0 -> v0.30.4
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> f1b76eb4bb35
• golang.org/x/net v0.4.0 -> v0.8.0
• golang.org/x/sys v0.3.0 -> v0.6.0
• golang.org/x/term v0.3.0 -> v0.6.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.54.0
• google.golang.org/protobuf v1.28.1 -> v1.30.0
• k8s.io/api v0.26.0 -> v0.27.0-beta.0
• k8s.io/apimachinery v0.26.0 -> v0.27.0-beta.0
• k8s.io/apiserver v0.26.0 -> v0.27.0-beta.0
• k8s.io/client-go v0.26.0 -> v0.27.0-beta.0
• k8s.io/component-base v0.26.0 -> v0.27.0-beta.0
• k8s.io/cri-api v0.26.0 -> v0.27.0-beta.0
• k8s.io/klog/v2 v2.80.1 -> v2.90.1
• k8s.io/kubectl v0.26.0 -> v0.27.0-beta.0
• k8s.io/kubelet v0.26.0 -> v0.27.0-beta.0
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.67

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.21.4
ghcr.io/siderolabs/install-cni:v1.4.0-alpha.0-7-g343956e
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.27.0-beta.0
registry.k8s.io/kube-controller-manager:v1.27.0-beta.0
registry.k8s.io/kube-scheduler:v1.27.0-beta.0
registry.k8s.io/kube-proxy:v1.27.0-beta.0
ghcr.io/siderolabs/kubelet:v1.27.0-beta.0
ghcr.io/siderolabs/installer:v1.4.0-alpha.3
registry.k8s.io/pause:3.6

Talos 1.3.6 (2023-03-14)

Welcome to the v1.3.6 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.102
• Kubernetes: v1.26.2

Talos is built with Go 1.19.7.

Contributors

• Andrey Smirnov
• Dmitriy Matrenichev
• Tim Jones

Changes

• siderolabs/talos@5b6176d88 release(v1.3.6): prepare release
• siderolabs/talos@4776c433c fix: successful ACPI shutdown in maintenance mode
• siderolabs/talos@042adbf8a feat: update Kubernetes to v1.26.2
• siderolabs/talos@dacbee43d fix: improve etcd leave on reset process
• siderolabs/talos@eee9f5d43 chore: handle grub option - "wipe"
• siderolabs/talos@7f2d04336 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@59b705b01 feat: update Linux to 5.15.102
• siderolabs/talos@c0e349f1c chore: update Go to 1.19.7

Changes from siderolabs/extras

• siderolabs/extras@cb97438 feat: update Go to 1.19.7

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@3b37079 feat: update Linux to 5.15.102
• siderolabs/pkgs@07c9331 feat: update to Go 1.19.7

Changes from siderolabs/tools

• siderolabs/tools@e225a7e feat: update Go to 1.19.7

Dependency Changes

• github.com/siderolabs/extras v1.3.0-3-g527b5f7 -> v1.3.0-4-gcb97438
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-13-gee0d97b -> v1.3.0-15-g3b37079
• github.com/siderolabs/talos/pkg/machinery v1.3.5 -> v1.3.6
• github.com/siderolabs/tools v1.3.0-2-g5cc0a25 -> v1.3.0-3-ge225a7e
• k8s.io/api v0.26.1 -> v0.26.2
• k8s.io/apimachinery v0.26.1 -> v0.26.2
• k8s.io/apiserver v0.26.1 -> v0.26.2
• k8s.io/client-go v0.26.1 -> v0.26.2
• k8s.io/component-base v0.26.1 -> v0.26.2
• k8s.io/cri-api v0.26.1 -> v0.26.2
• k8s.io/kubectl v0.26.1 -> v0.26.2
• k8s.io/kubelet v0.26.1 -> v0.26.2

Previous release can be found at v1.3.5

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-4-gcb97438
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.2
registry.k8s.io/kube-controller-manager:v1.26.2
registry.k8s.io/kube-scheduler:v1.26.2
registry.k8s.io/kube-proxy:v1.26.2
ghcr.io/siderolabs/kubelet:v1.26.2
ghcr.io/siderolabs/installer:v1.3.6
registry.k8s.io/pause:3.6

Talos 1.2.9 (2023-03-11)

Welcome to the v1.2.9 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

CRI Custom Config

Talos 1.2.9 provides easier upgrade path to Talos 1.3.x for users
of CRI custom configuration by allowing Talos 1.3-style config to be accepted before an ugprade.

Contributors

• Andrey Smirnov

Changes

• siderolabs/talos@91e66f154 release(v1.2.9): prepare release
• siderolabs/talos@346a1e28e fix: easier upgrade to Talos 1.3 with custom CRI config

Dependency Changes

• github.com/talos-systems/talos/pkg/machinery v1.2.8 -> v1.2.9

Previous release can be found at v1.2.8

Images

ghcr.io/siderolabs/flannel:v0.19.2
ghcr.io/siderolabs/install-cni:v1.2.0-2-gf14175f
docker.io/coredns/coredns:1.9.3
gcr.io/etcd-development/etcd:v3.5.5
k8s.gcr.io/kube-apiserver:v1.25.5
k8s.gcr.io/kube-controller-manager:v1.25.5
k8s.gcr.io/kube-scheduler:v1.25.5
k8s.gcr.io/kube-proxy:v1.25.5
ghcr.io/siderolabs/kubelet:v1.25.5
ghcr.io/siderolabs/installer:v1.2.9
registry.k8s.io/pause:3.6

Talos 1.4.0-alpha.2 (2023-02-28)

Welcome to the v1.4.0-alpha.2 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Registry Mirror Catch-All Option

Talos now supports a catch-all option for registry mirrors:

machine:
    registries:
        mirrors:
            docker.io:
                - https://registry-1.docker.io/
            "*":
                - https://my-registry.example.com/

Talos Dashboard on TTY2

Talos now starts a text-based UI dashboard on virtual console /dev/tty2 and switches to it by default upon boot.
Kernel logs remain available on /dev/tty1.

To switch TTYs, use the Alt+F1 through Alt+F2 keys.

You can disable this behavior by setting the kernel parameter talos.dashboard.disabled=1.

This behavior is disabled by default on SBCs.

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Kernel Modules

Talos now supports automatically loading kernel drivers built as modules.
If any system extensions or the Talos base kernel build provides kernel modules and if they matches the system hardware (via PCI IDs), they will be loaded automatically.
Modules can still be loaded explicitly by defining it in machine configuration.

Kernel Modules Tree

Talos now supports re-building the kernel modules dependency tree information on upgrades.
This allows modules of same name to co-exist as in-tree and external modules.
System Extensions can provide modules installed into extras directory and when loading it'll take precendence over the in-tree module.

Machine Configuration

Strategic merge config patches correctly support merging .vlans sections of the network interface.

Reset API Enhancements

Talos now supports resetting user disks through the Reset API,
the list of disks to wipe is set using the --user-disks-to-wipe parameter in talosctl.
Additionally, the Reset API can now function in maintenance mode
and has the capability to wipe the node's system disk (partial wipe is not supported).

Component Updates

• Linux: 6.1.12
• containerd: v1.6.18
• Kubernetes: v1.26.1
• etcd: v3.5.7
• CoreDNS: v1.10.1

Talos is built with Go 1.20.1.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Spencer Smith
• Serge Logvinov
• Steve Francis
• Artem Chernyshev
• Tim Jones
• Andrey Smirnov
• Cees-Jan Kiewiet
• Chris van de Sande
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Nico Berlee
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Sander Maijers
• Seán C McCord
• Steffen Windoffer
• Tim van Druenen
• Victor Seva
• budimanjojo

Changes

• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs
• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-alpha.1

• siderolabs/talos@594f27d87 release(v1.4.0-alpha.2): prepare release
• siderolabs/talos@b52071081 feat: introduce new flag in reset API that makes Talos reset user disks
• siderolabs/talos@f55f5df73 feat: move dashboard package & run it in tty2
• siderolabs/talos@36e077ead chore: bump deps
• siderolabs/talos@5a01d5fd4 chore: run extension build as downstream
• siderolabs/talos@426fe9687 fix: extension base folder permission
• siderolabs/talos@609d3a8a6 feat: support strategic merge patches on VLAN configuration
• siderolabs/talos@7e19f32d7 chore: provide version compatibility data for Talos 1.2.x
• siderolabs/talos@230e46e56 refactor: extract parts of kubernetes libraries
• siderolabs/talos@f3d3f0f26 fix: update go-smbios library with Hyper-V data fix
• siderolabs/talos@8711eea96 fix: use passed --context in talosctl config cmd
• siderolabs/talos@5ac9f43e4 feat: start machined earlier & in maintenance mode
• siderolabs/talos@36ab414a1 docs: fix the endpoints in the libvirt guide
• siderolabs/talos@3d55bd80f fix: add --force flag to talosctl gen config
• siderolabs/talos@660b8874d feat: cmdline integer netmask
• siderolabs/talos@1e3daacc4 docs: update nvidia component versions
• siderolabs/talos@b5c03a7fa fix: docker talosctl cluster create provisioner
• siderolabs/talos@6e8f13529 fix: add support for a fallback '*' mirror configuration
• siderolabs/talos@dcd4eb1a9 fix: improve error message on single node upgrade
• siderolabs/talos@ed5af3f78 chore: bump deps
• siderolabs/talos@0dc6858e5 chore: bump cosi-project/runtime
• siderolabs/talos@da2edb9de chore: bump dependencies
• siderolabs/talos@e51a110f0 chore: bump dependencies
• siderolabs/talos@2d0148018 feat: automatically load modules based on hw info
• siderolabs/talos@7b75cd8b9 fix: kernel module dependency tree generation
• siderolabs/talos@65d02e5ad fix: dbus shutdown when it's not initialized
• siderolabs/talos@a7079ce85 fix: quote the ampersand character in GRUB config
• siderolabs/talos@933ba2d82 fix: display correct blockdevice size
• siderolabs/talos@c449cb736 fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@34ab0007a docs: port is needed for wireguard endpoint
• siderolabs/talos@1e1aa84f6 fix: kubernetes removed resource version check
• siderolabs/talos@dcbcf5a93 fix: wait for network and retry in platform get config funcs
• siderolabs/talos@3d7566ec7 test: update Canal CNI manifest URL
• siderolabs/talos@e09e10666 fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@cc6e37a47 feat: use process wrapper for dropping capabilities
• siderolabs/talos@0c6c88874 fix: trackable action flag usage text. --no-wait does not exist
• siderolabs/talos@5cb2915d8 feat: use wrapper for starting processes
• siderolabs/talos@56d945326 fix: panic in talosctl cluster show
• siderolabs/talos@38a51191e fix: correctly expand parameters in the URL
• siderolabs/talos@af21860a2 fix: return proper error if download attempts time out
• siderolabs/talos@54f7d4c92 fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@54cf0672a fix: omit zero MTU in the machine config
• siderolabs/talos@bdc53ac25 docs: add hyperlink to Docker API docs about config.json
• siderolabs/talos@b3bc06dd1 chore: bump vtprotobuf to v0.4.0
• siderolabs/talos@0ba5e59f6 fix: drone config for renovate PR's
• siderolabs/talos@590a393de fix: udevd healthcheck
• siderolabs/talos@2b6b6deac docs: simplify and clarify digital ocean docs

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@ac75538 chore: regen the proto definitions with vtprotobuf v0.4.0

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@269a832 chore: rekres, update discovery api

Changes from siderolabs/extras

• siderolabs/extras@8b28b6b chore: bump deps
• siderolabs/extras@5ab4f59 chore: disable renovate builds
• siderolabs/extras@ddeddbd chore: update packages, tc_redirect_tap
• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/go-kubernetes

• siderolabs/go-kubernetes@570819b feat: initial version of the library
• siderolabs/go-kubernetes@fb79215 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@c526764 feat: fix reading "broken" Hyper-V DMI data

Changes from siderolabs/pkgs

• siderolabs/pkgs@5dbce6b fix: xz url
• siderolabs/pkgs@0097233 chore: re-enable drbd
• siderolabs/pkgs@7493721 fix: sourcefourge url shasums
• siderolabs/pkgs@185f482 feat: update containerd to 1.6.18
• siderolabs/pkgs@e3cab6c chore: bump deps
• siderolabs/pkgs@18661b0 chore: bump deps
• siderolabs/pkgs@885a68b chore: bump deps
• siderolabs/pkgs@c3a6e18 chore: bump dependencies
• siderolabs/pkgs@1fae0b2 feat: virtio drivers as modules
• siderolabs/pkgs@61d8ff4 chore: bump deps and disable un-needed kconfig
• siderolabs/pkgs@15fe6d8 fix: kernel module tree files missing
• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@cd9687b fix: renovate config
• siderolabs/tools@977e3fc chore: bump go to 1.20.1
• siderolabs/tools@15748aa chore: bump deps
• siderolabs/tools@d4b719a chore: bump deps
• siderolabs/tools@8c36dbd chore: bump toolchain, bump protoc-gen-go-grpc
• siderolabs/tools@a62e365 feat: update Go to 1.20
• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.209
• github.com/containerd/cgroups v1.0.4 -> v1.1.0
• github.com/containerd/containerd v1.6.12 -> v1.6.18
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0-alpha.7
• github.com/docker/docker v20.10.21 -> v23.0.1
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/emicklei/dot v1.2.0 -> v1.3.1
• github.com/fatih/color v1.13.0 -> v1.14.1
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.6.0
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.0
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.40.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> 5369909a5de7
• github.com/jsimonetti/rtnetlink v1.3.0 -> v1.3.1
• github.com/mattn/go-isatty v0.0.16 -> v0.0.17
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 47e7db7885b4
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.13
• github.com/siderolabs/discovery-api v0.1.1 -> v0.1.2
• github.com/siderolabs/discovery-client v0.1.3 -> v0.1.4
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-alpha.0-5-g8b28b6b
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.3
• github.com/siderolabs/go-kubernetes v0.1.0 new
• github.com/siderolabs/go-smbios v0.3.1 -> v0.3.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.0-alpha.0-29-g5dbce6b
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-alpha.2
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-alpha.0-17-gcd9687b
• github.com/stretchr/testify v1.8.1 -> v1.8.2
• github.com/u-root/u-root v0.10.0 -> v0.11.0
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.15
• github.com/vmware/govmomi v0.29.0 -> v0.30.2
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> 8449b0a6169f
• golang.org/x/net v0.4.0 -> v0.7.0
• golang.org/x/sys v0.3.0 -> v0.5.0
• golang.org/x/term v0.3.0 -> v0.5.0
• golang.org/x/time v0.2.0 -> v0.3.0
• golang.zx2c4.com/wireguard/wgctrl 97bc4ad4a1cb -> 9c5414ab4bde
• google.golang.org/grpc v1.51.0 -> v1.53.0
• k8s.io/api v0.26.0 -> v0.26.1
• k8s.io/apimachinery v0.26.0 -> v0.26.1
• k8s.io/apiserver v0.26.0 -> v0.26.1
• k8s.io/client-go v0.26.0 -> v0.26.1
• k8s.io/component-base v0.26.0 -> v0.26.1
• k8s.io/klog/v2 v2.80.1 -> v2.90.0
• k8s.io/kubectl v0.26.0 -> v0.26.1
• k8s.io/kubelet v0.26.0 -> v0.26.1
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.66 -> v1.2.67

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.4.0-alpha.0-5-g8b28b6b
docker.io/coredns/coredns:1.10.1
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.1
registry.k8s.io/kube-controller-manager:v1.26.1
registry.k8s.io/kube-scheduler:v1.26.1
registry.k8s.io/kube-proxy:v1.26.1
ghcr.io/siderolabs/kubelet:v1.26.1
ghcr.io/siderolabs/installer:v1.4.0-alpha.2
registry.k8s.io/pause:3.6

Talos 1.3.5 (2023-02-20)

Welcome to the v1.3.5 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.94
• containerd: 1.6.18

Talos is built with Go 1.19.6.

Contributors

• Andrey Smirnov
• Noel Georgi

Changes

• siderolabs/talos@03edf8c1f release(v1.3.5): prepare release
• siderolabs/talos@6a3c9d0fa feat: update containerd 1.6.18
• siderolabs/talos@fbd3d8ec4 fix: docker talosctl cluster create provisioner
• siderolabs/talos@4580b06b8 fix: dbus shutdown when it's not initialized
• siderolabs/talos@1ad06f47b fix: quote the ampersand character in GRUB config
• siderolabs/talos@97c8e2417 fix: display correct blockdevice size
• siderolabs/talos@b682cf48b fix: talosctl reboot command passing mode in wait mode
• siderolabs/talos@81bf60f3a chore: bump go+kernel

Changes from siderolabs/extras

• siderolabs/extras@527b5f7 chore: bump go

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@8c7ea19 fix: blockdevice size is reported by Linux in 512 blocks always

Changes from siderolabs/pkgs

• siderolabs/pkgs@ee0d97b feat: update containerd to 1.6.18
• siderolabs/pkgs@3a737ef chore: bump go+kernel

Changes from siderolabs/tools

• siderolabs/tools@5cc0a25 chore: bump Go to 1.19.6

Dependency Changes

• github.com/containerd/containerd v1.6.16 -> v1.6.18
• github.com/hashicorp/go-getter v1.6.2 -> v1.7.0
• github.com/siderolabs/extras v1.3.0-2-g78b971c -> v1.3.0-3-g527b5f7
• github.com/siderolabs/go-blockdevice v0.4.2 -> v0.4.3
• github.com/siderolabs/pkgs v1.3.0-11-gffdc9f1 -> v1.3.0-13-gee0d97b
• github.com/siderolabs/talos/pkg/machinery v1.3.4 -> v1.3.5
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.3.0-2-g5cc0a25
• golang.org/x/net v0.4.0 -> v0.7.0
• golang.org/x/sys v0.3.0 -> v0.5.0
• golang.org/x/term v0.3.0 -> v0.5.0
• golang.org/x/time v0.2.0 -> v0.3.0

Previous release can be found at v1.3.4

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-3-g527b5f7
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.1
registry.k8s.io/kube-controller-manager:v1.26.1
registry.k8s.io/kube-scheduler:v1.26.1
registry.k8s.io/kube-proxy:v1.26.1
ghcr.io/siderolabs/kubelet:v1.26.1
ghcr.io/siderolabs/installer:v1.3.5
registry.k8s.io/pause:3.6

Talos 1.3.4 (2023-02-09)

Welcome to the v1.3.4 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.92
• containerd: 1.6.16

Contributors

• Andrey Smirnov
• Noel Georgi

Changes

• siderolabs/talos@ea4ae3359 release(v1.3.4): prepare release
• siderolabs/talos@521d00f9f test: update Canal CNI manifest URL
• siderolabs/talos@a10316e1a fix: default dns domain to 'cluster.local' in local case
• siderolabs/talos@db3086ddd fix: panic in talosctl cluster show
• siderolabs/talos@37d8d80ca fix: return proper error if download attempts time out
• siderolabs/talos@75c1f5c9a fix: correctly expand parameters in the URL
• siderolabs/talos@7f171014b fix: correctly quote and unquote strings in GRUB config
• siderolabs/talos@0a587cb29 fix: udevd healthcheck
• siderolabs/talos@a5537025a feat: linux 5.15.92, containerd 1.6.16

Changes from siderolabs/extras

• siderolabs/extras@78b971c chore: update packages

Changes from siderolabs/pkgs

• siderolabs/pkgs@ffdc9f1 feat: linux 5.15.92, containerd 1.6.16

Dependency Changes

• github.com/containerd/containerd v1.6.15 -> v1.6.16
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.3.0-2-g78b971c
• github.com/siderolabs/pkgs v1.3.0-10-g6f6a030 -> v1.3.0-11-gffdc9f1
• github.com/siderolabs/talos/pkg/machinery v1.3.3 -> v1.3.4

Previous release can be found at v1.3.3

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-2-g78b971c
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.1
registry.k8s.io/kube-controller-manager:v1.26.1
registry.k8s.io/kube-scheduler:v1.26.1
registry.k8s.io/kube-proxy:v1.26.1
ghcr.io/siderolabs/kubelet:v1.26.1
ghcr.io/siderolabs/installer:v1.3.4
registry.k8s.io/pause:3.6

Talos 1.4.0-alpha.1 (2023-01-26)

Welcome to the v1.4.0-alpha.1 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

etcd Maintenance

Talos adds new APIs to make it easier to perform etcd maintenance operations.

