github siderolabs/talos v1.3.0-alpha.2

latest releases: v1.8.2, pkg/machinery/v1.8.2, v1.9.0-alpha.0...
pre-release23 months ago

Talos 1.3.0-alpha.2 (2022-11-17)

Welcome to the v1.3.0-alpha.2 release of Talos!
This is a pre-release of Talos

Please try out the release binaries and report any issues at
https://github.com/siderolabs/talos/issues.

kube-apiserver Audit Policy

Talos now supports setting custom audit policy for kube-apiserver in the machine configuration.

cgroups v1

Talos defaults to using cgroups v2 when Talos doesn't run in a container (when running in a container
Talos follows host cgroups mode).
Talos can now be forced to use cgroups v1 by setting boot kernel argument talos.unified_cgroup_hierarchy=0:

machine:
  install:
    extraKernelArgs:
      - "talos.unified_cgroup_hierarchy=0"

Current cgroups mode can be checked with talosctl ls /sys/fs/cgroup:

cgroups v1:

blkio
cpu
cpuacct
cpuset
devices
freezer
hugetlb
memory
net_cls
net_prio
perf_event
pids

cgroups v2:

cgroup.controllers
cgroup.max.depth
cgroup.max.descendants
cgroup.procs
cgroup.stat
cgroup.subtree_control
cgroup.threads
cpu.stat
cpuset.cpus.effective
cpuset.mems.effective
init
io.stat
kubepods
memory.numa_stat
memory.stat
podruntime
system

Note: cgroupsv1 is deprecated and it should be used only for compatibility with workloads which don't support cgroupsv2 yet.

Kernel Command Line ip= Argument

Talos now supports referencing interface name via enxMAC address notation:

ip=172.20.0.2::172.20.0.1:255.255.255.0::enx7085c2dfbc59

CRI Configuration Overrides

Talos no longer supports CRI config overrides placed in /var/cri/conf.d directory.

New way correctly handles merging of containerd/CRI plugin configuration.

etcd Consistency Check

Talos enables --experimental-compact-hash-check-enabled option by default to improve
etcd store consistency guarantees.

This options is only available with etcd >= v3.5.5, so Talos doesn't support version of etcd before v3.5.5.

etcd Member ID

Talos now internally handles etcd member removal by member ID instead of member name (hostname).
This resolves the case when member name is not accurate or empty (eg: when etcd hasn't fully joined yet).

Command talosctl etcd remove-member now accepts member IDs instead of member names.

New resource can be used to get member ID of the Talos node:

talosctl get etcdmember

Exocale Platform

Talos now supports new platform: Exoscale.

Exoscale provides a firewall, TCP load balancer and autoscale groups.
It works well with CCM and Kubernetes node autoscaler.

Kernel Modules

Talos now supports settings kernel module parameters.

Eg:

machine:
  kernel:
    modules:
      - name: "br_netfilter"
        parameters:
          - nf_conntrack_max=131072

KubeSpan

KubeSpan MTU link size is now configurable via network.kubespan.mtu setting in the machine configuration.

Node Labels

Talos now supports specifying node labels in the machine configuration:

machine:
  nodeLabels:
    rack: rack1a
    zone: us-east-1a

Changes to the node labels will be applied immediately without kubelet restart.

Talos keeps track of the owned node labels in the talos.dev/owned-labels annotation.

Routes

Talos now supports setting MTU for a specific route.

Nano Pi R4S

Talos now supports the Nano Pi R4S SBC.

Raspberry Generic Images

The Raspberry Pi 4 specific image has been deprecated and will be removed in the v1.4 release of Talos.
Talos now ships a generic Raspberry Pi image that should support more Raspberry Pi variants.
Refer to the docs at https://www.talos.dev/v1.3/talos-guides/install/single-board-computers/rpi_generic/ to find which ones are supported.

Encryption with secretbox

By default new clusters will use secretbox for encryption instead of AESCBC.
If both are configured secretbox will take precedence.
Old clusters may keep using AESCBC.
To enable secretbox you may add an encryption secret at cluster.secretboxEncryptionSecret.
You should keep aescbcEncryptionSecret however, even if secretbox is enabled older data will still be encrypted with AESCBC.

How to generate the secret:

dd if=/dev/random of=/dev/stdout bs=32 count=1 | base64

Static Pod Manifests

The directory "/etc/kubernetes/manifests" is now deprecated.
Static pods should always be configured in machine.pods.
To reenable support you may set machine.kubelet.disableManifestsDirectory.