These APIs are available via new talosctl etcd sub-commands:

• talosctl etcd alarm list|disarm
• talosctl etcd defrag
• talosctl etcd status

See also etcd maintenance guide.

Component Updates

• Linux: 6.1.7
• containerd: v1.6.15
• Kubernetes: v1.26.1
• etcd: v3.5.7

Talos is built with Go 1.19.5.

Contributors

• Andrey Smirnov
• Noel Georgi
• Dmitriy Matrenichev
• Utku Ozdemir
• Serge Logvinov
• Spencer Smith
• Steve Francis
• Cees-Jan Kiewiet
• Chris van de Sande
• Lance R. Vick
• Matthias Riegler
• Michael Vorburger
• Murtaza Udaipurwala
• Nico Berlee
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Seán C McCord
• Tim Jones
• Tim van Druenen
• Victor Seva

Changes

• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone
• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes since v1.4.0-alpha.0

• siderolabs/talos@92bc15f7f release(v1.4.0-alpha.1): prepare release
• siderolabs/talos@e3da4754e feat: update Linux to 6.1.7
• siderolabs/talos@006449e46 test: build integration test early in the pipeline
• siderolabs/talos@09aa71264 fix: renovate config
• siderolabs/talos@2d136f187 feat: set markdown and html descriptions in config json schema
• siderolabs/talos@f0804027a fix: renovate config
• siderolabs/talos@812a2877c chore: bump deps + renovate cleanup
• siderolabs/talos@aa9f66c1c fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@bb4937f1b feat: enable renovate
• siderolabs/talos@3e0057162 fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@00e52ae07 fix: build correctly etcd initial cluster URL
• siderolabs/talos@ae83b10ae feat: create JSON schema for v1alpha1.Config
• siderolabs/talos@703d96595 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@965e64591 docs: update to use talosctl install script
• siderolabs/talos@c5954f434 chore: bump deps
• siderolabs/talos@bb50f6a56 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@d4b8b35de feat: generate kernel module dependency tree
• siderolabs/talos@18122ae73 fix: service restart (including extension services)
• siderolabs/talos@680fd5e45 fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@0b65bbfc8 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@70d9428a1 fix: kubespan MSS clamping
• siderolabs/talos@683b4ccb4 chore: update Go to 1.19.5 and kernel to 6.1.4
• siderolabs/talos@062c7d754 test: fix integration test on cp endpoint update
• siderolabs/talos@8e9fc13d7 feat: implement enum generator for proto files
• siderolabs/talos@771b0dc06 docs: update left over rpi_4 ref to rpi_generic
• siderolabs/talos@6c04b5f79 chore: bump dependencies
• siderolabs/talos@0a5a8802e feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@b0775ebf2 feat: add ISO wipe GRUB boot option
• siderolabs/talos@29020cb9c fix: report fatal sequence errors as reboots
• siderolabs/talos@96629d5ba feat: implement etcd maintenance commands
• siderolabs/talos@80fed3194 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@c6cb36cc1 docs: fix auditpolicy example typo
• siderolabs/talos@ba8265bc5 feat: new talosctl config remove to remove context
• siderolabs/talos@fcb19ff51 fix: implement upgrade version checks for Talos 1.4
• siderolabs/talos@80f150ac8 feat: enable ipv6 on gcp
• siderolabs/talos@8db622f3d docs: add Vandebron to adopters list
• siderolabs/talos@f6a86ae90 fix: oralce cloud zone

Changes from siderolabs/extras

• siderolabs/extras@8cb4792 chore: update Go to 1.19.5
• siderolabs/extras@3ca2df3 chore: disable provenance in buildx
• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@214c1ef chore: set slice.Filter result slice cap to len
• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/pkgs

• siderolabs/pkgs@987d24a feat: mellanox drivers are modules
• siderolabs/pkgs@b82a015 feat: mellanox oped
• siderolabs/pkgs@057d4f9 chore: bump deps
• siderolabs/pkgs@4ac4138 feat: enable nvme support for raspberrypi cm4
• siderolabs/pkgs@ccb9d39 fix: disable magic sysrq
• siderolabs/pkgs@d33202d chore: bump u-boot to 2023.01
• siderolabs/pkgs@cb83e16 chore: bump dependencies
• siderolabs/pkgs@e561dcb feat: bump Go to 1.19.5
• siderolabs/pkgs@c7797c7 feat: update Linux to 6.1.4, restore RPi support
• siderolabs/pkgs@5e8ebb0 feat: add AMD K10 sensor support
• siderolabs/pkgs@73ac37d chore: disable provenance in buildx
• siderolabs/pkgs@8965bee chore: use default symlinks to /bin in base
• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@28d4a57 chore: reduce renovate noise
• siderolabs/tools@e130fd5 chore: bump deps
• siderolabs/tools@37612fe fix: revert enabling provenance
• siderolabs/tools@e0b01e3 chore: bump deps
• siderolabs/tools@d0e6bd0 feat: add gnutls
• siderolabs/tools@3d34b5d chore: bump dependencies
• siderolabs/tools@763c1d9 feat: update Go to 1.19.5
• siderolabs/tools@136958f chore: disable provenance in buildx
• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.184
• github.com/containerd/containerd v1.6.12 -> v1.6.15
• github.com/containernetworking/plugins v1.1.1 -> v1.2.0
• github.com/coreos/go-semver v0.3.0 -> v0.3.1
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0-alpha.4
• github.com/docker/docker v20.10.21 -> v20.10.23
• github.com/dustin/go-humanize v1.0.0 -> v1.0.1
• github.com/fatih/color v1.13.0 -> v1.14.1
• github.com/freddierice/go-losetup/v2 v2.0.1 new
• github.com/gdamore/tcell/v2 v2.5.3 -> v2.5.4
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.39.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> de60144f33f8
• github.com/mattn/go-isatty v0.0.16 -> v0.0.17
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 892d1a2eb0da
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.10 -> v1.0.0-beta.12
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-alpha.0-2-g8cb4792
• github.com/siderolabs/gen v0.4.1 -> v0.4.3
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.0-alpha.0-18-g987d24a
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-alpha.1
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-alpha.0-11-g28d4a57
• github.com/ulikunitz/xz v0.5.11 new
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.14
• github.com/vmware/govmomi v0.29.0 -> v0.30.0
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• go.uber.org/zap v1.23.0 -> v1.24.0
• go4.org/netipx 797b0c90d8ab -> 987e16ee2705
• golang.org/x/net v0.4.0 -> v0.5.0
• golang.org/x/sys v0.3.0 -> v0.4.0
• golang.org/x/term v0.3.0 -> v0.4.0
• golang.org/x/time v0.2.0 -> v0.3.0
• google.golang.org/grpc v1.51.0 -> v1.52.0
• k8s.io/api v0.26.0 -> v0.26.1
• k8s.io/apimachinery v0.26.0 -> v0.26.1
• k8s.io/apiserver v0.26.0 -> v0.26.1
• k8s.io/client-go v0.26.0 -> v0.26.1
• k8s.io/component-base v0.26.0 -> v0.26.1
• k8s.io/klog/v2 v2.80.1 -> v2.90.0
• k8s.io/kubectl v0.26.0 -> v0.26.1
• k8s.io/kubelet v0.26.0 -> v0.26.1

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.4.0-alpha.0-2-g8cb4792
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.1
registry.k8s.io/kube-controller-manager:v1.26.1
registry.k8s.io/kube-scheduler:v1.26.1
registry.k8s.io/kube-proxy:v1.26.1
ghcr.io/siderolabs/kubelet:v1.26.1
ghcr.io/siderolabs/installer:v1.4.0-alpha.1
registry.k8s.io/pause:3.6

Talos 1.3.3 (2023-01-24)

Welcome to the v1.3.3 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.89
• Kubernetes: v1.26.1
• etcd: v3.5.7

Contributors

• Andrey Smirnov
• Serge Logvinov

Changes

• siderolabs/talos@c2cdf54a3 release(v1.3.3): prepare release
• siderolabs/talos@921c91dd8 fix: mark DigitalOcean anchor IP as scope link
• siderolabs/talos@66725d5cd fix: unwrap gRPC errors on stop/remove pods check
• siderolabs/talos@1508d4232 fix: build correctly etcd initial cluster URL
• siderolabs/talos@0a841b7b7 feat: update Kubernetes to 1.26.1, etcd to 3.5.7
• siderolabs/talos@e2dbc2119 chore: preallocate disk images for QEMU VMs
• siderolabs/talos@2c171a33c fix: bump COSI runtime with the panic controller restart fix
• siderolabs/talos@db04c33a4 fix: handle overwriting tags in syslinux ADV
• siderolabs/talos@2782efbf2 fix: kubespan MSS clamping
• siderolabs/talos@f9353c779 fix: service restart (including extension services)
• siderolabs/talos@e04bd3b00 test: fix integration test on cp endpoint update
• siderolabs/talos@2aae885c6 feat: update Linux 5.15.89

Changes from siderolabs/pkgs

• siderolabs/pkgs@6f6a030 feat: update Linux to 5.15.89

Dependency Changes

• github.com/cosi-project/runtime v0.2.0 -> v0.2.1
• github.com/siderolabs/pkgs v1.3.0-9-g9543590 -> v1.3.0-10-g6f6a030
• github.com/siderolabs/talos/pkg/machinery v1.3.2 -> v1.3.3
• go.etcd.io/etcd/api/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/pkg/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/client/v3 v3.5.6 -> v3.5.7
• go.etcd.io/etcd/etcdutl/v3 v3.5.6 -> v3.5.7
• k8s.io/api v0.26.0 -> v0.26.1
• k8s.io/apimachinery v0.26.0 -> v0.26.1
• k8s.io/apiserver v0.26.0 -> v0.26.1
• k8s.io/client-go v0.26.0 -> v0.26.1
• k8s.io/component-base v0.26.0 -> v0.26.1
• k8s.io/kubectl v0.26.0 -> v0.26.1
• k8s.io/kubelet v0.26.0 -> v0.26.1

Previous release can be found at v1.3.2

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-1-g3773d71
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.7
registry.k8s.io/kube-apiserver:v1.26.1
registry.k8s.io/kube-controller-manager:v1.26.1
registry.k8s.io/kube-scheduler:v1.26.1
registry.k8s.io/kube-proxy:v1.26.1
ghcr.io/siderolabs/kubelet:v1.26.1
ghcr.io/siderolabs/installer:v1.3.3
registry.k8s.io/pause:3.6

Talos 1.3.2 (2023-01-12)

Welcome to the v1.3.2 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.86
• containerd: v1.6.15

Contributors

• Andrey Smirnov

Changes

• siderolabs/talos@92d60ffdd release(v1.3.2): prepare release
• siderolabs/talos@3249ad7ff feat: use 'localhost' endpoint for controlplane nodes
• siderolabs/talos@c9e6c61fa feat: add ISO wipe GRUB boot option
• siderolabs/talos@c6fb80aa8 fix: report fatal sequence errors as reboots
• siderolabs/talos@a2f790116 feat: include Kubernetes controlplane endpoint as one of the endpoints
• siderolabs/talos@9fc9372e5 feat: linux 5.15.86, containerd 1.6.15

Changes from siderolabs/pkgs

• siderolabs/pkgs@9543590 chore: disable provenance in buildx
• siderolabs/pkgs@782bbdd feat: linux 5.15.86, containerd 1.6.15

Dependency Changes

• github.com/containerd/containerd v1.6.14 -> v1.6.15
• github.com/siderolabs/pkgs v1.3.0-7-g9931288 -> v1.3.0-9-g9543590
• github.com/siderolabs/talos/pkg/machinery v1.3.1 -> v1.3.2

Previous release can be found at v1.3.1

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-1-g3773d71
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.6
registry.k8s.io/kube-apiserver:v1.26.0
registry.k8s.io/kube-controller-manager:v1.26.0
registry.k8s.io/kube-scheduler:v1.26.0
registry.k8s.io/kube-proxy:v1.26.0
ghcr.io/siderolabs/kubelet:v1.26.0
ghcr.io/siderolabs/installer:v1.3.2
registry.k8s.io/pause:3.6

Talos 1.3.1 (2022-12-28)

Welcome to the v1.3.1 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 5.15.85
• containerd: v1.6.14

Contributors

• Andrey Smirnov
• Utku Ozdemir
• Serge Logvinov

Changes

• siderolabs/talos@4469ad122 release(v1.3.1): prepare release
• siderolabs/talos@0d11741b9 fix: oralce cloud zone
• siderolabs/talos@8a9ff259e fix: send diagnostic output to stderr consistently
• siderolabs/talos@8700457e5 fix: default the manifest namespace if not set
• siderolabs/talos@10d54686c fix: improve talosctl completion
• siderolabs/talos@ab52ab135 fix: use proper key usage for apid client certificate
• siderolabs/talos@e20e66a19 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@42b04e38b feat: validate Talos API access roles in machine config
• siderolabs/talos@0dbaf01e3 feat: linux 5.15.85, containerd 1.6.14

Changes from siderolabs/pkgs

• siderolabs/pkgs@9931288 feat: linux 5.15.85, containerd 1.6.14
• siderolabs/pkgs@5a39853 fix: patch ipmitool IANA URL

Dependency Changes

• github.com/containerd/containerd v1.6.12 -> v1.6.14
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.3.0-7-g9931288
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.3.1

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-1-g3773d71
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.6
registry.k8s.io/kube-apiserver:v1.26.0
registry.k8s.io/kube-controller-manager:v1.26.0
registry.k8s.io/kube-scheduler:v1.26.0
registry.k8s.io/kube-proxy:v1.26.0
ghcr.io/siderolabs/kubelet:v1.26.0
ghcr.io/siderolabs/installer:v1.3.1
registry.k8s.io/pause:3.6

Talos 1.4.0-alpha.0 (2022-12-24)

Welcome to the v1.4.0-alpha.0 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Linux: 6.1.1
• containerd: v1.6.14

Talos is built with Go 1.19.4.

Contributors

• Andrey Smirnov
• Noel Georgi
• Utku Ozdemir
• Dmitriy Matrenichev
• Spencer Smith
• Lance R. Vick
• Michael Vorburger
• Nico Berlee
• Niklas Wik
• Rowan Smith
• Samuel Kees
• Steve Francis
• Victor Seva

Changes

• siderolabs/talos@89dbb0ecf release(v1.4.0-alpha.0): prepare release
• siderolabs/talos@31fb90535 feat: update Linux 6.1.1, containerd 1.6.14
• siderolabs/talos@a0c0352dd fix: send diagnostic output to stderr consistently
• siderolabs/talos@9a5f4c08a fix: default the manifest namespace if not set
• siderolabs/talos@3c6cce5fe docs: update last release for Talos 1.2.x
• siderolabs/talos@703624c43 docs: fix the 1.3 release date
• siderolabs/talos@386c9293a docs: update nvidia-container-runtime version
• siderolabs/talos@ff83d9fd7 fix: improve talosctl completion
• siderolabs/talos@31ff431fa chore: add schulz systemtechnik to the list
• siderolabs/talos@97bef7c47 docs: vsphere.sh > vmware.sh
• siderolabs/talos@34babe858 chore: make organization selection an interface
• siderolabs/talos@a9643b477 fix: use proper key usage for apid client certificate
• siderolabs/talos@171aa9467 fix: disable Wireless Lan using dtoverlay
• siderolabs/talos@2e84d2ab3 chore: update conformance product.yaml
• siderolabs/talos@b7763843a feat: add install script that improves talosctl installation user experience This install script detects the platform and architecture, and downloads the correct talosctl, and checks the gpg checksums. It also installs and chmods the binary.
• siderolabs/talos@afc45ad63 docs: mark Talos 1.3 docs as default
• siderolabs/talos@873bd3807 fix: redact service account key in config in RedactSecrets method
• siderolabs/talos@b3aebfadf feat: validate Talos API access roles in machine config
• siderolabs/talos@40761e17d docs: fork docs for Talos 1.4
• siderolabs/talos@474604cd2 docs: update documentation for Talos 1.3
• siderolabs/talos@faf49218c feat: add more checks for K8s upgrade
• siderolabs/talos@5b992bd86 fix: allow empty dnsDomain in machine config
• siderolabs/talos@eb332cfcb feat: add health check for a minimal memory / disk size
• siderolabs/talos@d04970dfa fix: ignore k8s additional addresses if nil
• siderolabs/talos@63c17104c feat: update Kubernets to 1.26.0
• siderolabs/talos@f7a9a90db chore: update pkgs/tools (Go 1.19.4, containerd 1.6.11)
• siderolabs/talos@cf7adc51c feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@4c31b9b1a docs: clarify what the deal is with /var
• siderolabs/talos@a8ebcca4a chore: remove watchErr from metal.getResource
• siderolabs/talos@1253513bd fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@82e8c9e1f fix: workaround panic in the kubelet service controller
• siderolabs/talos@a505b8909 fix: update COSI and reset restart backoff on success
• siderolabs/talos@e92fdcbad chore: bump kernel to 5.15.81
• siderolabs/talos@f0dddca2a docs: expand help for 'talosctl get'
• siderolabs/talos@fcffc8879 fix: add ext4 filesystem detection
• siderolabs/talos@5b2960eff fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@0219d1124 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@dc5e0f4af fix: report errors to Equinix Metal event API
• siderolabs/talos@7ab140a94 feat: add talosctl machineconfig patch command
• siderolabs/talos@d3cf06114 fix: ignore many more filesystems in IMA
• siderolabs/talos@44e2799b8 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@4452f0e17 docs: bump talos version
• siderolabs/talos@38e57bd12 feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@4cd125d49 fix: correctly handle new watch event types
• siderolabs/talos@881b84152 feat: update Flannel to 0.20.2

Changes from siderolabs/extras

• siderolabs/extras@55d8452 feat: update releases

Changes from siderolabs/gen

• siderolabs/gen@8e89b1e feat: add GetOrCreate and GetOrCall methods

Changes from siderolabs/pkgs

• siderolabs/pkgs@325c9bf feat: bump dependencies
• siderolabs/pkgs@165dff6 fix: patch ipmitool IANA URL
• siderolabs/pkgs@c542f39 feat: add kernel support for usb setrial console
• siderolabs/pkgs@f564f45 chore: bump tools, containerd
• siderolabs/pkgs@268ea7c chore: bump deps
• siderolabs/pkgs@dcf3ceb feat: add nitro enclave support in kernel
• siderolabs/pkgs@17ea5e6 chore: bump kernel to 5.15.81

Changes from siderolabs/tools

• siderolabs/tools@e2a8692 feat: update releases
• siderolabs/tools@0e48f37 chore: bump protobuf
• siderolabs/tools@a21aa1c chore: bump toolchain and mpc versions
• siderolabs/tools@1a75d0f chore: bump deps
• siderolabs/tools@55bd185 feat: update Go to 1.19.4
• siderolabs/tools@f291f46 chore: bump tools

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 -> v0.2.3
• github.com/aws/aws-sdk-go v1.44.147 -> v1.44.166
• github.com/containerd/containerd v1.6.12 -> v1.6.14
• github.com/cosi-project/runtime v0.2.0 -> v0.3.0-alpha.2
• github.com/docker/docker v20.10.21 -> v20.10.22
• github.com/hetznercloud/hcloud-go v1.37.0 -> v1.38.0
• github.com/insomniacslk/dhcp f26e6d78f622 -> de60144f33f8
• github.com/mdlayher/ethtool 0e16326d06d1 -> ba3b4bc2e02c
• github.com/mdlayher/genetlink v1.3.0 -> v1.3.1
• github.com/mdlayher/netlink v1.7.0 -> v1.7.1
• github.com/prometheus/procfs v0.8.0 -> v0.9.0
• github.com/rivo/tview db36428c92d9 -> 02e38ea9604c
• github.com/siderolabs/extras v1.3.0-1-g3773d71 -> v1.4.0-alpha.0
• github.com/siderolabs/gen v0.4.1 -> v0.4.2
• github.com/siderolabs/pkgs v1.3.0-5-g6509d23 -> v1.4.0-alpha.0-6-g325c9bf
• github.com/siderolabs/talos/pkg/machinery v1.3.0 -> v1.4.0-alpha.0
• github.com/siderolabs/tools v1.3.0-1-g712379c -> v1.4.0-alpha.0-3-ge2a8692
• github.com/vmware-tanzu/sonobuoy v0.56.12 -> v0.56.14
• github.com/vmware/govmomi v0.29.0 -> v0.30.0
• go.uber.org/zap v1.23.0 -> v1.24.0
• golang.org/x/time v0.2.0 -> v0.3.0

Previous release can be found at v1.3.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.4.0-alpha.0
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.6
registry.k8s.io/kube-apiserver:v1.26.0
registry.k8s.io/kube-controller-manager:v1.26.0
registry.k8s.io/kube-scheduler:v1.26.0
registry.k8s.io/kube-proxy:v1.26.0
ghcr.io/siderolabs/kubelet:v1.26.0
ghcr.io/siderolabs/installer:v1.4.0-alpha.0
registry.k8s.io/pause:3.6

Talos 1.2.8 (2022-12-20)

Welcome to the v1.2.8 release of Talos!

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

Component Updates

• Kubernetes: v1.25.5
• Linux: 5.15.83
• containerd: 1.6.12

Talos is built with Go 1.19.4.

Contributors

• Andrey Smirnov
• Alexandre Mclean

Changes

• siderolabs/talos@574674396 release(v1.2.8): prepare release
• siderolabs/talos@426fd28aa fix: workaround panic in the kubelet service controller
• siderolabs/talos@05430b987 fix: ignore many more filesystems in IMA
• siderolabs/talos@4af93c3b6 fix: parse correctly upgrade cmd force flag
• siderolabs/talos@0c637ab0d chore: use build-container image for s3cmd
• siderolabs/talos@bf0840da0 feat: update Kubernetes to 1.25.5
• siderolabs/talos@4b1aa1061 chore: update pkgs with latest releases

Changes from siderolabs/pkgs

• siderolabs/pkgs@3903d18 fix: use proper containerd version tag
• siderolabs/pkgs@623561a feat: update Go 1.19.4, Linux 5.15.83, containerd 1.6.12

Changes from siderolabs/tools

• siderolabs/tools@81b11c8 feat: update Go to 1.19.4

Dependency Changes

• github.com/containerd/containerd v1.6.8 -> v1.6.12
• github.com/siderolabs/pkgs v1.2.0-20-g23c0dfd -> v1.2.0-22-g3903d18
• github.com/siderolabs/tools v1.2.0-2-gdcbd748 -> v1.2.0-3-g81b11c8
• github.com/talos-systems/talos/pkg/machinery v1.2.7 -> v1.2.8
• golang.org/x/net bea034e7d591 -> 1e63c2f08a10
• golang.org/x/sys f11e5e49a4ec -> v0.3.0
• golang.org/x/term a9ba230a4035 -> v0.3.0
• k8s.io/api v0.25.4 -> v0.25.5
• k8s.io/apimachinery v0.25.4 -> v0.25.5
• k8s.io/apiserver v0.25.4 -> v0.25.5
• k8s.io/client-go v0.25.4 -> v0.25.5
• k8s.io/component-base v0.25.4 -> v0.25.5
• k8s.io/cri-api v0.25.4 -> v0.25.5
• k8s.io/kubectl v0.25.4 -> v0.25.5
• k8s.io/kubelet v0.25.4 -> v0.25.5

Previous release can be found at v1.2.7

Images

ghcr.io/siderolabs/flannel:v0.19.2
ghcr.io/siderolabs/install-cni:v1.2.0-2-gf14175f
docker.io/coredns/coredns:1.9.3
gcr.io/etcd-development/etcd:v3.5.5
k8s.gcr.io/kube-apiserver:v1.25.5
k8s.gcr.io/kube-controller-manager:v1.25.5
k8s.gcr.io/kube-scheduler:v1.25.5
k8s.gcr.io/kube-proxy:v1.25.5
ghcr.io/siderolabs/kubelet:v1.25.5
ghcr.io/siderolabs/installer:v1.2.8
registry.k8s.io/pause:3.6

Talos 1.3.0 (2022-12-15)

Welcome to the v1.3.0 release of Talos!

Release notes are also part of the documentation.

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

kube-apiserver Audit Policy

Talos now supports setting custom audit policy for kube-apiserver in the machine configuration.

cgroups v1

Talos defaults to using cgroups v2 when Talos doesn't run in a container (when running in a container
Talos follows host cgroups mode).
Talos can now be forced to use cgroups v1 by setting boot kernel argument talos.unified_cgroup_hierarchy=0:

machine:
  install:
    extraKernelArgs:
      - "talos.unified_cgroup_hierarchy=0"

Current cgroups mode can be checked with talosctl ls /sys/fs/cgroup:

cgroups v1:

blkio
cpu
cpuacct
cpuset
devices
freezer
hugetlb
memory
net_cls
net_prio
perf_event
pids

cgroups v2:

cgroup.controllers
cgroup.max.depth
cgroup.max.descendants
cgroup.procs
cgroup.stat
cgroup.subtree_control
cgroup.threads
cpu.stat
cpuset.cpus.effective
cpuset.mems.effective
init
io.stat
kubepods
memory.numa_stat
memory.stat
podruntime
system

Note: cgroupsv1 is deprecated and it should be used only for compatibility with workloads which don't support cgroupsv2 yet.

Kernel Command Line ip= Argument

Talos now supports referencing interface name via enxMAC address notation:

ip=172.20.0.2::172.20.0.1:255.255.255.0::enx7085c2dfbc59

CRI Configuration Overrides

Talos no longer supports CRI config overrides placed in /var/cri/conf.d directory.

New way correctly handles merging of containerd/CRI plugin configuration.

etcd Consistency Check

Talos enables --experimental-compact-hash-check-enabled option by default to improve
etcd store consistency guarantees.

This options is only available with etcd >= v3.5.5, so Talos doesn't support version of etcd before v3.5.5.

etcd Member ID

Talos now internally handles etcd member removal by member ID instead of member name (hostname).
This resolves the case when member name is not accurate or empty (eg: when etcd hasn't fully joined yet).

Command talosctl etcd remove-member now accepts member IDs instead of member names.

New resource can be used to get member ID of the Talos node:

talosctl get etcdmember

Exoscale Platform

Talos now supports new platform: Exoscale.

Exoscale provides a firewall, TCP load balancer and autoscale groups.
It works well with CCM and Kubernetes node autoscaler.

Kernel Modules

Talos now supports settings kernel module parameters.

Eg:

machine:
  kernel:
    modules:
      - name: "br_netfilter"
        parameters:
          - nf_conntrack_max=131072

KubeSpan

KubeSpan MTU link size is now configurable via network.kubespan.mtu setting in the machine configuration.

Node Labels

Talos now supports specifying node labels in the machine configuration:

machine:
  nodeLabels:
    rack: rack1a
    zone: us-east-1a

Changes to the node labels will be applied immediately without kubelet restart.

Talos keeps track of the owned node labels in the talos.dev/owned-labels annotation.

Registry Mirrors

Talos had an inconsistency in the way registry mirror endpoints are handled when compared with containerd implementation:

machine:
    registries:
        mirrors:
            docker.io:
                endpoints:
                    - "https://mirror-registry/v2/mirror.docker.io"

Talos would use endpoint https://mirror-registry/v2/mirror.docker.io, while containerd would use https://mirror-registry/v2/mirror.docker.io/v2.
This inconsistency is now fixed, and Talos uses same endpoint as containerd.

New overridePath configuration is introduced to skip appending /v2 both on Talos and containerd side:

machine:
    registries:
        mirrors:
            docker.io:
                endpoints:
                    - "https://mirror-registry/v2/mirror.docker.io"
                overridePath: true

registry.k8s.io

Talos now uses registry.k8s.io instead of k8s.gcr.io for Kubernetes container images.

See Kubernetes documentation for additional details.

If using registry mirrors, or in air-gapped installations you may need to update your configuration.

Routes

Talos now supports setting MTU for a specific route.

Nano Pi R4S

Talos now supports the Nano Pi R4S SBC.

Raspberry Generic Images

The Raspberry Pi 4 specific image has been deprecated and will be removed in the v1.4 release of Talos.
Talos now ships a generic Raspberry Pi image that should support more Raspberry Pi variants.
Refer to the docs at https://www.talos.dev/v1.3/talos-guides/install/single-board-computers/rpi_generic/ to find which ones are supported.

Encryption with secretbox

By default new clusters will use secretbox for encryption instead of AESCBC.
If both are configured secretbox will take precedence.
Old clusters may keep using AESCBC.
To enable secretbox you may add an encryption secret at cluster.secretboxEncryptionSecret.
You should keep aescbcEncryptionSecret however, even if secretbox is enabled older data will still be encrypted with AESCBC.

How to generate the secret:

dd if=/dev/random of=/dev/stdout bs=32 count=1 | base64

Static Pod Manifests

The directory "/etc/kubernetes/manifests" is now deprecated.
Static pods should always be configured in machine.pods.
To reenable support you may set machine.kubelet.disableManifestsDirectory.

Eg:

machine:
  kubelet:
    disableManifestsDirectory: no

talosctl machineconfig patch

A new subcommand, machineconfig patch is added to talosctl to allow patching of machine configuration.

It accepts a machineconfig file and a list of patches as input and outputs the patched machine configuration.

Patches can be sourced from the command line or from a file. Output can be written to a file or to stdout.

Example:

talosctl machineconfig patch controlplane.yaml --patch '[{"op":"replace","path":"/cluster/clusterName","value":"patch1"}]' --patch @/path/to/patch2.json

Additionally, talosctl machineconfig gen subcommand is introduced as an alias to talosctl gen config.

Component Updates

• Kubernetes: v1.26.0
• Flannel: v0.20.2
• CoreDNS: v1.10.0
• etcd: v3.5.6
• Linux: 5.15.83
• containerd: v1.6.12

Talos is built with Go 1.19.4.

Contributors

• Andrey Smirnov
• Noel Georgi
• Andrey Smirnov
• Michal Witkowski
• Artem Chernyshev
• Dmitriy Matrenichev
• Artem Chernyshev
• Serge Logvinov
• Alexey Palazhchenko
• Utku Ozdemir
• Andrey Smirnov
• Philipp Sauter
• Steve Francis
• Andrew Rynhard
• Andrew Rynhard
• Tim Jones
• Seán C McCord
• Kris Reeves
• Marvin Drees
• Spencer Smith
• Alexandre Mclean
• Branden Cash
• Brandon Nason
• Cameron Brunner
• DJAlPee
• Daniel Low
• Gerard de Leeuw
• Jack Wink
• Jon Stelly
• Martin Stone
• Matt Zahorik
• Maxim Makarov
• Michael Vorburger ⛑️
• Olli Janatuinen
• Pau Campana
• Rubens Farias
• Sander Maijers
• Spencer Smith
• ankitm123
• emattiza
• killcity