Eg:

machine:
  kubelet:
    disableManifestsDirectory: no

Component Updates

  • Kubernetes: v1.26.0-rc.0
  • Flannel: v0.20.1
  • CoreDNS: v1.10.0
  • etcd: v3.5.5
  • Linux: 5.15.77
  • containerd: v1.6.9

Talos is built with Go 1.19.3.

Contributors

  • Andrey Smirnov
  • Noel Georgi
  • Andrey Smirnov
  • Michal Witkowski
  • Artem Chernyshev
  • Artem Chernyshev
  • Dmitriy Matrenichev
  • Alexey Palazhchenko
  • Serge Logvinov
  • Andrey Smirnov
  • Philipp Sauter
  • Andrew Rynhard
  • Steve Francis
  • Utku Ozdemir
  • Andrew Rynhard
  • Tim Jones
  • Seán C McCord
  • Kris Reeves
  • Marvin Drees
  • Spencer Smith
  • Branden Cash
  • Brandon Nason
  • Cameron Brunner
  • DJAlPee
  • Daniel Low
  • Gerard de Leeuw
  • Jack Wink
  • Jon Stelly
  • Martin Stone
  • Matt Zahorik
  • Maxim Makarov
  • Olli Janatuinen
  • Pau Campana
  • Rubens Farias
  • Sander Maijers
  • Spencer Smith
  • ankitm123
  • emattiza
  • killcity