Changes

• siderolabs/talos@323e3ccd9 release(v1.3.0): prepare release
• siderolabs/talos@50e4a6d48 feat: add health check for a minimal memory / disk size
• siderolabs/talos@0c2940897 feat: add more checks for K8s upgrade
• siderolabs/talos@c9c15b6dd fix: allow empty dnsDomain in machine config
• siderolabs/talos@c48856a6c fix: ignore k8s additional addresses if nil
• siderolabs/talos@1ba7515b6 feat: update Linux to 5.15.83
• siderolabs/talos@6b55df979 chore: update Linux to 5.15.82
• siderolabs/talos@f8f308ec0 release(v1.3.0-beta.2): prepare release
• siderolabs/talos@b677e1361 feat: update Kubernets to 1.26.0
• siderolabs/talos@9581002ce feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@8745f581b feat: update containerd to 1.6.12
• siderolabs/talos@66feeeccd fix: don't report link name in route statuses
• siderolabs/talos@09da90f66 release(v1.3.0-beta.1): prepare release
• siderolabs/talos@91844709e chore: disable single commit check
• siderolabs/talos@a9673efa1 chore: remove watchErr from metal.getResource
• siderolabs/talos@0bdec81ca fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@bce132f14 fix: workaround panic in the kubelet service controller
• siderolabs/talos@e47e74452 fix: add ext4 filesystem detection
• siderolabs/talos@2d03ef401 docs: expand help for 'talosctl get'
• siderolabs/talos@810a550f1 fix: report errors to Equinix Metal event API
• siderolabs/talos@1f382d8f7 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@44fce3073 feat: add talosctl machineconfig patch command
• siderolabs/talos@89882dd2d fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@1e520afbb fix: ignore many more filesystems in IMA
• siderolabs/talos@2964b9327 fix: correctly handle new watch event types
• siderolabs/talos@c8968a701 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@a5fccddaa feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@9012e679a feat: update Flannel to 0.20.2
• siderolabs/talos@8c563ae28 chore: update Go to 1.19.4
• siderolabs/talos@63adb708c chore: bump kernel to 5.15.81
• siderolabs/talos@788d5c91e release(v1.3.0-beta.0): prepare release
• siderolabs/talos@2ebe410e9 feat: update COSI to v0.2.0
• siderolabs/talos@00388651b chore: bump pkgs and Go dependencies
• siderolabs/talos@bbb56840e chore: update protobuf API descriptors for 1.3.0
• siderolabs/talos@fdbd380f6 feat: use 'registry.k8s.io' for Kubernetes images
• siderolabs/talos@1103c5ad2 feat: implement pre-flight checks in the installer
• siderolabs/talos@4a052eadf fix: disable kexec on upgrades from pre-BTF kernel
• siderolabs/talos@732c459ec fix: parse and apply DHCP settings properly from cmdline
• siderolabs/talos@a9e9d71b2 fix: parse correctly upgrade cmd force flag
• siderolabs/talos@e85e64d6f docs: document metal-iso configuration method
• siderolabs/talos@c27adbe54 docs: update getting started
• siderolabs/talos@260684a93 chore: use build-container image for s3cmd
• siderolabs/talos@ee7a4777a chore: bump dependencies
• siderolabs/talos@49a4b1494 docs: clarify talosctl apply-config & talosctl get machineconfig
• siderolabs/talos@a58c3d669 feat: hcloud location properties
• siderolabs/talos@6bce06f62 feat: update etcd 3.5.6
• siderolabs/talos@c54bea128 fix: don't publish external IPs as affiliate addresses
• siderolabs/talos@54d9032ce test: fix log streaming for conformance tests
• siderolabs/talos@e432579d4 feat: kubespan node endpoints filter
• siderolabs/talos@6430ce1ef fix: limit SideroLink Wireguard link MTU to 1280
• siderolabs/talos@1f1128028 chore: add flag to force talos cluster folder deletion
• siderolabs/talos@d9c2c6f0a chore: update Kubernetes Go modules to 0.26.0-rc.1
• siderolabs/talos@3d30ce6d7 feat: add util function to extract GRPC status from error
• siderolabs/talos@9e44341c4 release(v1.3.0-alpha.2): prepare release
• siderolabs/talos@aa56aed79 feat: publish discovered public IP as one of the KubeSpan endpoint
• siderolabs/talos@9382443ba feat: update Kubernetes to v1.26.0-rc.0
• siderolabs/talos@6ffc381c5 feat: implement CRI configuration customization
• siderolabs/talos@e1e340bdd feat: expose Talos node labels as a machine configuration field
• siderolabs/talos@c78bbbfda docs: specify that only XFS partitions are detected
• siderolabs/talos@b881a9a79 chore: bump dependencies
• siderolabs/talos@5bfd7dbfa test: fix assertion on reboot test
• siderolabs/talos@1cfb6188b feat: implement support for cgroupsv1
• siderolabs/talos@3866d0e33 feat: update Kubernetes to v1.26.0-beta.0
• siderolabs/talos@e1590ba7b fix: lifecycle action tracking
• siderolabs/talos@804762c59 feat: add timeout to cli action tracking, track by default & refactor
• siderolabs/talos@4e114ca12 feat: use the etcd member id for etcd operations instead of hostname
• siderolabs/talos@06fea2441 feat: expand platform metadata resources
• siderolabs/talos@03a20da9d fix: filter up duplicate IPs out of NodeAddresses
• siderolabs/talos@6b771bc73 chore: bump deps
• siderolabs/talos@96aa9638f chore: rename talos-systems/talos to siderolabs/talos
• siderolabs/talos@30bbf6463 refactor: use siderolabs/net version with netip.Addr
• siderolabs/talos@343c55762 chore: replace talos-systems Go modules with siderolabs
• siderolabs/talos@0301bbe93 fix: check if processes is nil to avoid panic
• siderolabs/talos@08e7e49a2 test: update versions for upgrade tests
• siderolabs/talos@0b41923c3 fix: restore the StaticPodStatus resource
• siderolabs/talos@1947092ae chore: introduce a healthcheck for machined service
• siderolabs/talos@3333cd93c fix: generate correct Flannel config for IPv6-only clusters
• siderolabs/talos@d7070f5e7 release(v1.3.0-alpha.1): prepare release
• siderolabs/talos@869f3b5a5 feat: network configuration improvements on the OpenStack platform
• siderolabs/talos@29f2195e1 feat: support exoscale cloud
• siderolabs/talos@8b4ae08d1 fix: etcd snapshot command on Windows
• siderolabs/talos@8bfa7ac1d feat: platform metadata resource
• siderolabs/talos@7e50e24c0 fix: properly cleanup legacy static pod manifests directory
• siderolabs/talos@6ee47bcc6 fix: support serving config for qemu launcher on IPv6
• siderolabs/talos@6c3d11b49 docs: admission control patch note
• siderolabs/talos@4ea3b99b5 fix: serve static pod files on 127.0.0.1 instead of localhost
• siderolabs/talos@23842114f feat: support encryption with secretbox
• siderolabs/talos@f6773c472 docs: talos support on equinix metal
• siderolabs/talos@b307160f6 chore: bump dependencies
• siderolabs/talos@d7edd0e2e refactor: use go-circular, go-kubeconfig, and go-tail
• siderolabs/talos@c6e1702ec feat: use URL-based manifests to present static pods to the kubelet
• siderolabs/talos@136a795e5 docs: update system requirements to mention dedicated disk usage
• siderolabs/talos@879e8c0bf chore: update kernel with BTF support
• siderolabs/talos@ceb0cd99a feat: implement Talos API auth using SideroV1 signatures
• siderolabs/talos@e6fba7d3b chore: update dependencies
• siderolabs/talos@93e55b85f chore: bump golangci-lint to v1.50.0
• siderolabs/talos@aa3d9b4ca fix: regenerate cert on node labeling retry
• siderolabs/talos@021c73c35 fix: lowercase nodename
• siderolabs/talos@b902036e1 docs: update office hours time link
• siderolabs/talos@7fcb8c681 feat: update Flannel to v0.20.0
• siderolabs/talos@dc70d892a fix: support setting KubeSpan link MTU
• siderolabs/talos@7d52bad37 feat: update Linux to 5.15.73
• siderolabs/talos@9c78b3aff feat: update Kubernetes to v1.26.0-alpha.2
• siderolabs/talos@94913a672 docs: add lofty to talos adopters
• siderolabs/talos@0a0bdfe16 docs: add Tremor Video to adopters
• siderolabs/talos@b7b1d4fd6 feat: use readonly containers
• siderolabs/talos@d210338e3 fix: skip protobuf full unmarshaling for some talosctl commands
• siderolabs/talos@b3c679d18 chore: bump dependencies
• siderolabs/talos@993743f63 fix: skip hostname via DHCP on OpenStack platform
• siderolabs/talos@db076e7b5 feat: pin interface by mac address in cmdline args
• siderolabs/talos@63de93722 fix: update go-smbios to v0.3.1
• siderolabs/talos@49e9f808e chore: bump kernel and go
• siderolabs/talos@c7372144d docs: add constraints to upgrade docs
• siderolabs/talos@c71c8ca18 docs: consolidate, simplify and correct various docs
• siderolabs/talos@06f76bfeb chore: bump dependencies
• siderolabs/talos@b1c421b9a chore: publish ami's with imds v2 enabled
• siderolabs/talos@195c40ab5 docs: add information about applicable use cases of disk encryption
• siderolabs/talos@54a687fb8 docs: consolidate and expand on discovery service
• siderolabs/talos@139c62d76 feat: allow upgrades in maintenance mode (only over SideroLink)
• siderolabs/talos@48dee4805 feat: support mtu for routes
• siderolabs/talos@1c43c72ae docs: fix talos required kernel params
• siderolabs/talos@67cc45ae3 release(v1.3.0-alpha.0): prepare release
• siderolabs/talos@18c377a4d feat: customize audit policy
• siderolabs/talos@23c9ea46b fix: raspberry pi install
• siderolabs/talos@f17cdee16 feat: jsonpath filter for talosctl get outputs
• siderolabs/talos@6bd3cca1a chore: generic raspberry pi images
• siderolabs/talos@d914ab8bb chore: add vulncheck tool as a linter
• siderolabs/talos@a0151aa13 feat: add generic rpi u-boot support
• siderolabs/talos@30f851d09 chore: bump dependences
• siderolabs/talos@8b2235c3b fix: lookup Equinix Metal bond slaves using 'permanent addr'
• siderolabs/talos@b3257ebb1 chore: bump kernel to 5.15.70
• siderolabs/talos@0b2767c16 feat: implement 'permanent addr' in link statuses
• siderolabs/talos@c90e20251 fix: kubeconfig permission
• siderolabs/talos@fc48849d0 chore: move maps/slices/ordered to gen module
• siderolabs/talos@8b09bd4b0 feat: update Kubernetes to v1.26.0-alpha.1
• siderolabs/talos@276d4175b chore: bump extension versions in testing
• siderolabs/talos@357b770cb fix: cryptsetup delete slot
• siderolabs/talos@711128839 fix: continue applying bootstrap manifests on some errors
• siderolabs/talos@ce12c7b38 chore: update COSI runtime to v0.2.0-alpha.1
• siderolabs/talos@1b435c0b3 chore: bump kernel + ice drivers
• siderolabs/talos@18e041f1e docs: fix typo in patching example
• siderolabs/talos@0ad6452ca feat: update CoreDNS to v1.10.0
• siderolabs/talos@479f3f52e chore: bump dependencies
• siderolabs/talos@e07c6ae99 feat: update Kubernetes to v1.25.1
• siderolabs/talos@13fdfaffc test: fix up default branch name
• siderolabs/talos@ef181321a docs: add component diagram; K8s & Talos Linux
• siderolabs/talos@aade73643 docs: fix missing variable in OpenEBS docs
• siderolabs/talos@472590aa8 chore: return InvalidArgument on invalid config in maintenance mode
• siderolabs/talos@e5cabd42c feat: enable etcd consistency hashcheck
• siderolabs/talos@015535d90 fix: update discovery client with the redirect fix
• siderolabs/talos@d0c8e7699 chore: bump kernel and go
• siderolabs/talos@985b0c2e7 chore: remove go.work.sum
• siderolabs/talos@69124f102 feat: update etcd to v3.5.5
• siderolabs/talos@1985a796c docs: update docs for pod security
• siderolabs/talos@94b088f02 fix: set etcd options consistently
• siderolabs/talos@92ae7ef4b fix: fix protoenc encoding for enums and types with custom encoders
• siderolabs/talos@93809017c docs: cpu scaling governor knowledgebase
• siderolabs/talos@7b270ff33 test: fix api controller test
• siderolabs/talos@2dadcd669 fix: stop worker nodes from acting as apid routers
• siderolabs/talos@9eaf33f3f fix: never sign client certificate requests in trustd
• siderolabs/talos@436749124 feat: environment vars for extension service
• siderolabs/talos@0c0cb671e chore: mark machine configuration validation failure as InvalidArgument
• siderolabs/talos@f424e5340 fix: stop containers more thoroughly
• siderolabs/talos@12827b861 chore: move "implements" checks to compile time
• siderolabs/talos@3a67c42cb fix: kill the task processes when cleaning up stale task
• siderolabs/talos@14a79e325 chore: bump dependencies
• siderolabs/talos@9beee92e7 docs: fix double vv in Kubernetes version
• siderolabs/talos@688272515 fix: use different username for Talos Kubernetes API access
• siderolabs/talos@161a52a9e feat: check apid client certificate extended key usage
• siderolabs/talos@9dadc4a59 fix: include all node addresses into etcd cert SANs
• siderolabs/talos@71bfd3e43 feat: update CoreDNS to 1.9.4
• siderolabs/talos@9df8f1ff1 fix: list COSI APIs for the apid authenticator
• siderolabs/talos@31462450f fix: pass a pointer to specs.Mount into protoenc.Marshal
• siderolabs/talos@e626540df chore: avoid double API request logging in trustd
• siderolabs/talos@f62d17125 chore: update crypto to use new import path siderolabs/crypto
• siderolabs/talos@ef27dd855 chore: bump dependencies
• siderolabs/talos@6472ae00b fix: automatically discard VIPs for etcd advertised addresses
• siderolabs/talos@5e21cca52 feat: support setting kernel parameters
• siderolabs/talos@bd56621cd feat: add structprotogen tool
• siderolabs/talos@cdb6bb2cc feat: add Nano Pi R4S support
• siderolabs/talos@36c1f1d6e fix: flip the client-server version check
• siderolabs/talos@cd6c53a97 docs: fork docs for v1.3
• siderolabs/talos@0847400f7 fix: prevent panic on health check if a member has no IPs
• siderolabs/talos@7471d7f01 feat: update Flannel to v0.19.2
• siderolabs/talos@148c75cfb docs: consolidate the control-plane documentation
• siderolabs/talos@353154281 fix: drop kube-system SA default binding
• siderolabs/talos@4f37b668b chore: remove capi hacks
• siderolabs/talos@1369afea8 docs: make 1.2.0 docs default ones
• siderolabs/talos@7627cb0e3 docs: add new talosctl gen secrets
• siderolabs/talos@8aa60a37a chore: bump kernel to 5.15.64
• siderolabs/talos@a798dbd5d docs: update docs for upcoming 1.2.0 release
• siderolabs/talos@b2fec3c97 fix: properly handle configContext being nil in Talos client
• siderolabs/talos@1c0977b3a fix: change the type of returned gRPC connection object from the client
• siderolabs/talos@41848e421 fix: expose Talos client gRPC connection via the function Conn
• siderolabs/talos@2e9be4af8 chore: bump dependencies
• siderolabs/talos@d283aba3a test: fix cli reboot test
• siderolabs/talos@0b339a9dc feat: track progress of action API calls
• siderolabs/talos@072349812 fix: update COSI to the version with gRPC Wait fix
• siderolabs/talos@89d57aa81 fix: always abort the maintenance service
• siderolabs/talos@f6fa74619 fix: limit apid backoff max delay
• siderolabs/talos@d7ef346db fix: get command in the case 'nodes' are not set in the context
• siderolabs/talos@4e9c32256 fix: correctly render hosts.toml with multiple endpoints
• siderolabs/talos@cdd0f08bc feat: check client <> server version in some Talos commands
• siderolabs/talos@446b0af58 chore: bump kernel and runc
• siderolabs/talos@8c203ce9b feat: remove the machine from the discovery service on reset
• siderolabs/talos@b59ca5810 chore: move from inet.af/netaddr to net/netip and go4.org/netipx
• siderolabs/talos@053af1d59 fix: update etcd certificates when node addresses changes
• siderolabs/talos@11edb2c6f test: re-enable upgrade tests
• siderolabs/talos@0310e2089 chore: bump github.com/siderolabs/protoenc to v0.1.5
• siderolabs/talos@29bd63240 chore: remove old build tags syntax
• siderolabs/talos@b500d0aa9 chore: bump k8s to v1.25.0
• siderolabs/talos@29e574be7 docs: update to v1.2.0-beta.1
• siderolabs/talos@26b549f2a chore: bump dependencies
• siderolabs/talos@8c3ac4c42 chore: limit GOMAXPROCS for Talos services
• siderolabs/talos@361e85b74 fix: properly read kexec disabled sysctl
• siderolabs/talos@cfe6c2bc2 docs: nvidia oss drivers
• siderolabs/talos@2f2d97b6b fix: don't wait for the hostname in maintenance mode
• siderolabs/talos@b15a63924 chore: bump kernel to 5.15.62
• siderolabs/talos@a0d94be30 fix: stable default hostname bias
• siderolabs/talos@da4cd34ef feat: update etcd advertised peer addresses on the fly
• siderolabs/talos@faf92ce01 chore: bump kubernetes to v1.25.0-rc.1
• siderolabs/talos@52de919e3 chore: bump containerd to v1.6.8
• siderolabs/talos@7d43fc79b fix: make 'ca', 'crt' and 'key' flags optional for 'talosctl config add'
• siderolabs/talos@fd467e02c fix: handle grub config being empty in the Revert function
• siderolabs/talos@9492aca65 fix: clean up cancelCtxMu leftovers in PriorityLock
• siderolabs/talos@61e3eb2ea fix: talosctl edit mc loop
• siderolabs/talos@32db7a7f5 fix: surround cancelCtx with the mutex

Changes since v1.3.0-beta.2

• siderolabs/talos@323e3ccd9 release(v1.3.0): prepare release
• siderolabs/talos@50e4a6d48 feat: add health check for a minimal memory / disk size
• siderolabs/talos@0c2940897 feat: add more checks for K8s upgrade
• siderolabs/talos@c9c15b6dd fix: allow empty dnsDomain in machine config
• siderolabs/talos@c48856a6c fix: ignore k8s additional addresses if nil
• siderolabs/talos@1ba7515b6 feat: update Linux to 5.15.83
• siderolabs/talos@6b55df979 chore: update Linux to 5.15.82

Changes from siderolabs/crypto

• siderolabs/crypto@c3225ee feat: allow CSR template subject field to be overridden
• siderolabs/crypto@8570669 chore: rename to siderolabs/crypto
• siderolabs/crypto@e9df1b8 feat: add support for generating keys from RSA-SHA256 CAs
• siderolabs/crypto@510b0d2 chore: add json tags
• siderolabs/crypto@6fa2d93 fix: deepcopy nil fields as nil
• siderolabs/crypto@9a63cba fix: add back support for generating ECDSA keys with P-256 and SHA512
• siderolabs/crypto@893bc66 fix: use SHA256 for ECDSA-P256
• siderolabs/crypto@deec8d4 chore: implement DeepCopy methods for PEMEncoded* types
• siderolabs/crypto@d3cb772 feat: make possible to change KeyUsage
• siderolabs/crypto@6bc5bb5 chore: remove unused argument
• siderolabs/crypto@cd18ef6 feat: add support for several organizations
• siderolabs/crypto@97c888b chore: add options to CSR
• siderolabs/crypto@7776057 chore: fix typos
• siderolabs/crypto@80df078 chore: remove named result parameters
• siderolabs/crypto@15bdd28 chore: minor updates
• siderolabs/crypto@4f80b97 fix: verify CSR signature before issuing a certificate
• siderolabs/crypto@39584f1 feat: support for key/certificate types RSA, Ed25519, ECDSA
• siderolabs/crypto@cf75519 fix: function NewKeyPair should create certificate with proper subject
• siderolabs/crypto@751c95a feat: add 'PEMEncodedKey' which allows to transport keys in YAML
• siderolabs/crypto@562c3b6 feat: add support for public RSA key in RSAKey
• siderolabs/crypto@bda0e9c feat: enable more conversions between encoded and raw versions
• siderolabs/crypto@e0dd56a feat: add NotBefore option for x509 cert creation
• siderolabs/crypto@12a4897 feat: add support for SPKI fingerprint generation and matching
• siderolabs/crypto@d0c3eef fix: implement NewKeyPair
• siderolabs/crypto@196679e feat: move pkg/grpc/tls from github.com/talos-systems/talos as ./tls
• siderolabs/crypto@1ff6242 chore: initial version as imported from talos-systems/talos
• siderolabs/crypto@835063e chore: initial commit

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@5b0c5e7 chore: rename to siderolabs, rekres, etc
• siderolabs/discovery-api@db279ef feat: initial set of APIs and generated files
• siderolabs/discovery-api@ac52a37 chore: initial commit

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@a5c19c6 feat: provide public IP discovered from the server
• siderolabs/discovery-client@230f317 fix: reconnect the client on update failure

Changes from siderolabs/extras

• siderolabs/extras@3773d71 feat: update Go to 1.19.4
• siderolabs/extras@b155fc9 chore: update pkgs to the latest tag
• siderolabs/extras@4ba0e60 chore: bump dependencies
• siderolabs/extras@b155fa0 chore: enable renovate
• siderolabs/extras@8f00d77 feat: update tc-redirect-tap to the latest version
• siderolabs/extras@7c91844 chore: bump go to 1.19.2

Changes from siderolabs/gen

• siderolabs/gen@7c7ccc3 feat: introduce channel SendWithContext
• siderolabs/gen@b3b6db8 fix: fix Copy documentation and implementation
• siderolabs/gen@521f737 feat: add xerrors package which contains additions to the std errors
• siderolabs/gen@726e066 fix: rename tuples.go to pair.go and set proper package name
• siderolabs/gen@d8d7d25 chore: minor additions
• siderolabs/gen@338a650 chore: add initial implementation and documentation
• siderolabs/gen@4fd8667 Initial commit

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@e52e012 feat: add ext4 filesystem detection logic
• siderolabs/go-blockdevice@694ac62 chore: update imports to siderolabs, rekres
• siderolabs/go-blockdevice@dcf6044 chore: rekres and rename
• siderolabs/go-blockdevice@9c4af49 fix: cryptsetup remove slot
• siderolabs/go-blockdevice@74ea471 feat: add freebsd stubs
• siderolabs/go-blockdevice@9fa801c feat: add ReadOnly attribute to Disk
• siderolabs/go-blockdevice@fccee8b chore: rekres the source, fix issues
• siderolabs/go-blockdevice@d9c3a27 feat: support probing FAT12/FAT16 filesystems
• siderolabs/go-blockdevice@b374eb4 fix: align partition to 1M boundary by default
• siderolabs/go-blockdevice@ec428fe fix: lookup filesystem labels on the actual device path
• siderolabs/go-blockdevice@7b9de26 feat: read symlink fullpath in block device list function
• siderolabs/go-blockdevice@6928ee4 refactor: rewrite GPT serialize/deserialize functions
• siderolabs/go-blockdevice@0c7e429 refactor: simplify middle endian functions
• siderolabs/go-blockdevice@15b182d fix: return partition table not exist when trying to read an empty dev
• siderolabs/go-blockdevice@b9517d5 fix: resize partition
• siderolabs/go-blockdevice@70d2865 fix: try to find cdrom disks
• siderolabs/go-blockdevice@667bf53 fix: revert gpt partition not found
• siderolabs/go-blockdevice@d7d4cdd fix: gpt partition not found
• siderolabs/go-blockdevice@33afba3 fix: also open in readonly mode when running All lookup method
• siderolabs/go-blockdevice@e367f9d feat: make probe always open blockdevices in readonly mode
• siderolabs/go-blockdevice@d981156 fix: allow Build for Windows
• siderolabs/go-blockdevice@fe24303 fix: perform correct PMBR partition calculations
• siderolabs/go-blockdevice@2ec0c3c fix: preserve the PMBR bootable flag when opening GPT partition
• siderolabs/go-blockdevice@87816a8 feat: align partition to minimum I/O size
• siderolabs/go-blockdevice@c34b59f feat: expose more encryption options in the LUKS module
• siderolabs/go-blockdevice@30c2bc3 feat: mark MBR bootable
• siderolabs/go-blockdevice@1292574 fix: make disk type matcher parser case insensitive
• siderolabs/go-blockdevice@b77400e fix: properly detect nvme and sd card disk types
• siderolabs/go-blockdevice@1d830a2 fix: revert mark the EFI partition in PMBR as bootable
• siderolabs/go-blockdevice@bec914f fix: mark the EFI partition in PMBR as bootable
• siderolabs/go-blockdevice@776b37d feat: add options to probe disk by various sysblock parameters
• siderolabs/go-blockdevice@bb3ad73 fix: align partition start to physical sector size
• siderolabs/go-blockdevice@8f976c2 feat: replace exec.Command with go-cmd module
• siderolabs/go-blockdevice@1cf7f25 fix: properly handle no child processes error from cmd.Wait
• siderolabs/go-blockdevice@04a9851 feat: implement luks encryption provider
• siderolabs/go-blockdevice@b0375e4 feat: add an option to open block device with exclusive flock
• siderolabs/go-blockdevice@5a1c7f7 refactor: add devname into gpt.Partition, refactor probe package
• siderolabs/go-blockdevice@f2728a5 fix: keep contents of PMBR when writing it
• siderolabs/go-blockdevice@2878460 fix: write second copy of partition entries
• siderolabs/go-blockdevice@943b08b fix: blockdevice reset should read partition table from disk
• siderolabs/go-blockdevice@5b4ee44 fix: ignore /dev/ram devices
• siderolabs/go-blockdevice@98754ec refactor: rewrite GPT library
• siderolabs/go-blockdevice@2a1baad fix: correctly build paths for mmcblk devices
• siderolabs/go-blockdevice@8076344 fix: return proper disk size from GetDisks function
• siderolabs/go-blockdevice@8742133 chore: add common method to list available disks using /sys/block
• siderolabs/go-blockdevice@c4b5833 feat: implement "fast" wipe
• siderolabs/go-blockdevice@b4e67d7 feat: return resize status from Resize() function
• siderolabs/go-blockdevice@ceae64e fix: sync kernel partition table incrementally
• siderolabs/go-blockdevice@2cb9516 fix: return correct error value from blkpg functions
• siderolabs/go-blockdevice@cebe43d refactor: expose InsertAt method via interface
• siderolabs/go-blockdevice@c40dcd8 fix: properly inform kernel about partition deletion
• siderolabs/go-blockdevice@bb8ac5d feat: implement disk wiping via several methods
• siderolabs/go-blockdevice@23fb7dc feat: expose partition name (label)
• siderolabs/go-blockdevice@ff3a821 feat: implement 'InsertAt' method to insert partitions at any position
• siderolabs/go-blockdevice@3d1ce4f fix: calculate last lba of partition correctly
• siderolabs/go-blockdevice@b71540f feat: copy initial version from talos-systems/talos
• siderolabs/go-blockdevice@ca3c078 Initial commit

Changes from siderolabs/go-circular

• siderolabs/go-circular@507e0ec refactor: extract circular Go module
• siderolabs/go-circular@2234b3a docs: add README

Changes from siderolabs/go-cmd

• siderolabs/go-cmd@0aea518 chore: rekres and update
• siderolabs/go-cmd@68eb006 feat: return typed error for exit error
• siderolabs/go-cmd@333ccf1 feat: add stdin support into the Run methods
• siderolabs/go-cmd@c5c8f1c feat: extract cmd module from Talos into a separate module
• siderolabs/go-cmd@77685fc Initial commit

Changes from siderolabs/go-debug

• siderolabs/go-debug@c1bc4bf chore: rekres, rename, etc
• siderolabs/go-debug@3d0a6e1 feat: race build tag flag detector
• siderolabs/go-debug@5b292e5 feat: disable memory profiling by default
• siderolabs/go-debug@c6d0ae2 fix: linters and CI
• siderolabs/go-debug@d969f95 feat: initial implementation
• siderolabs/go-debug@b2044b7 Initial commit

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@e2a0000 chore: rekres, rename
• siderolabs/go-kmsg@b08e4d3 feat: replace tab character with space in console output
• siderolabs/go-kmsg@2edcd3a feat: add initial version
• siderolabs/go-kmsg@53cdd8d chore: initial commit

Changes from siderolabs/go-kubeconfig

• siderolabs/go-kubeconfig@e7fdd94 refactor: extract kubeconfig library as a Go module
• siderolabs/go-kubeconfig@50e91b8 docs: add REAMDE

Changes from siderolabs/go-loadbalancer

• siderolabs/go-loadbalancer@f54e3c9 chore: update dependencies to siderolabs, rekres
• siderolabs/go-loadbalancer@438b71d chore: update package path and rekres
• siderolabs/go-loadbalancer@5341eec feat: implement public method to check if the route is Healthy
• siderolabs/go-loadbalancer@b578d47 feat: add a way to configure loadbalancer options
• siderolabs/go-loadbalancer@c54d95d feat: implement control plane loadbalancer
• siderolabs/go-loadbalancer@4a6e29e refactor: clean up names, fix the lingering goroutines
• siderolabs/go-loadbalancer@af87d1c chore: apply new Kres rules
• siderolabs/go-loadbalancer@a445702 feat: allow dial timeout and keep alive period to be configurable
• siderolabs/go-loadbalancer@3c8f347 feat: provide a way to configure logger for the loadbalancer
• siderolabs/go-loadbalancer@da8e987 feat: implement Reconcile - ability to change upstream list on the fly
• siderolabs/go-loadbalancer@8b1dfa6 feat: copy initial version from talos-systems/talos
• siderolabs/go-loadbalancer@c2f6a8f Initial commit

Changes from siderolabs/go-procfs

• siderolabs/go-procfs@a062a4c chore: rekres, rename
• siderolabs/go-procfs@8cbc42d feat: provide an option to overwrite some args in AppendAll
• siderolabs/go-procfs@24d06a9 refactor: remove talos kernel default args
• siderolabs/go-procfs@a82654e feat: implement SetAll method
• siderolabs/go-procfs@16ce2ef fix: update cmdline.Set() to drop the value being overwritten
• siderolabs/go-procfs@5a9a4a7 feat: update kernel args for new KSPP requirements
• siderolabs/go-procfs@57c7311 refactor: change directory layout
• siderolabs/go-procfs@a077c96 fix: fix go module name
• siderolabs/go-procfs@698666f chore: move package to new repo
• siderolabs/go-procfs@dabb425 Initial commit

Changes from siderolabs/go-retry

• siderolabs/go-retry@6d45449 chore: rekres, rename
• siderolabs/go-retry@c78cc95 fix: implement errors.Is for all errors in the set
• siderolabs/go-retry@7885e16 feat: add ExpectedErrorf
• siderolabs/go-retry@3d83f61 feat: deprecate UnexpectedError
• siderolabs/go-retry@b9dc1a9 feat: add support for context.Context in Retry
• siderolabs/go-retry@8c63d29 fix: correctly implement error interfaces on wrapped errors
• siderolabs/go-retry@752f081 feat: add an option to log errors being retried
• siderolabs/go-retry@073067b feat: copy initial version from talos-systems/talos
• siderolabs/go-retry@c7968c5 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@10c1dd8 fix: check for end of the slice properly
• siderolabs/go-smbios@9ca8ce7 chore: treat invalid strings as empty
• siderolabs/go-smbios@dbc5f79 chore: rekres+rename
• siderolabs/go-smbios@3f1e775 feat: rework destructuring of SMBIOS information and added some tests
• siderolabs/go-smbios@fd5ec8c fix: remove useless (?) goroutines leading to data race error
• siderolabs/go-smbios@d3a32be fix: return UUID in middle endian only on SMBIOS >= 2.6
• siderolabs/go-smbios@fb425d4 feat: add memory device
• siderolabs/go-smbios@0bb4f96 feat: add physical memory array
• siderolabs/go-smbios@8019619 feat: supply wake-up type in SMBIOS info
• siderolabs/go-smbios@94b8c4e feat: initial implementation
• siderolabs/go-smbios@864ed80 Initial commit

Changes from siderolabs/go-tail

• siderolabs/go-tail@962ae43 refactor: extract go-tail module
• siderolabs/go-tail@359c3cb docs: initial commit

Changes from siderolabs/grpc-proxy

• siderolabs/grpc-proxy@4cc7bbe chore: rename to siderolabs/grpc-proxy, rekres
• siderolabs/grpc-proxy@2c586db feat: pass fullMethodName to GetConnection
• siderolabs/grpc-proxy@6dfa2cc fix: ignore errors on duplicate SetHeader calls
• siderolabs/grpc-proxy@b076302 fix: use io.EOF error when no backend connections are available
• siderolabs/grpc-proxy@82daca0 docs: update README
• siderolabs/grpc-proxy@fa6843a chore: fix spelling
• siderolabs/grpc-proxy@c0a87d9 chore: major cleanup of the code and build
• siderolabs/grpc-proxy@ca3bc61 fix: ignore some errors so that we don't spam the logs
• siderolabs/grpc-proxy@5c579a7 feat: allow different formats for messages streaming/unary
• siderolabs/grpc-proxy@6c9f7b3 fix: allow mode to be set for each request being proxied
• siderolabs/grpc-proxy@cc91c09 refactor: provide better public API, enforce proxying mode
• siderolabs/grpc-proxy@d8d3a75 chore: update import paths after repo move
• siderolabs/grpc-proxy@dbf07a4 Merge pull request #7 from smira/one2many-4
• siderolabs/grpc-proxy@fc0d27d More tests, small code fixes, updated README.
• siderolabs/grpc-proxy@d9ce0b1 Merge pull request #6 from smira/one2many-3
• siderolabs/grpc-proxy@2d37ba4 Support for one2many streaming calls, tests.
• siderolabs/grpc-proxy@817b035 Merge pull request #5 from smira/one2many-2
• siderolabs/grpc-proxy@436b338 More unary one-2-many tests, error propagation.
• siderolabs/grpc-proxy@1f0cb46 Merge pull request #4 from smira/one2many-1
• siderolabs/grpc-proxy@992a975 Proxying one to many: first iteration
• siderolabs/grpc-proxy@a0988ff Merge pull request #3 from smira/small-fixups
• siderolabs/grpc-proxy@e3111ef Small fixups in preparation to add one-to-many proxying.
• siderolabs/grpc-proxy@6d76ffc Merge pull request #2 from smira/backend-concept
• siderolabs/grpc-proxy@2aad63a Add concept of a 'Backend', but still one to one proxying
• siderolabs/grpc-proxy@7cc4610 Merge pull request #1 from smira/build
• siderolabs/grpc-proxy@37f01f3 Rework build to use GitHub Actions, linting updates.
• siderolabs/grpc-proxy@0f1106e Move error checking further up (#34)
• siderolabs/grpc-proxy@d5b35f6 Update gRPC and fix tests (#27)
• siderolabs/grpc-proxy@67591eb Break StreamDirector interface, fix metadata propagation for gRPC-Go>1.5. (#20)
• siderolabs/grpc-proxy@97396d9 Merge pull request #11 from mwitkow/fix-close-bug
• siderolabs/grpc-proxy@3fcbd37 fixup closing conns
• siderolabs/grpc-proxy@a8f5f87 fixup tests, extend readme
• siderolabs/grpc-proxy@428fa1c Fix a channel closing bug
• siderolabs/grpc-proxy@af55d61 Merge pull request #10 from mwitkow/bugfix/streaming-fix
• siderolabs/grpc-proxy@de4d3db remove spurious printfs
• siderolabs/grpc-proxy@84242c4 fix the "i don't know who finished" case
• siderolabs/grpc-proxy@9b22f41 fix full duplex streaming
• siderolabs/grpc-proxy@c2f7c98 update readme
• siderolabs/grpc-proxy@d654141 update README
• siderolabs/grpc-proxy@f457856 move to proxy subdirectory
• siderolabs/grpc-proxy@4889d78 Add fixup scripts
• siderolabs/grpc-proxy@ef60a37 version 2 of the grpc-proxy, this time with fewer grpc upstream deps
• siderolabs/grpc-proxy@07aeac1 Merge pull request #2 from daniellowtw/master
• siderolabs/grpc-proxy@e5c3df5 Fix compatibility with latest grpc library
• siderolabs/grpc-proxy@52be0a5 bugfix: fix gRPC Java deadlock, due to different dispatch logic
• siderolabs/grpc-proxy@822df7d Fix reference to mwitkow.
• siderolabs/grpc-proxy@28341d1 move out forward logic to method, allowing for use as grpc.Server not found handler.
• siderolabs/grpc-proxy@89e28b4 add reference to upstream grpc bug
• siderolabs/grpc-proxy@00dd588 merge upstream grpc.Server changes changing the dispatch logic
• siderolabs/grpc-proxy@77edc97 move to upstream protobuf from gogo
• siderolabs/grpc-proxy@db71c3e initial commit, tested and working.

Changes from siderolabs/net

• siderolabs/net@19eb1c4 feat: switch to use netip.Addr instead of net.IP
• siderolabs/net@5b21171 chore: rename, rekres
• siderolabs/net@409926a fix: parse correctly some IPv6 CIDRs
• siderolabs/net@b4b7181 feat: add a way to filter list of IPs for the machine
• siderolabs/net@0abe5bd feat: implement FilterIPs function
• siderolabs/net@0519054 feat: add ParseCIDR
• siderolabs/net@52c7509 feat: add a function to format IPs in CIDR notation
• siderolabs/net@005a94f feat: add methods to manage CIDR list, check for non-local IPv6
• siderolabs/net@8b56890 feat: add ValidateEndpointURI
• siderolabs/net@402fa79 chore: apply kres to get the latest build scripts
• siderolabs/net@c7bc477 chore: initial version of the package
• siderolabs/net@393246a chore: initial commit

Changes from siderolabs/pkgs

• siderolabs/pkgs@6509d23 feat: update Linux to 5.15.83
• siderolabs/pkgs@a501849 feat: update Linux to 5.15.82
• siderolabs/pkgs@f2efe98 feat: update containerd to 1.6.12
• siderolabs/pkgs@551787c feat: update Go 1.19.4, containerd to 1.6.11
• siderolabs/pkgs@4e2ff68 chore: bump kernel to 5.15.81
• siderolabs/pkgs@cf4a2b6 chore: update releases
• siderolabs/pkgs@1e8df44 chore: bump depencies
• siderolabs/pkgs@8b975a7 chore: bump deps
• siderolabs/pkgs@b153ce6 chore: bump deps
• siderolabs/pkgs@535b8f9 chore: update packages version
• siderolabs/pkgs@66c77e9 feat: re-enable build kernel with BTF enabled
• siderolabs/pkgs@98ef073 feat: enable INET_DIAG and FANOTFY_PERMISSIONS
• siderolabs/pkgs@8fe5cbc chore: update dependencies
• siderolabs/pkgs@554c0fe feat: add fanotify and kprobes kernel options
• siderolabs/pkgs@54d7e5c fix: drbd package name
• siderolabs/pkgs@b4cb9e2 feat: add 'drbd' package
• siderolabs/pkgs@91e73b3 feat: update dependencies
• siderolabs/pkgs@b6d0d96 chore: bump kernel to 5.15.72
• siderolabs/pkgs@b16dfe9 chore: bump go to 1.19.2
• siderolabs/pkgs@861cc32 chore: bump kernel to 5.15.71
• siderolabs/pkgs@0ac7773 chore: use generic raspberry pi u-boot
• siderolabs/pkgs@d5633d4 chore: bump kernel to 5.15.70
• siderolabs/pkgs@39c0d43 feat: add generic rpi_arm64_defconfig configuration
• siderolabs/pkgs@ed269ca chore: bump kernel to 5.15.69
• siderolabs/pkgs@f2f8333 fix: no slack notifications on failure
• siderolabs/pkgs@6f0af33 chore: disable drone slack pipeline for renovate
• siderolabs/pkgs@32aea3f chore: disable drone for renovate/dependabot
• siderolabs/pkgs@44579f0 fix: rollback xfsprogs to 5.18.0
• siderolabs/pkgs@792c0e3 feat: add gasket driver package
• siderolabs/pkgs@07f1898 chore: update deps
• siderolabs/pkgs@f78f410 chore: enable conntrack zones and timestamps
• siderolabs/pkgs@049b3c6 chore: enable intel ice drivers
• siderolabs/pkgs@606ff32 chore: bump deps
• siderolabs/pkgs@eee5c8a chore: disable irc in conntrack
• siderolabs/pkgs@70e6c46 chore: bump kernel to 5.15.64
• siderolabs/pkgs@e510321 chore: update renovate config
• siderolabs/pkgs@d1fa510 feat: enable renovate bot
• siderolabs/pkgs@e427a77 chore: bump runc to v1.1.4
• siderolabs/pkgs@40e1215 chore: enable nfsv4.2 client support
• siderolabs/pkgs@15efada chore: bump kernel to 5.15.63
• siderolabs/pkgs@e70e3c1 fix: nvidia oss pkg name
• siderolabs/pkgs@30b8d79 chore: bump kernel to 5.15.62
• siderolabs/pkgs@862c392 chore: bump gcc to 12.2.0
• siderolabs/pkgs@2ecd14e fix: containerd version
• siderolabs/pkgs@01df058 feat: add NanoPi R4S configuration
• siderolabs/pkgs@d4cb33b chore: bump containerd to v1.6.8

Changes from siderolabs/siderolink

• siderolabs/siderolink@a92acc6 feat: set SideroLink MTU to 1280
• siderolabs/siderolink@575c5cc refactor: drop dependency on Talos machinery package
• siderolabs/siderolink@61ab1c4 fix: include MachineStatusEvent into the list of supported events
• siderolabs/siderolink@16a84eb chore: rename to siderolabs/siderolink
• siderolabs/siderolink@ca470c7 chore: update Talos to the latest master, migrate netaddr -> netip/x
• siderolabs/siderolink@93b65f0 fix: ignore 'exist' error on interface managmeent
• siderolabs/siderolink@3c4d9e0 chore: move IP to interface binding into NewDevice
• siderolabs/siderolink@f0b5e39 feat: use kernel wireguard implementation when available
• siderolabs/siderolink@1d2b7e1 feat: allow setting peer endpoint using peer event
• siderolabs/siderolink@5d085d6 feat: expose wgDevice.Peers from the wireguard.Device wrapper
• siderolabs/siderolink@3a5be65 fix: use correct method to generate Wireguard private key
• siderolabs/siderolink@8318a7e feat: accept join token in Provision payload
• siderolabs/siderolink@b38c192 fix: build on Windows
• siderolabs/siderolink@9902ad2 feat: pass request context and node address to the events sink adapter
• siderolabs/siderolink@d0612a7 refactor: pass in listener to the log receiver
• siderolabs/siderolink@d86cdd5 feat: implement logreceiver for kernel logs
• siderolabs/siderolink@f7cadbc fix: handle duplicate peer updates
• siderolabs/siderolink@0755b24 feat: initial implementation of SideroLink
• siderolabs/siderolink@ee73ea9 feat: add Talos events sink proto files and the reference implementation
• siderolabs/siderolink@1e2cd9d Initial commit

Changes from siderolabs/tools

• siderolabs/tools@712379c feat: update Go to 1.19.4
• siderolabs/tools@ff41c0b chore: bump dependencies
• siderolabs/tools@df6813e chore: bump dependencies
• siderolabs/tools@5776dd8 chore: bump tools
• siderolabs/tools@e8f92b3 chore: bump tools
• siderolabs/tools@3b5f89a chore: update dependencies
• siderolabs/tools@6402b99 feat: update OpenSSL to 1.1.1r
• siderolabs/tools@00e91b1 feat: update releases
• siderolabs/tools@a264809 chore: bump go to 1.19.2
• siderolabs/tools@858cfe7 fix: no slack notifications on failure
• siderolabs/tools@ed85950 chore: disable drone slack pipeline for renovate
• siderolabs/tools@5df6589 chore: disable drone for renovate/dependabot
• siderolabs/tools@1f00d2e fix: revert gawk to 5.1.1
• siderolabs/tools@feeda1f chore: bump grpc-go
• siderolabs/tools@8542014 chore: bump deps
• siderolabs/tools@e5c4968 chore: update renovate config
• siderolabs/tools@f34f94d chore: update renovate config
• siderolabs/tools@cef4cc6 chore: update renovate config
• siderolabs/tools@bab8e9e chore: add libbpf to tools
• siderolabs/tools@0a15f7b chore: build pahole properly
• siderolabs/tools@a322d06 chore: remove img
• siderolabs/tools@c7ff47b feat: enable renovate dependency updates (3/3)
• siderolabs/tools@6e095cf feat: enable renovate dependency updates (2/n)
• siderolabs/tools@bad1ad1 feat: add renovatebot
• siderolabs/tools@7d6f9c3 chore: bump gcc to 12.2.0
• siderolabs/tools@2719b4b chore: bump toolchain

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 new
• github.com/BurntSushi/toml v1.2.0 -> v1.2.1
• github.com/aws/aws-sdk-go v1.44.76 -> v1.44.147
• github.com/cenkalti/backoff/v4 v4.1.3 -> v4.2.0
• github.com/containerd/containerd v1.6.8 -> v1.6.12
• github.com/cosi-project/runtime v0.1.1 -> v0.2.0
• github.com/docker/docker v20.10.17 -> v20.10.21
• github.com/emicklei/dot v1.0.0 -> v1.2.0
• github.com/fsnotify/fsnotify v1.5.4 -> v1.6.0
• github.com/gdamore/tcell/v2 v2.5.2 -> v2.5.3
• github.com/google/go-cmp v0.5.8 -> v0.5.9
• github.com/google/nftables 2eca00135732 -> 130caa4c31c9
• github.com/hetznercloud/hcloud-go v1.35.2 -> v1.37.0
• github.com/insomniacslk/dhcp 509691fd59ec -> f26e6d78f622
• github.com/jsimonetti/rtnetlink v1.2.2 -> v1.3.0
• github.com/mdlayher/ethtool 856bd6cb8a38 -> 0e16326d06d1
• github.com/mdlayher/genetlink v1.2.0 -> v1.3.0
• github.com/mdlayher/netlink v1.6.0 -> v1.7.0
• github.com/opencontainers/image-spec c5a74bcca799 -> v1.1.0-rc2
• github.com/packethost/packngo v0.25.0 -> v0.29.0
• github.com/pmorjan/kmod v1.0.0 -> v1.1.0
• github.com/rivo/tview 0e6b21a48e96 -> db36428c92d9
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.9 -> v1.0.0-beta.10
• github.com/siderolabs/crypto v0.4.0 new
• github.com/siderolabs/discovery-api v0.1.1 new
• github.com/siderolabs/discovery-client v0.1.1 -> v0.1.3
• github.com/siderolabs/extras v1.2.0 -> v1.3.0-1-g3773d71
• github.com/siderolabs/gen v0.4.1 new
• github.com/siderolabs/go-blockdevice v0.4.2 new
• github.com/siderolabs/go-circular v0.1.0 new
• github.com/siderolabs/go-cmd v0.1.1 new
• github.com/siderolabs/go-debug v0.2.2 new
• github.com/siderolabs/go-kmsg v0.1.2 new
• github.com/siderolabs/go-kubeconfig v0.1.0 new
• github.com/siderolabs/go-loadbalancer v0.2.1 new
• github.com/siderolabs/go-procfs v0.1.1 new
• github.com/siderolabs/go-retry v0.3.2 new
• github.com/siderolabs/go-smbios v0.3.1 new
• github.com/siderolabs/go-tail v0.1.0 new
• github.com/siderolabs/grpc-proxy v0.4.0 new
• github.com/siderolabs/net v0.4.0 new
• github.com/siderolabs/pkgs v1.2.0-8-g970860d -> v1.3.0-5-g6509d23
• github.com/siderolabs/siderolink v0.3.1 new
• github.com/siderolabs/talos/pkg/machinery v1.3.0 new
• github.com/siderolabs/tools v1.2.0 -> v1.3.0-1-g712379c
• github.com/spf13/cobra v1.5.0 -> v1.6.1
• github.com/stretchr/testify v1.8.0 -> v1.8.1
• github.com/u-root/u-root v0.9.0 -> v0.10.0
• github.com/vmware-tanzu/sonobuoy v0.56.9 -> v0.56.12
• go.etcd.io/etcd/api/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/client/pkg/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/client/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/etcdutl/v3 v3.5.4 -> v3.5.6
• go.uber.org/atomic v1.9.0 -> v1.10.0
• go.uber.org/multierr v1.8.0 new
• go.uber.org/zap v1.22.0 -> v1.23.0
• go4.org/netipx 797b0c90d8ab new
• golang.org/x/net 3211cb980234 -> v0.4.0
• golang.org/x/sync 886fb9371eb4 -> v0.1.0
• golang.org/x/sys fbc7d0a398ab -> v0.3.0
• golang.org/x/term a9ba230a4035 -> v0.3.0
• golang.org/x/time e5dcc9cfc0b9 -> v0.2.0
• golang.zx2c4.com/wireguard/wgctrl 3d4a969bb56b -> 97bc4ad4a1cb
• google.golang.org/grpc v1.48.0 -> v1.51.0
• k8s.io/api v0.25.0 -> v0.26.0
• k8s.io/apimachinery v0.25.0 -> v0.26.0
• k8s.io/apiserver v0.25.0 -> v0.26.0
• k8s.io/client-go v0.25.0 -> v0.26.0
• k8s.io/component-base v0.25.0 -> v0.26.0
• k8s.io/cri-api v0.25.0 -> v0.26.0
• k8s.io/klog/v2 v2.70.1 -> v2.80.1
• k8s.io/kubectl v0.25.0 -> v0.26.0
• k8s.io/kubelet v0.25.0 -> v0.26.0
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.65 -> v1.2.66

Previous release can be found at v1.2.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-1-g3773d71
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.6
registry.k8s.io/kube-apiserver:v1.26.0
registry.k8s.io/kube-controller-manager:v1.26.0
registry.k8s.io/kube-scheduler:v1.26.0
registry.k8s.io/kube-proxy:v1.26.0
ghcr.io/siderolabs/kubelet:v1.26.0
ghcr.io/siderolabs/installer:v1.3.0
registry.k8s.io/pause:3.6

Talos 1.3.0-beta.2 (2022-12-09)

Welcome to the v1.3.0-beta.2 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

kube-apiserver Audit Policy

Talos now supports setting custom audit policy for kube-apiserver in the machine configuration.

cgroups v1

Talos defaults to using cgroups v2 when Talos doesn't run in a container (when running in a container
Talos follows host cgroups mode).
Talos can now be forced to use cgroups v1 by setting boot kernel argument talos.unified_cgroup_hierarchy=0:

machine:
  install:
    extraKernelArgs:
      - "talos.unified_cgroup_hierarchy=0"

Current cgroups mode can be checked with talosctl ls /sys/fs/cgroup:

cgroups v1:

blkio
cpu
cpuacct
cpuset
devices
freezer
hugetlb
memory
net_cls
net_prio
perf_event
pids

cgroups v2:

cgroup.controllers
cgroup.max.depth
cgroup.max.descendants
cgroup.procs
cgroup.stat
cgroup.subtree_control
cgroup.threads
cpu.stat
cpuset.cpus.effective
cpuset.mems.effective
init
io.stat
kubepods
memory.numa_stat
memory.stat
podruntime
system

Note: cgroupsv1 is deprecated and it should be used only for compatibility with workloads which don't support cgroupsv2 yet.

Kernel Command Line ip= Argument

Talos now supports referencing interface name via enxMAC address notation:

ip=172.20.0.2::172.20.0.1:255.255.255.0::enx7085c2dfbc59

CRI Configuration Overrides

Talos no longer supports CRI config overrides placed in /var/cri/conf.d directory.

New way correctly handles merging of containerd/CRI plugin configuration.

etcd Consistency Check

Talos enables --experimental-compact-hash-check-enabled option by default to improve
etcd store consistency guarantees.

This options is only available with etcd >= v3.5.5, so Talos doesn't support version of etcd before v3.5.5.

etcd Member ID

Talos now internally handles etcd member removal by member ID instead of member name (hostname).
This resolves the case when member name is not accurate or empty (eg: when etcd hasn't fully joined yet).

Command talosctl etcd remove-member now accepts member IDs instead of member names.

New resource can be used to get member ID of the Talos node:

talosctl get etcdmember

Exocale Platform

Talos now supports new platform: Exoscale.

Exoscale provides a firewall, TCP load balancer and autoscale groups.
It works well with CCM and Kubernetes node autoscaler.

Kernel Modules

Talos now supports settings kernel module parameters.

Eg:

machine:
  kernel:
    modules:
      - name: "br_netfilter"
        parameters:
          - nf_conntrack_max=131072

KubeSpan

KubeSpan MTU link size is now configurable via network.kubespan.mtu setting in the machine configuration.

Node Labels

Talos now supports specifying node labels in the machine configuration:

machine:
  nodeLabels:
    rack: rack1a
    zone: us-east-1a

Changes to the node labels will be applied immediately without kubelet restart.

Talos keeps track of the owned node labels in the talos.dev/owned-labels annotation.

Registry Mirrors

Talos had an inconsistency in the way registry mirror endpoints are handled when compared with containerd implementation:

machine:
    registries:
        mirrors:
            docker.io:
                endpoints:
                    - "https://mirror-registry/v2/mirror.docker.io"

Talos would use endpoint https://mirror-registry/v2/mirror.docker.io, while containerd would use https://mirror-registry/v2/mirror.docker.io/v2.
This inconsistency is now fixed, and Talos uses same endpoint as containerd.

New overridePath configuration is introduced to skip appending /v2 both on Talos and containerd side:

machine:
    registries:
        mirrors:
            docker.io:
                endpoints:
                    - "https://mirror-registry/v2/mirror.docker.io"
                overridePath: true

registry.k8s.io

Talos now uses registry.k8s.io instead of k8s.gcr.io for Kubernetes container images.

See Kubernetes documentation for additional details.

If using registry mirrors, or in air-gapped installations you may need to update your configuration.

Routes

Talos now supports setting MTU for a specific route.

Nano Pi R4S

Talos now supports the Nano Pi R4S SBC.

Raspberry Generic Images

The Raspberry Pi 4 specific image has been deprecated and will be removed in the v1.4 release of Talos.
Talos now ships a generic Raspberry Pi image that should support more Raspberry Pi variants.
Refer to the docs at https://www.talos.dev/v1.3/talos-guides/install/single-board-computers/rpi_generic/ to find which ones are supported.

Encryption with secretbox

By default new clusters will use secretbox for encryption instead of AESCBC.
If both are configured secretbox will take precedence.
Old clusters may keep using AESCBC.
To enable secretbox you may add an encryption secret at cluster.secretboxEncryptionSecret.
You should keep aescbcEncryptionSecret however, even if secretbox is enabled older data will still be encrypted with AESCBC.

How to generate the secret:

dd if=/dev/random of=/dev/stdout bs=32 count=1 | base64

Static Pod Manifests

The directory "/etc/kubernetes/manifests" is now deprecated.
Static pods should always be configured in machine.pods.
To reenable support you may set machine.kubelet.disableManifestsDirectory.

Eg:

machine:
  kubelet:
    disableManifestsDirectory: no

talosctl machineconfig patch

A new subcommand, machineconfig patch is added to talosctl to allow patching of machine configuration.

It accepts a machineconfig file and a list of patches as input and outputs the patched machine configuration.

Patches can be sourced from the command line or from a file. Output can be written to a file or to stdout.

Example:

talosctl machineconfig patch controlplane.yaml --patch '[{"op":"replace","path":"/cluster/clusterName","value":"patch1"}]' --patch @/path/to/patch2.json

Additionally, talosctl machineconfig gen subcommand is introduced as an alias to talosctl gen config.

Component Updates

• Kubernetes: v1.26.0
• Flannel: v0.20.2
• CoreDNS: v1.10.0
• etcd: v3.5.6
• Linux: 5.15.81
• containerd: v1.6.12

Talos is built with Go 1.19.4.

Contributors

• Andrey Smirnov
• Noel Georgi
• Andrey Smirnov
• Michal Witkowski
• Artem Chernyshev
• Artem Chernyshev
• Dmitriy Matrenichev
• Serge Logvinov
• Alexey Palazhchenko
• Utku Ozdemir
• Andrey Smirnov
• Philipp Sauter
• Steve Francis
• Andrew Rynhard
• Andrew Rynhard
• Tim Jones
• Seán C McCord
• Kris Reeves
• Marvin Drees
• Spencer Smith
• Alexandre Mclean
• Branden Cash
• Brandon Nason
• Cameron Brunner
• DJAlPee
• Daniel Low
• Gerard de Leeuw
• Jack Wink
• Jon Stelly
• Martin Stone
• Matt Zahorik
• Maxim Makarov
• Michael Vorburger ⛑️
• Olli Janatuinen
• Pau Campana
• Rubens Farias
• Sander Maijers
• Spencer Smith
• ankitm123
• emattiza
• killcity

Changes

• siderolabs/talos@f8f308ec0 release(v1.3.0-beta.2): prepare release
• siderolabs/talos@b677e1361 feat: update Kubernets to 1.26.0
• siderolabs/talos@9581002ce feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@8745f581b feat: update containerd to 1.6.12
• siderolabs/talos@66feeeccd fix: don't report link name in route statuses
• siderolabs/talos@09da90f66 release(v1.3.0-beta.1): prepare release
• siderolabs/talos@91844709e chore: disable single commit check
• siderolabs/talos@a9673efa1 chore: remove watchErr from metal.getResource
• siderolabs/talos@0bdec81ca fix: fix nil pointer panic and incorrect error output
• siderolabs/talos@bce132f14 fix: workaround panic in the kubelet service controller
• siderolabs/talos@e47e74452 fix: add ext4 filesystem detection
• siderolabs/talos@2d03ef401 docs: expand help for 'talosctl get'
• siderolabs/talos@810a550f1 fix: report errors to Equinix Metal event API
• siderolabs/talos@1f382d8f7 fix: use only kube-apiserver endpoints for Talos API access endpoints
• siderolabs/talos@44fce3073 feat: add talosctl machineconfig patch command
• siderolabs/talos@89882dd2d fix: introduce 'overridePath' setting and fix Talos resolver
• siderolabs/talos@1e520afbb fix: ignore many more filesystems in IMA
• siderolabs/talos@2964b9327 fix: correctly handle new watch event types
• siderolabs/talos@c8968a701 feat: add stdout and single config type support to talosctl gen config
• siderolabs/talos@a5fccddaa feat: update Kubernetes to v1.26.0-rc.1
• siderolabs/talos@9012e679a feat: update Flannel to 0.20.2
• siderolabs/talos@8c563ae28 chore: update Go to 1.19.4
• siderolabs/talos@63adb708c chore: bump kernel to 5.15.81
• siderolabs/talos@788d5c91e release(v1.3.0-beta.0): prepare release
• siderolabs/talos@2ebe410e9 feat: update COSI to v0.2.0
• siderolabs/talos@00388651b chore: bump pkgs and Go dependencies
• siderolabs/talos@bbb56840e chore: update protobuf API descriptors for 1.3.0
• siderolabs/talos@fdbd380f6 feat: use 'registry.k8s.io' for Kubernetes images
• siderolabs/talos@1103c5ad2 feat: implement pre-flight checks in the installer
• siderolabs/talos@4a052eadf fix: disable kexec on upgrades from pre-BTF kernel
• siderolabs/talos@732c459ec fix: parse and apply DHCP settings properly from cmdline
• siderolabs/talos@a9e9d71b2 fix: parse correctly upgrade cmd force flag
• siderolabs/talos@e85e64d6f docs: document metal-iso configuration method
• siderolabs/talos@c27adbe54 docs: update getting started
• siderolabs/talos@260684a93 chore: use build-container image for s3cmd
• siderolabs/talos@ee7a4777a chore: bump dependencies
• siderolabs/talos@49a4b1494 docs: clarify talosctl apply-config & talosctl get machineconfig
• siderolabs/talos@a58c3d669 feat: hcloud location properties
• siderolabs/talos@6bce06f62 feat: update etcd 3.5.6
• siderolabs/talos@c54bea128 fix: don't publish external IPs as affiliate addresses
• siderolabs/talos@54d9032ce test: fix log streaming for conformance tests
• siderolabs/talos@e432579d4 feat: kubespan node endpoints filter
• siderolabs/talos@6430ce1ef fix: limit SideroLink Wireguard link MTU to 1280
• siderolabs/talos@1f1128028 chore: add flag to force talos cluster folder deletion
• siderolabs/talos@d9c2c6f0a chore: update Kubernetes Go modules to 0.26.0-rc.1
• siderolabs/talos@3d30ce6d7 feat: add util function to extract GRPC status from error
• siderolabs/talos@9e44341c4 release(v1.3.0-alpha.2): prepare release
• siderolabs/talos@aa56aed79 feat: publish discovered public IP as one of the KubeSpan endpoint
• siderolabs/talos@9382443ba feat: update Kubernetes to v1.26.0-rc.0
• siderolabs/talos@6ffc381c5 feat: implement CRI configuration customization
• siderolabs/talos@e1e340bdd feat: expose Talos node labels as a machine configuration field
• siderolabs/talos@c78bbbfda docs: specify that only XFS partitions are detected
• siderolabs/talos@b881a9a79 chore: bump dependencies
• siderolabs/talos@5bfd7dbfa test: fix assertion on reboot test
• siderolabs/talos@1cfb6188b feat: implement support for cgroupsv1
• siderolabs/talos@3866d0e33 feat: update Kubernetes to v1.26.0-beta.0
• siderolabs/talos@e1590ba7b fix: lifecycle action tracking
• siderolabs/talos@804762c59 feat: add timeout to cli action tracking, track by default & refactor
• siderolabs/talos@4e114ca12 feat: use the etcd member id for etcd operations instead of hostname
• siderolabs/talos@06fea2441 feat: expand platform metadata resources
• siderolabs/talos@03a20da9d fix: filter up duplicate IPs out of NodeAddresses
• siderolabs/talos@6b771bc73 chore: bump deps
• siderolabs/talos@96aa9638f chore: rename talos-systems/talos to siderolabs/talos
• siderolabs/talos@30bbf6463 refactor: use siderolabs/net version with netip.Addr
• siderolabs/talos@343c55762 chore: replace talos-systems Go modules with siderolabs
• siderolabs/talos@0301bbe93 fix: check if processes is nil to avoid panic
• siderolabs/talos@08e7e49a2 test: update versions for upgrade tests
• siderolabs/talos@0b41923c3 fix: restore the StaticPodStatus resource
• siderolabs/talos@1947092ae chore: introduce a healthcheck for machined service
• siderolabs/talos@3333cd93c fix: generate correct Flannel config for IPv6-only clusters
• siderolabs/talos@d7070f5e7 release(v1.3.0-alpha.1): prepare release
• siderolabs/talos@869f3b5a5 feat: network configuration improvements on the OpenStack platform
• siderolabs/talos@29f2195e1 feat: support exoscale cloud
• siderolabs/talos@8b4ae08d1 fix: etcd snapshot command on Windows
• siderolabs/talos@8bfa7ac1d feat: platform metadata resource
• siderolabs/talos@7e50e24c0 fix: properly cleanup legacy static pod manifests directory
• siderolabs/talos@6ee47bcc6 fix: support serving config for qemu launcher on IPv6
• siderolabs/talos@6c3d11b49 docs: admission control patch note
• siderolabs/talos@4ea3b99b5 fix: serve static pod files on 127.0.0.1 instead of localhost
• siderolabs/talos@23842114f feat: support encryption with secretbox
• siderolabs/talos@f6773c472 docs: talos support on equinix metal
• siderolabs/talos@b307160f6 chore: bump dependencies
• siderolabs/talos@d7edd0e2e refactor: use go-circular, go-kubeconfig, and go-tail
• siderolabs/talos@c6e1702ec feat: use URL-based manifests to present static pods to the kubelet
• siderolabs/talos@136a795e5 docs: update system requirements to mention dedicated disk usage
• siderolabs/talos@879e8c0bf chore: update kernel with BTF support
• siderolabs/talos@ceb0cd99a feat: implement Talos API auth using SideroV1 signatures
• siderolabs/talos@e6fba7d3b chore: update dependencies
• siderolabs/talos@93e55b85f chore: bump golangci-lint to v1.50.0
• siderolabs/talos@aa3d9b4ca fix: regenerate cert on node labeling retry
• siderolabs/talos@021c73c35 fix: lowercase nodename
• siderolabs/talos@b902036e1 docs: update office hours time link
• siderolabs/talos@7fcb8c681 feat: update Flannel to v0.20.0
• siderolabs/talos@dc70d892a fix: support setting KubeSpan link MTU
• siderolabs/talos@7d52bad37 feat: update Linux to 5.15.73
• siderolabs/talos@9c78b3aff feat: update Kubernetes to v1.26.0-alpha.2
• siderolabs/talos@94913a672 docs: add lofty to talos adopters
• siderolabs/talos@0a0bdfe16 docs: add Tremor Video to adopters
• siderolabs/talos@b7b1d4fd6 feat: use readonly containers
• siderolabs/talos@d210338e3 fix: skip protobuf full unmarshaling for some talosctl commands
• siderolabs/talos@b3c679d18 chore: bump dependencies
• siderolabs/talos@993743f63 fix: skip hostname via DHCP on OpenStack platform
• siderolabs/talos@db076e7b5 feat: pin interface by mac address in cmdline args
• siderolabs/talos@63de93722 fix: update go-smbios to v0.3.1
• siderolabs/talos@49e9f808e chore: bump kernel and go
• siderolabs/talos@c7372144d docs: add constraints to upgrade docs
• siderolabs/talos@c71c8ca18 docs: consolidate, simplify and correct various docs
• siderolabs/talos@06f76bfeb chore: bump dependencies
• siderolabs/talos@b1c421b9a chore: publish ami's with imds v2 enabled
• siderolabs/talos@195c40ab5 docs: add information about applicable use cases of disk encryption
• siderolabs/talos@54a687fb8 docs: consolidate and expand on discovery service
• siderolabs/talos@139c62d76 feat: allow upgrades in maintenance mode (only over SideroLink)
• siderolabs/talos@48dee4805 feat: support mtu for routes
• siderolabs/talos@1c43c72ae docs: fix talos required kernel params
• siderolabs/talos@67cc45ae3 release(v1.3.0-alpha.0): prepare release
• siderolabs/talos@18c377a4d feat: customize audit policy
• siderolabs/talos@23c9ea46b fix: raspberry pi install
• siderolabs/talos@f17cdee16 feat: jsonpath filter for talosctl get outputs
• siderolabs/talos@6bd3cca1a chore: generic raspberry pi images
• siderolabs/talos@d914ab8bb chore: add vulncheck tool as a linter
• siderolabs/talos@a0151aa13 feat: add generic rpi u-boot support
• siderolabs/talos@30f851d09 chore: bump dependences
• siderolabs/talos@8b2235c3b fix: lookup Equinix Metal bond slaves using 'permanent addr'
• siderolabs/talos@b3257ebb1 chore: bump kernel to 5.15.70
• siderolabs/talos@0b2767c16 feat: implement 'permanent addr' in link statuses
• siderolabs/talos@c90e20251 fix: kubeconfig permission
• siderolabs/talos@fc48849d0 chore: move maps/slices/ordered to gen module
• siderolabs/talos@8b09bd4b0 feat: update Kubernetes to v1.26.0-alpha.1
• siderolabs/talos@276d4175b chore: bump extension versions in testing
• siderolabs/talos@357b770cb fix: cryptsetup delete slot
• siderolabs/talos@711128839 fix: continue applying bootstrap manifests on some errors
• siderolabs/talos@ce12c7b38 chore: update COSI runtime to v0.2.0-alpha.1
• siderolabs/talos@1b435c0b3 chore: bump kernel + ice drivers
• siderolabs/talos@18e041f1e docs: fix typo in patching example
• siderolabs/talos@0ad6452ca feat: update CoreDNS to v1.10.0
• siderolabs/talos@479f3f52e chore: bump dependencies
• siderolabs/talos@e07c6ae99 feat: update Kubernetes to v1.25.1
• siderolabs/talos@13fdfaffc test: fix up default branch name
• siderolabs/talos@ef181321a docs: add component diagram; K8s & Talos Linux
• siderolabs/talos@aade73643 docs: fix missing variable in OpenEBS docs
• siderolabs/talos@472590aa8 chore: return InvalidArgument on invalid config in maintenance mode
• siderolabs/talos@e5cabd42c feat: enable etcd consistency hashcheck
• siderolabs/talos@015535d90 fix: update discovery client with the redirect fix
• siderolabs/talos@d0c8e7699 chore: bump kernel and go
• siderolabs/talos@985b0c2e7 chore: remove go.work.sum
• siderolabs/talos@69124f102 feat: update etcd to v3.5.5
• siderolabs/talos@1985a796c docs: update docs for pod security
• siderolabs/talos@94b088f02 fix: set etcd options consistently
• siderolabs/talos@92ae7ef4b fix: fix protoenc encoding for enums and types with custom encoders
• siderolabs/talos@93809017c docs: cpu scaling governor knowledgebase
• siderolabs/talos@7b270ff33 test: fix api controller test
• siderolabs/talos@2dadcd669 fix: stop worker nodes from acting as apid routers
• siderolabs/talos@9eaf33f3f fix: never sign client certificate requests in trustd
• siderolabs/talos@436749124 feat: environment vars for extension service
• siderolabs/talos@0c0cb671e chore: mark machine configuration validation failure as InvalidArgument
• siderolabs/talos@f424e5340 fix: stop containers more thoroughly
• siderolabs/talos@12827b861 chore: move "implements" checks to compile time
• siderolabs/talos@3a67c42cb fix: kill the task processes when cleaning up stale task
• siderolabs/talos@14a79e325 chore: bump dependencies
• siderolabs/talos@9beee92e7 docs: fix double vv in Kubernetes version
• siderolabs/talos@688272515 fix: use different username for Talos Kubernetes API access
• siderolabs/talos@161a52a9e feat: check apid client certificate extended key usage
• siderolabs/talos@9dadc4a59 fix: include all node addresses into etcd cert SANs
• siderolabs/talos@71bfd3e43 feat: update CoreDNS to 1.9.4
• siderolabs/talos@9df8f1ff1 fix: list COSI APIs for the apid authenticator
• siderolabs/talos@31462450f fix: pass a pointer to specs.Mount into protoenc.Marshal
• siderolabs/talos@e626540df chore: avoid double API request logging in trustd
• siderolabs/talos@f62d17125 chore: update crypto to use new import path siderolabs/crypto
• siderolabs/talos@ef27dd855 chore: bump dependencies
• siderolabs/talos@6472ae00b fix: automatically discard VIPs for etcd advertised addresses
• siderolabs/talos@5e21cca52 feat: support setting kernel parameters
• siderolabs/talos@bd56621cd feat: add structprotogen tool
• siderolabs/talos@cdb6bb2cc feat: add Nano Pi R4S support
• siderolabs/talos@36c1f1d6e fix: flip the client-server version check
• siderolabs/talos@cd6c53a97 docs: fork docs for v1.3
• siderolabs/talos@0847400f7 fix: prevent panic on health check if a member has no IPs
• siderolabs/talos@7471d7f01 feat: update Flannel to v0.19.2
• siderolabs/talos@148c75cfb docs: consolidate the control-plane documentation
• siderolabs/talos@353154281 fix: drop kube-system SA default binding
• siderolabs/talos@4f37b668b chore: remove capi hacks
• siderolabs/talos@1369afea8 docs: make 1.2.0 docs default ones
• siderolabs/talos@7627cb0e3 docs: add new talosctl gen secrets
• siderolabs/talos@8aa60a37a chore: bump kernel to 5.15.64
• siderolabs/talos@a798dbd5d docs: update docs for upcoming 1.2.0 release
• siderolabs/talos@b2fec3c97 fix: properly handle configContext being nil in Talos client
• siderolabs/talos@1c0977b3a fix: change the type of returned gRPC connection object from the client
• siderolabs/talos@41848e421 fix: expose Talos client gRPC connection via the function Conn
• siderolabs/talos@2e9be4af8 chore: bump dependencies
• siderolabs/talos@d283aba3a test: fix cli reboot test
• siderolabs/talos@0b339a9dc feat: track progress of action API calls
• siderolabs/talos@072349812 fix: update COSI to the version with gRPC Wait fix
• siderolabs/talos@89d57aa81 fix: always abort the maintenance service
• siderolabs/talos@f6fa74619 fix: limit apid backoff max delay
• siderolabs/talos@d7ef346db fix: get command in the case 'nodes' are not set in the context
• siderolabs/talos@4e9c32256 fix: correctly render hosts.toml with multiple endpoints
• siderolabs/talos@cdd0f08bc feat: check client <> server version in some Talos commands
• siderolabs/talos@446b0af58 chore: bump kernel and runc
• siderolabs/talos@8c203ce9b feat: remove the machine from the discovery service on reset
• siderolabs/talos@b59ca5810 chore: move from inet.af/netaddr to net/netip and go4.org/netipx
• siderolabs/talos@053af1d59 fix: update etcd certificates when node addresses changes
• siderolabs/talos@11edb2c6f test: re-enable upgrade tests
• siderolabs/talos@0310e2089 chore: bump github.com/siderolabs/protoenc to v0.1.5
• siderolabs/talos@29bd63240 chore: remove old build tags syntax
• siderolabs/talos@b500d0aa9 chore: bump k8s to v1.25.0
• siderolabs/talos@29e574be7 docs: update to v1.2.0-beta.1
• siderolabs/talos@26b549f2a chore: bump dependencies
• siderolabs/talos@8c3ac4c42 chore: limit GOMAXPROCS for Talos services
• siderolabs/talos@361e85b74 fix: properly read kexec disabled sysctl
• siderolabs/talos@cfe6c2bc2 docs: nvidia oss drivers
• siderolabs/talos@2f2d97b6b fix: don't wait for the hostname in maintenance mode
• siderolabs/talos@b15a63924 chore: bump kernel to 5.15.62
• siderolabs/talos@a0d94be30 fix: stable default hostname bias
• siderolabs/talos@da4cd34ef feat: update etcd advertised peer addresses on the fly
• siderolabs/talos@faf92ce01 chore: bump kubernetes to v1.25.0-rc.1
• siderolabs/talos@52de919e3 chore: bump containerd to v1.6.8
• siderolabs/talos@7d43fc79b fix: make 'ca', 'crt' and 'key' flags optional for 'talosctl config add'
• siderolabs/talos@fd467e02c fix: handle grub config being empty in the Revert function
• siderolabs/talos@9492aca65 fix: clean up cancelCtxMu leftovers in PriorityLock
• siderolabs/talos@61e3eb2ea fix: talosctl edit mc loop
• siderolabs/talos@32db7a7f5 fix: surround cancelCtx with the mutex

Changes since v1.3.0-beta.1

• siderolabs/talos@f8f308ec0 release(v1.3.0-beta.2): prepare release
• siderolabs/talos@b677e1361 feat: update Kubernets to 1.26.0
• siderolabs/talos@9581002ce feat: add RedactSecrets method to v1alpha1.Config
• siderolabs/talos@8745f581b feat: update containerd to 1.6.12
• siderolabs/talos@66feeeccd fix: don't report link name in route statuses

Changes from siderolabs/crypto

• siderolabs/crypto@c3225ee feat: allow CSR template subject field to be overridden
• siderolabs/crypto@8570669 chore: rename to siderolabs/crypto
• siderolabs/crypto@e9df1b8 feat: add support for generating keys from RSA-SHA256 CAs
• siderolabs/crypto@510b0d2 chore: add json tags
• siderolabs/crypto@6fa2d93 fix: deepcopy nil fields as nil
• siderolabs/crypto@9a63cba fix: add back support for generating ECDSA keys with P-256 and SHA512
• siderolabs/crypto@893bc66 fix: use SHA256 for ECDSA-P256
• siderolabs/crypto@deec8d4 chore: implement DeepCopy methods for PEMEncoded* types
• siderolabs/crypto@d3cb772 feat: make possible to change KeyUsage
• siderolabs/crypto@6bc5bb5 chore: remove unused argument
• siderolabs/crypto@cd18ef6 feat: add support for several organizations
• siderolabs/crypto@97c888b chore: add options to CSR
• siderolabs/crypto@7776057 chore: fix typos
• siderolabs/crypto@80df078 chore: remove named result parameters
• siderolabs/crypto@15bdd28 chore: minor updates
• siderolabs/crypto@4f80b97 fix: verify CSR signature before issuing a certificate
• siderolabs/crypto@39584f1 feat: support for key/certificate types RSA, Ed25519, ECDSA
• siderolabs/crypto@cf75519 fix: function NewKeyPair should create certificate with proper subject
• siderolabs/crypto@751c95a feat: add 'PEMEncodedKey' which allows to transport keys in YAML
• siderolabs/crypto@562c3b6 feat: add support for public RSA key in RSAKey
• siderolabs/crypto@bda0e9c feat: enable more conversions between encoded and raw versions
• siderolabs/crypto@e0dd56a feat: add NotBefore option for x509 cert creation
• siderolabs/crypto@12a4897 feat: add support for SPKI fingerprint generation and matching
• siderolabs/crypto@d0c3eef fix: implement NewKeyPair
• siderolabs/crypto@196679e feat: move pkg/grpc/tls from github.com/talos-systems/talos as ./tls
• siderolabs/crypto@1ff6242 chore: initial version as imported from talos-systems/talos
• siderolabs/crypto@835063e chore: initial commit

Changes from siderolabs/discovery-api

• siderolabs/discovery-api@5b0c5e7 chore: rename to siderolabs, rekres, etc
• siderolabs/discovery-api@db279ef feat: initial set of APIs and generated files
• siderolabs/discovery-api@ac52a37 chore: initial commit

Changes from siderolabs/discovery-client

• siderolabs/discovery-client@a5c19c6 feat: provide public IP discovered from the server
• siderolabs/discovery-client@230f317 fix: reconnect the client on update failure

Changes from siderolabs/extras

• siderolabs/extras@3773d71 feat: update Go to 1.19.4
• siderolabs/extras@b155fc9 chore: update pkgs to the latest tag
• siderolabs/extras@4ba0e60 chore: bump dependencies
• siderolabs/extras@b155fa0 chore: enable renovate
• siderolabs/extras@8f00d77 feat: update tc-redirect-tap to the latest version
• siderolabs/extras@7c91844 chore: bump go to 1.19.2

Changes from siderolabs/gen

• siderolabs/gen@7c7ccc3 feat: introduce channel SendWithContext
• siderolabs/gen@b3b6db8 fix: fix Copy documentation and implementation
• siderolabs/gen@521f737 feat: add xerrors package which contains additions to the std errors
• siderolabs/gen@726e066 fix: rename tuples.go to pair.go and set proper package name
• siderolabs/gen@d8d7d25 chore: minor additions
• siderolabs/gen@338a650 chore: add initial implementation and documentation
• siderolabs/gen@4fd8667 Initial commit

Changes from siderolabs/go-blockdevice

• siderolabs/go-blockdevice@e52e012 feat: add ext4 filesystem detection logic
• siderolabs/go-blockdevice@694ac62 chore: update imports to siderolabs, rekres
• siderolabs/go-blockdevice@dcf6044 chore: rekres and rename
• siderolabs/go-blockdevice@9c4af49 fix: cryptsetup remove slot
• siderolabs/go-blockdevice@74ea471 feat: add freebsd stubs
• siderolabs/go-blockdevice@9fa801c feat: add ReadOnly attribute to Disk
• siderolabs/go-blockdevice@fccee8b chore: rekres the source, fix issues
• siderolabs/go-blockdevice@d9c3a27 feat: support probing FAT12/FAT16 filesystems
• siderolabs/go-blockdevice@b374eb4 fix: align partition to 1M boundary by default
• siderolabs/go-blockdevice@ec428fe fix: lookup filesystem labels on the actual device path
• siderolabs/go-blockdevice@7b9de26 feat: read symlink fullpath in block device list function
• siderolabs/go-blockdevice@6928ee4 refactor: rewrite GPT serialize/deserialize functions
• siderolabs/go-blockdevice@0c7e429 refactor: simplify middle endian functions
• siderolabs/go-blockdevice@15b182d fix: return partition table not exist when trying to read an empty dev
• siderolabs/go-blockdevice@b9517d5 fix: resize partition
• siderolabs/go-blockdevice@70d2865 fix: try to find cdrom disks
• siderolabs/go-blockdevice@667bf53 fix: revert gpt partition not found
• siderolabs/go-blockdevice@d7d4cdd fix: gpt partition not found
• siderolabs/go-blockdevice@33afba3 fix: also open in readonly mode when running All lookup method
• siderolabs/go-blockdevice@e367f9d feat: make probe always open blockdevices in readonly mode
• siderolabs/go-blockdevice@d981156 fix: allow Build for Windows
• siderolabs/go-blockdevice@fe24303 fix: perform correct PMBR partition calculations
• siderolabs/go-blockdevice@2ec0c3c fix: preserve the PMBR bootable flag when opening GPT partition
• siderolabs/go-blockdevice@87816a8 feat: align partition to minimum I/O size
• siderolabs/go-blockdevice@c34b59f feat: expose more encryption options in the LUKS module
• siderolabs/go-blockdevice@30c2bc3 feat: mark MBR bootable
• siderolabs/go-blockdevice@1292574 fix: make disk type matcher parser case insensitive
• siderolabs/go-blockdevice@b77400e fix: properly detect nvme and sd card disk types
• siderolabs/go-blockdevice@1d830a2 fix: revert mark the EFI partition in PMBR as bootable
• siderolabs/go-blockdevice@bec914f fix: mark the EFI partition in PMBR as bootable
• siderolabs/go-blockdevice@776b37d feat: add options to probe disk by various sysblock parameters
• siderolabs/go-blockdevice@bb3ad73 fix: align partition start to physical sector size
• siderolabs/go-blockdevice@8f976c2 feat: replace exec.Command with go-cmd module
• siderolabs/go-blockdevice@1cf7f25 fix: properly handle no child processes error from cmd.Wait
• siderolabs/go-blockdevice@04a9851 feat: implement luks encryption provider
• siderolabs/go-blockdevice@b0375e4 feat: add an option to open block device with exclusive flock
• siderolabs/go-blockdevice@5a1c7f7 refactor: add devname into gpt.Partition, refactor probe package
• siderolabs/go-blockdevice@f2728a5 fix: keep contents of PMBR when writing it
• siderolabs/go-blockdevice@2878460 fix: write second copy of partition entries
• siderolabs/go-blockdevice@943b08b fix: blockdevice reset should read partition table from disk
• siderolabs/go-blockdevice@5b4ee44 fix: ignore /dev/ram devices
• siderolabs/go-blockdevice@98754ec refactor: rewrite GPT library
• siderolabs/go-blockdevice@2a1baad fix: correctly build paths for mmcblk devices
• siderolabs/go-blockdevice@8076344 fix: return proper disk size from GetDisks function
• siderolabs/go-blockdevice@8742133 chore: add common method to list available disks using /sys/block
• siderolabs/go-blockdevice@c4b5833 feat: implement "fast" wipe
• siderolabs/go-blockdevice@b4e67d7 feat: return resize status from Resize() function
• siderolabs/go-blockdevice@ceae64e fix: sync kernel partition table incrementally
• siderolabs/go-blockdevice@2cb9516 fix: return correct error value from blkpg functions
• siderolabs/go-blockdevice@cebe43d refactor: expose InsertAt method via interface
• siderolabs/go-blockdevice@c40dcd8 fix: properly inform kernel about partition deletion
• siderolabs/go-blockdevice@bb8ac5d feat: implement disk wiping via several methods
• siderolabs/go-blockdevice@23fb7dc feat: expose partition name (label)
• siderolabs/go-blockdevice@ff3a821 feat: implement 'InsertAt' method to insert partitions at any position
• siderolabs/go-blockdevice@3d1ce4f fix: calculate last lba of partition correctly
• siderolabs/go-blockdevice@b71540f feat: copy initial version from talos-systems/talos
• siderolabs/go-blockdevice@ca3c078 Initial commit

Changes from siderolabs/go-circular

• siderolabs/go-circular@507e0ec refactor: extract circular Go module
• siderolabs/go-circular@2234b3a docs: add README

Changes from siderolabs/go-cmd

• siderolabs/go-cmd@0aea518 chore: rekres and update
• siderolabs/go-cmd@68eb006 feat: return typed error for exit error
• siderolabs/go-cmd@333ccf1 feat: add stdin support into the Run methods
• siderolabs/go-cmd@c5c8f1c feat: extract cmd module from Talos into a separate module
• siderolabs/go-cmd@77685fc Initial commit

Changes from siderolabs/go-debug

• siderolabs/go-debug@c1bc4bf chore: rekres, rename, etc
• siderolabs/go-debug@3d0a6e1 feat: race build tag flag detector
• siderolabs/go-debug@5b292e5 feat: disable memory profiling by default
• siderolabs/go-debug@c6d0ae2 fix: linters and CI
• siderolabs/go-debug@d969f95 feat: initial implementation
• siderolabs/go-debug@b2044b7 Initial commit

Changes from siderolabs/go-kmsg

• siderolabs/go-kmsg@e2a0000 chore: rekres, rename
• siderolabs/go-kmsg@b08e4d3 feat: replace tab character with space in console output
• siderolabs/go-kmsg@2edcd3a feat: add initial version
• siderolabs/go-kmsg@53cdd8d chore: initial commit

Changes from siderolabs/go-kubeconfig

• siderolabs/go-kubeconfig@e7fdd94 refactor: extract kubeconfig library as a Go module
• siderolabs/go-kubeconfig@50e91b8 docs: add REAMDE

Changes from siderolabs/go-loadbalancer

• siderolabs/go-loadbalancer@f54e3c9 chore: update dependencies to siderolabs, rekres
• siderolabs/go-loadbalancer@438b71d chore: update package path and rekres
• siderolabs/go-loadbalancer@5341eec feat: implement public method to check if the route is Healthy
• siderolabs/go-loadbalancer@b578d47 feat: add a way to configure loadbalancer options
• siderolabs/go-loadbalancer@c54d95d feat: implement control plane loadbalancer
• siderolabs/go-loadbalancer@4a6e29e refactor: clean up names, fix the lingering goroutines
• siderolabs/go-loadbalancer@af87d1c chore: apply new Kres rules
• siderolabs/go-loadbalancer@a445702 feat: allow dial timeout and keep alive period to be configurable
• siderolabs/go-loadbalancer@3c8f347 feat: provide a way to configure logger for the loadbalancer
• siderolabs/go-loadbalancer@da8e987 feat: implement Reconcile - ability to change upstream list on the fly
• siderolabs/go-loadbalancer@8b1dfa6 feat: copy initial version from talos-systems/talos
• siderolabs/go-loadbalancer@c2f6a8f Initial commit

Changes from siderolabs/go-procfs

• siderolabs/go-procfs@a062a4c chore: rekres, rename
• siderolabs/go-procfs@8cbc42d feat: provide an option to overwrite some args in AppendAll
• siderolabs/go-procfs@24d06a9 refactor: remove talos kernel default args
• siderolabs/go-procfs@a82654e feat: implement SetAll method
• siderolabs/go-procfs@16ce2ef fix: update cmdline.Set() to drop the value being overwritten
• siderolabs/go-procfs@5a9a4a7 feat: update kernel args for new KSPP requirements
• siderolabs/go-procfs@57c7311 refactor: change directory layout
• siderolabs/go-procfs@a077c96 fix: fix go module name
• siderolabs/go-procfs@698666f chore: move package to new repo
• siderolabs/go-procfs@dabb425 Initial commit

Changes from siderolabs/go-retry

• siderolabs/go-retry@6d45449 chore: rekres, rename
• siderolabs/go-retry@c78cc95 fix: implement errors.Is for all errors in the set
• siderolabs/go-retry@7885e16 feat: add ExpectedErrorf
• siderolabs/go-retry@3d83f61 feat: deprecate UnexpectedError
• siderolabs/go-retry@b9dc1a9 feat: add support for context.Context in Retry
• siderolabs/go-retry@8c63d29 fix: correctly implement error interfaces on wrapped errors
• siderolabs/go-retry@752f081 feat: add an option to log errors being retried
• siderolabs/go-retry@073067b feat: copy initial version from talos-systems/talos
• siderolabs/go-retry@c7968c5 Initial commit

Changes from siderolabs/go-smbios

• siderolabs/go-smbios@10c1dd8 fix: check for end of the slice properly
• siderolabs/go-smbios@9ca8ce7 chore: treat invalid strings as empty
• siderolabs/go-smbios@dbc5f79 chore: rekres+rename
• siderolabs/go-smbios@3f1e775 feat: rework destructuring of SMBIOS information and added some tests
• siderolabs/go-smbios@fd5ec8c fix: remove useless (?) goroutines leading to data race error
• siderolabs/go-smbios@d3a32be fix: return UUID in middle endian only on SMBIOS >= 2.6
• siderolabs/go-smbios@fb425d4 feat: add memory device
• siderolabs/go-smbios@0bb4f96 feat: add physical memory array
• siderolabs/go-smbios@8019619 feat: supply wake-up type in SMBIOS info
• siderolabs/go-smbios@94b8c4e feat: initial implementation
• siderolabs/go-smbios@864ed80 Initial commit

Changes from siderolabs/go-tail

• siderolabs/go-tail@962ae43 refactor: extract go-tail module
• siderolabs/go-tail@359c3cb docs: initial commit

Changes from siderolabs/grpc-proxy

• siderolabs/grpc-proxy@4cc7bbe chore: rename to siderolabs/grpc-proxy, rekres
• siderolabs/grpc-proxy@2c586db feat: pass fullMethodName to GetConnection
• siderolabs/grpc-proxy@6dfa2cc fix: ignore errors on duplicate SetHeader calls
• siderolabs/grpc-proxy@b076302 fix: use io.EOF error when no backend connections are available
• siderolabs/grpc-proxy@82daca0 docs: update README
• siderolabs/grpc-proxy@fa6843a chore: fix spelling
• siderolabs/grpc-proxy@c0a87d9 chore: major cleanup of the code and build
• siderolabs/grpc-proxy@ca3bc61 fix: ignore some errors so that we don't spam the logs
• siderolabs/grpc-proxy@5c579a7 feat: allow different formats for messages streaming/unary
• siderolabs/grpc-proxy@6c9f7b3 fix: allow mode to be set for each request being proxied
• siderolabs/grpc-proxy@cc91c09 refactor: provide better public API, enforce proxying mode
• siderolabs/grpc-proxy@d8d3a75 chore: update import paths after repo move
• siderolabs/grpc-proxy@dbf07a4 Merge pull request #7 from smira/one2many-4
• siderolabs/grpc-proxy@fc0d27d More tests, small code fixes, updated README.
• siderolabs/grpc-proxy@d9ce0b1 Merge pull request #6 from smira/one2many-3
• siderolabs/grpc-proxy@2d37ba4 Support for one2many streaming calls, tests.
• siderolabs/grpc-proxy@817b035 Merge pull request #5 from smira/one2many-2
• siderolabs/grpc-proxy@436b338 More unary one-2-many tests, error propagation.
• siderolabs/grpc-proxy@1f0cb46 Merge pull request #4 from smira/one2many-1
• siderolabs/grpc-proxy@992a975 Proxying one to many: first iteration
• siderolabs/grpc-proxy@a0988ff Merge pull request #3 from smira/small-fixups
• siderolabs/grpc-proxy@e3111ef Small fixups in preparation to add one-to-many proxying.
• siderolabs/grpc-proxy@6d76ffc Merge pull request #2 from smira/backend-concept
• siderolabs/grpc-proxy@2aad63a Add concept of a 'Backend', but still one to one proxying
• siderolabs/grpc-proxy@7cc4610 Merge pull request #1 from smira/build
• siderolabs/grpc-proxy@37f01f3 Rework build to use GitHub Actions, linting updates.
• siderolabs/grpc-proxy@0f1106e Move error checking further up (#34)
• siderolabs/grpc-proxy@d5b35f6 Update gRPC and fix tests (#27)
• siderolabs/grpc-proxy@67591eb Break StreamDirector interface, fix metadata propagation for gRPC-Go>1.5. (#20)
• siderolabs/grpc-proxy@97396d9 Merge pull request #11 from mwitkow/fix-close-bug
• siderolabs/grpc-proxy@3fcbd37 fixup closing conns
• siderolabs/grpc-proxy@a8f5f87 fixup tests, extend readme
• siderolabs/grpc-proxy@428fa1c Fix a channel closing bug
• siderolabs/grpc-proxy@af55d61 Merge pull request #10 from mwitkow/bugfix/streaming-fix
• siderolabs/grpc-proxy@de4d3db remove spurious printfs
• siderolabs/grpc-proxy@84242c4 fix the "i don't know who finished" case
• siderolabs/grpc-proxy@9b22f41 fix full duplex streaming
• siderolabs/grpc-proxy@c2f7c98 update readme
• siderolabs/grpc-proxy@d654141 update README
• siderolabs/grpc-proxy@f457856 move to proxy subdirectory
• siderolabs/grpc-proxy@4889d78 Add fixup scripts
• siderolabs/grpc-proxy@ef60a37 version 2 of the grpc-proxy, this time with fewer grpc upstream deps
• siderolabs/grpc-proxy@07aeac1 Merge pull request #2 from daniellowtw/master
• siderolabs/grpc-proxy@e5c3df5 Fix compatibility with latest grpc library
• siderolabs/grpc-proxy@52be0a5 bugfix: fix gRPC Java deadlock, due to different dispatch logic
• siderolabs/grpc-proxy@822df7d Fix reference to mwitkow.
• siderolabs/grpc-proxy@28341d1 move out forward logic to method, allowing for use as grpc.Server not found handler.
• siderolabs/grpc-proxy@89e28b4 add reference to upstream grpc bug
• siderolabs/grpc-proxy@00dd588 merge upstream grpc.Server changes changing the dispatch logic
• siderolabs/grpc-proxy@77edc97 move to upstream protobuf from gogo
• siderolabs/grpc-proxy@db71c3e initial commit, tested and working.

Changes from siderolabs/net

• siderolabs/net@19eb1c4 feat: switch to use netip.Addr instead of net.IP
• siderolabs/net@5b21171 chore: rename, rekres
• siderolabs/net@409926a fix: parse correctly some IPv6 CIDRs
• siderolabs/net@b4b7181 feat: add a way to filter list of IPs for the machine
• siderolabs/net@0abe5bd feat: implement FilterIPs function
• siderolabs/net@0519054 feat: add ParseCIDR
• siderolabs/net@52c7509 feat: add a function to format IPs in CIDR notation
• siderolabs/net@005a94f feat: add methods to manage CIDR list, check for non-local IPv6
• siderolabs/net@8b56890 feat: add ValidateEndpointURI
• siderolabs/net@402fa79 chore: apply kres to get the latest build scripts
• siderolabs/net@c7bc477 chore: initial version of the package
• siderolabs/net@393246a chore: initial commit

Changes from siderolabs/pkgs

• siderolabs/pkgs@f2efe98 feat: update containerd to 1.6.12
• siderolabs/pkgs@551787c feat: update Go 1.19.4, containerd to 1.6.11
• siderolabs/pkgs@4e2ff68 chore: bump kernel to 5.15.81
• siderolabs/pkgs@cf4a2b6 chore: update releases
• siderolabs/pkgs@1e8df44 chore: bump depencies
• siderolabs/pkgs@8b975a7 chore: bump deps
• siderolabs/pkgs@b153ce6 chore: bump deps
• siderolabs/pkgs@535b8f9 chore: update packages version
• siderolabs/pkgs@66c77e9 feat: re-enable build kernel with BTF enabled
• siderolabs/pkgs@98ef073 feat: enable INET_DIAG and FANOTFY_PERMISSIONS
• siderolabs/pkgs@8fe5cbc chore: update dependencies
• siderolabs/pkgs@554c0fe feat: add fanotify and kprobes kernel options
• siderolabs/pkgs@54d7e5c fix: drbd package name
• siderolabs/pkgs@b4cb9e2 feat: add 'drbd' package
• siderolabs/pkgs@91e73b3 feat: update dependencies
• siderolabs/pkgs@b6d0d96 chore: bump kernel to 5.15.72
• siderolabs/pkgs@b16dfe9 chore: bump go to 1.19.2
• siderolabs/pkgs@861cc32 chore: bump kernel to 5.15.71
• siderolabs/pkgs@0ac7773 chore: use generic raspberry pi u-boot
• siderolabs/pkgs@d5633d4 chore: bump kernel to 5.15.70
• siderolabs/pkgs@39c0d43 feat: add generic rpi_arm64_defconfig configuration
• siderolabs/pkgs@ed269ca chore: bump kernel to 5.15.69
• siderolabs/pkgs@f2f8333 fix: no slack notifications on failure
• siderolabs/pkgs@6f0af33 chore: disable drone slack pipeline for renovate
• siderolabs/pkgs@32aea3f chore: disable drone for renovate/dependabot
• siderolabs/pkgs@44579f0 fix: rollback xfsprogs to 5.18.0
• siderolabs/pkgs@792c0e3 feat: add gasket driver package
• siderolabs/pkgs@07f1898 chore: update deps
• siderolabs/pkgs@f78f410 chore: enable conntrack zones and timestamps
• siderolabs/pkgs@049b3c6 chore: enable intel ice drivers
• siderolabs/pkgs@606ff32 chore: bump deps
• siderolabs/pkgs@eee5c8a chore: disable irc in conntrack
• siderolabs/pkgs@70e6c46 chore: bump kernel to 5.15.64
• siderolabs/pkgs@e510321 chore: update renovate config
• siderolabs/pkgs@d1fa510 feat: enable renovate bot
• siderolabs/pkgs@e427a77 chore: bump runc to v1.1.4
• siderolabs/pkgs@40e1215 chore: enable nfsv4.2 client support
• siderolabs/pkgs@15efada chore: bump kernel to 5.15.63
• siderolabs/pkgs@e70e3c1 fix: nvidia oss pkg name
• siderolabs/pkgs@30b8d79 chore: bump kernel to 5.15.62
• siderolabs/pkgs@862c392 chore: bump gcc to 12.2.0
• siderolabs/pkgs@2ecd14e fix: containerd version
• siderolabs/pkgs@01df058 feat: add NanoPi R4S configuration
• siderolabs/pkgs@d4cb33b chore: bump containerd to v1.6.8

Changes from siderolabs/siderolink

• siderolabs/siderolink@a92acc6 feat: set SideroLink MTU to 1280
• siderolabs/siderolink@575c5cc refactor: drop dependency on Talos machinery package
• siderolabs/siderolink@61ab1c4 fix: include MachineStatusEvent into the list of supported events
• siderolabs/siderolink@16a84eb chore: rename to siderolabs/siderolink
• siderolabs/siderolink@ca470c7 chore: update Talos to the latest master, migrate netaddr -> netip/x
• siderolabs/siderolink@93b65f0 fix: ignore 'exist' error on interface managmeent
• siderolabs/siderolink@3c4d9e0 chore: move IP to interface binding into NewDevice
• siderolabs/siderolink@f0b5e39 feat: use kernel wireguard implementation when available
• siderolabs/siderolink@1d2b7e1 feat: allow setting peer endpoint using peer event
• siderolabs/siderolink@5d085d6 feat: expose wgDevice.Peers from the wireguard.Device wrapper
• siderolabs/siderolink@3a5be65 fix: use correct method to generate Wireguard private key
• siderolabs/siderolink@8318a7e feat: accept join token in Provision payload
• siderolabs/siderolink@b38c192 fix: build on Windows
• siderolabs/siderolink@9902ad2 feat: pass request context and node address to the events sink adapter
• siderolabs/siderolink@d0612a7 refactor: pass in listener to the log receiver
• siderolabs/siderolink@d86cdd5 feat: implement logreceiver for kernel logs
• siderolabs/siderolink@f7cadbc fix: handle duplicate peer updates
• siderolabs/siderolink@0755b24 feat: initial implementation of SideroLink
• siderolabs/siderolink@ee73ea9 feat: add Talos events sink proto files and the reference implementation
• siderolabs/siderolink@1e2cd9d Initial commit

Changes from siderolabs/tools

• siderolabs/tools@712379c feat: update Go to 1.19.4
• siderolabs/tools@ff41c0b chore: bump dependencies
• siderolabs/tools@df6813e chore: bump dependencies
• siderolabs/tools@5776dd8 chore: bump tools
• siderolabs/tools@e8f92b3 chore: bump tools
• siderolabs/tools@3b5f89a chore: update dependencies
• siderolabs/tools@6402b99 feat: update OpenSSL to 1.1.1r
• siderolabs/tools@00e91b1 feat: update releases
• siderolabs/tools@a264809 chore: bump go to 1.19.2
• siderolabs/tools@858cfe7 fix: no slack notifications on failure
• siderolabs/tools@ed85950 chore: disable drone slack pipeline for renovate
• siderolabs/tools@5df6589 chore: disable drone for renovate/dependabot
• siderolabs/tools@1f00d2e fix: revert gawk to 5.1.1
• siderolabs/tools@feeda1f chore: bump grpc-go
• siderolabs/tools@8542014 chore: bump deps
• siderolabs/tools@e5c4968 chore: update renovate config
• siderolabs/tools@f34f94d chore: update renovate config
• siderolabs/tools@cef4cc6 chore: update renovate config
• siderolabs/tools@bab8e9e chore: add libbpf to tools
• siderolabs/tools@0a15f7b chore: build pahole properly
• siderolabs/tools@a322d06 chore: remove img
• siderolabs/tools@c7ff47b feat: enable renovate dependency updates (3/3)
• siderolabs/tools@6e095cf feat: enable renovate dependency updates (2/n)
• siderolabs/tools@bad1ad1 feat: add renovatebot
• siderolabs/tools@7d6f9c3 chore: bump gcc to 12.2.0
• siderolabs/tools@2719b4b chore: bump toolchain

Dependency Changes

• cloud.google.com/go/compute/metadata v0.2.1 new
• github.com/BurntSushi/toml v1.2.0 -> v1.2.1
• github.com/aws/aws-sdk-go v1.44.76 -> v1.44.147
• github.com/cenkalti/backoff/v4 v4.1.3 -> v4.2.0
• github.com/containerd/containerd v1.6.8 -> v1.6.12
• github.com/cosi-project/runtime v0.1.1 -> v0.2.0
• github.com/docker/docker v20.10.17 -> v20.10.21
• github.com/emicklei/dot v1.0.0 -> v1.2.0
• github.com/fsnotify/fsnotify v1.5.4 -> v1.6.0
• github.com/gdamore/tcell/v2 v2.5.2 -> v2.5.3
• github.com/google/go-cmp v0.5.8 -> v0.5.9
• github.com/google/nftables 2eca00135732 -> 130caa4c31c9
• github.com/hetznercloud/hcloud-go v1.35.2 -> v1.37.0
• github.com/insomniacslk/dhcp 509691fd59ec -> f26e6d78f622
• github.com/jsimonetti/rtnetlink v1.2.2 -> v1.3.0
• github.com/mdlayher/ethtool 856bd6cb8a38 -> 0e16326d06d1
• github.com/mdlayher/genetlink v1.2.0 -> v1.3.0
• github.com/mdlayher/netlink v1.6.0 -> v1.7.0
• github.com/opencontainers/image-spec c5a74bcca799 -> v1.1.0-rc2
• github.com/packethost/packngo v0.25.0 -> v0.29.0
• github.com/pmorjan/kmod v1.0.0 -> v1.1.0
• github.com/rivo/tview 0e6b21a48e96 -> db36428c92d9
• github.com/scaleway/scaleway-sdk-go v1.0.0-beta.9 -> v1.0.0-beta.10
• github.com/siderolabs/crypto v0.4.0 new
• github.com/siderolabs/discovery-api v0.1.1 new
• github.com/siderolabs/discovery-client v0.1.1 -> v0.1.3
• github.com/siderolabs/extras v1.2.0 -> v1.3.0-1-g3773d71
• github.com/siderolabs/gen v0.4.1 new
• github.com/siderolabs/go-blockdevice v0.4.2 new
• github.com/siderolabs/go-circular v0.1.0 new
• github.com/siderolabs/go-cmd v0.1.1 new
• github.com/siderolabs/go-debug v0.2.2 new
• github.com/siderolabs/go-kmsg v0.1.2 new
• github.com/siderolabs/go-kubeconfig v0.1.0 new
• github.com/siderolabs/go-loadbalancer v0.2.1 new
• github.com/siderolabs/go-procfs v0.1.1 new
• github.com/siderolabs/go-retry v0.3.2 new
• github.com/siderolabs/go-smbios v0.3.1 new
• github.com/siderolabs/go-tail v0.1.0 new
• github.com/siderolabs/grpc-proxy v0.4.0 new
• github.com/siderolabs/net v0.4.0 new
• github.com/siderolabs/pkgs v1.2.0-8-g970860d -> v1.3.0-3-gf2efe98
• github.com/siderolabs/siderolink v0.3.1 new
• github.com/siderolabs/talos/pkg/machinery v1.3.0-beta.2 new
• github.com/siderolabs/tools v1.2.0 -> v1.3.0-1-g712379c
• github.com/spf13/cobra v1.5.0 -> v1.6.1
• github.com/stretchr/testify v1.8.0 -> v1.8.1
• github.com/u-root/u-root v0.9.0 -> v0.10.0
• github.com/vmware-tanzu/sonobuoy v0.56.9 -> v0.56.12
• go.etcd.io/etcd/api/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/client/pkg/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/client/v3 v3.5.4 -> v3.5.6
• go.etcd.io/etcd/etcdutl/v3 v3.5.4 -> v3.5.6
• go.uber.org/atomic v1.9.0 -> v1.10.0
• go.uber.org/multierr v1.8.0 new
• go.uber.org/zap v1.22.0 -> v1.23.0
• go4.org/netipx 797b0c90d8ab new
• golang.org/x/net 3211cb980234 -> v0.4.0
• golang.org/x/sync 886fb9371eb4 -> v0.1.0
• golang.org/x/sys fbc7d0a398ab -> v0.3.0
• golang.org/x/term a9ba230a4035 -> v0.3.0
• golang.org/x/time e5dcc9cfc0b9 -> v0.2.0
• golang.zx2c4.com/wireguard/wgctrl 3d4a969bb56b -> 97bc4ad4a1cb
• google.golang.org/grpc v1.48.0 -> v1.51.0
• k8s.io/api v0.25.0 -> v0.26.0
• k8s.io/apimachinery v0.25.0 -> v0.26.0
• k8s.io/apiserver v0.25.0 -> v0.26.0
• k8s.io/client-go v0.25.0 -> v0.26.0
• k8s.io/component-base v0.25.0 -> v0.26.0
• k8s.io/cri-api v0.25.0 -> v0.26.0
• k8s.io/klog/v2 v2.70.1 -> v2.80.1
• k8s.io/kubectl v0.25.0 -> v0.26.0
• k8s.io/kubelet v0.25.0 -> v0.26.0
• kernel.org/pub/linux/libs/security/libcap/cap v1.2.65 -> v1.2.66

Previous release can be found at v1.2.0

Images

ghcr.io/siderolabs/flannel:v0.20.2
ghcr.io/siderolabs/install-cni:v1.3.0-1-g3773d71
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.6
registry.k8s.io/kube-apiserver:v1.26.0
registry.k8s.io/kube-controller-manager:v1.26.0
registry.k8s.io/kube-scheduler:v1.26.0
registry.k8s.io/kube-proxy:v1.26.0
ghcr.io/siderolabs/kubelet:v1.26.0
ghcr.io/siderolabs/installer:v1.3.0-beta.2
registry.k8s.io/pause:3.6