Changes

174 commits

  • 9e44341c4 release(v1.3.0-alpha.2): prepare release
  • aa56aed79 feat: publish discovered public IP as one of the KubeSpan endpoint
  • 9382443ba feat: update Kubernetes to v1.26.0-rc.0
  • 6ffc381c5 feat: implement CRI configuration customization
  • e1e340bdd feat: expose Talos node labels as a machine configuration field
  • c78bbbfda docs: specify that only XFS partitions are detected
  • b881a9a79 chore: bump dependencies
  • 5bfd7dbfa test: fix assertion on reboot test
  • 1cfb6188b feat: implement support for cgroupsv1
  • 3866d0e33 feat: update Kubernetes to v1.26.0-beta.0
  • e1590ba7b fix: lifecycle action tracking
  • 804762c59 feat: add timeout to cli action tracking, track by default & refactor
  • 4e114ca12 feat: use the etcd member id for etcd operations instead of hostname
  • 06fea2441 feat: expand platform metadata resources
  • 03a20da9d fix: filter up duplicate IPs out of NodeAddresses
  • 6b771bc73 chore: bump deps
  • 96aa9638f chore: rename talos-systems/talos to siderolabs/talos
  • 30bbf6463 refactor: use siderolabs/net version with netip.Addr
  • 343c55762 chore: replace talos-systems Go modules with siderolabs
  • 0301bbe93 fix: check if processes is nil to avoid panic
  • 08e7e49a2 test: update versions for upgrade tests
  • 0b41923c3 fix: restore the StaticPodStatus resource
  • 1947092ae chore: introduce a healthcheck for machined service
  • 3333cd93c fix: generate correct Flannel config for IPv6-only clusters
  • d7070f5e7 release(v1.3.0-alpha.1): prepare release
  • 869f3b5a5 feat: network configuration improvements on the OpenStack platform
  • 29f2195e1 feat: support exoscale cloud
  • 8b4ae08d1 fix: etcd snapshot command on Windows
  • 8bfa7ac1d feat: platform metadata resource
  • 7e50e24c0 fix: properly cleanup legacy static pod manifests directory
  • 6ee47bcc6 fix: support serving config for qemu launcher on IPv6
  • 6c3d11b49 docs: admission control patch note
  • 4ea3b99b5 fix: serve static pod files on 127.0.0.1 instead of localhost
  • 23842114f feat: support encryption with secretbox
  • f6773c472 docs: talos support on equinix metal
  • b307160f6 chore: bump dependencies
  • d7edd0e2e refactor: use go-circular, go-kubeconfig, and go-tail
  • c6e1702ec feat: use URL-based manifests to present static pods to the kubelet
  • 136a795e5 docs: update system requirements to mention dedicated disk usage
  • 879e8c0bf chore: update kernel with BTF support
  • ceb0cd99a feat: implement Talos API auth using SideroV1 signatures
  • e6fba7d3b chore: update dependencies
  • 93e55b85f chore: bump golangci-lint to v1.50.0
  • aa3d9b4ca fix: regenerate cert on node labeling retry
  • 021c73c35 fix: lowercase nodename
  • b902036e1 docs: update office hours time link
  • 7fcb8c681 feat: update Flannel to v0.20.0
  • dc70d892a fix: support setting KubeSpan link MTU
  • 7d52bad37 feat: update Linux to 5.15.73
  • 9c78b3aff feat: update Kubernetes to v1.26.0-alpha.2
  • 94913a672 docs: add lofty to talos adopters
  • 0a0bdfe16 docs: add Tremor Video to adopters
  • b7b1d4fd6 feat: use readonly containers
  • d210338e3 fix: skip protobuf full unmarshaling for some talosctl commands
  • b3c679d18 chore: bump dependencies
  • 993743f63 fix: skip hostname via DHCP on OpenStack platform
  • db076e7b5 feat: pin interface by mac address in cmdline args
  • 63de93722 fix: update go-smbios to v0.3.1
  • 49e9f808e chore: bump kernel and go
  • c7372144d docs: add constraints to upgrade docs
  • c71c8ca18 docs: consolidate, simplify and correct various docs
  • 06f76bfeb chore: bump dependencies
  • b1c421b9a chore: publish ami's with imds v2 enabled
  • 195c40ab5 docs: add information about applicable use cases of disk encryption
  • 54a687fb8 docs: consolidate and expand on discovery service
  • 139c62d76 feat: allow upgrades in maintenance mode (only over SideroLink)
  • 48dee4805 feat: support mtu for routes
  • 1c43c72ae docs: fix talos required kernel params
  • 67cc45ae3 release(v1.3.0-alpha.0): prepare release
  • 18c377a4d feat: customize audit policy
  • 23c9ea46b fix: raspberry pi install
  • f17cdee16 feat: jsonpath filter for talosctl get outputs
  • 6bd3cca1a chore: generic raspberry pi images
  • d914ab8bb chore: add vulncheck tool as a linter
  • a0151aa13 feat: add generic rpi u-boot support
  • 30f851d09 chore: bump dependences
  • 8b2235c3b fix: lookup Equinix Metal bond slaves using 'permanent addr'
  • b3257ebb1 chore: bump kernel to 5.15.70
  • 0b2767c16 feat: implement 'permanent addr' in link statuses
  • c90e20251 fix: kubeconfig permission
  • fc48849d0 chore: move maps/slices/ordered to gen module
  • 8b09bd4b0 feat: update Kubernetes to v1.26.0-alpha.1
  • 276d4175b chore: bump extension versions in testing
  • 357b770cb fix: cryptsetup delete slot
  • 711128839 fix: continue applying bootstrap manifests on some errors
  • ce12c7b38 chore: update COSI runtime to v0.2.0-alpha.1
  • 1b435c0b3 chore: bump kernel + ice drivers
  • 18e041f1e docs: fix typo in patching example
  • 0ad6452ca feat: update CoreDNS to v1.10.0
  • 479f3f52e chore: bump dependencies
  • e07c6ae99 feat: update Kubernetes to v1.25.1
  • 13fdfaffc test: fix up default branch name
  • ef181321a docs: add component diagram; K8s & Talos Linux
  • aade73643 docs: fix missing variable in OpenEBS docs
  • 472590aa8 chore: return InvalidArgument on invalid config in maintenance mode
  • e5cabd42c feat: enable etcd consistency hashcheck
  • 015535d90 fix: update discovery client with the redirect fix
  • d0c8e7699 chore: bump kernel and go
  • 985b0c2e7 chore: remove go.work.sum
  • 69124f102 feat: update etcd to v3.5.5
  • 1985a796c docs: update docs for pod security
  • 94b088f02 fix: set etcd options consistently
  • 92ae7ef4b fix: fix protoenc encoding for enums and types with custom encoders
  • 93809017c docs: cpu scaling governor knowledgebase
  • 7b270ff33 test: fix api controller test
  • 2dadcd669 fix: stop worker nodes from acting as apid routers
  • 9eaf33f3f fix: never sign client certificate requests in trustd
  • 436749124 feat: environment vars for extension service
  • 0c0cb671e chore: mark machine configuration validation failure as InvalidArgument
  • f424e5340 fix: stop containers more thoroughly
  • 12827b861 chore: move "implements" checks to compile time
  • 3a67c42cb fix: kill the task processes when cleaning up stale task
  • 14a79e325 chore: bump dependencies
  • 9beee92e7 docs: fix double vv in Kubernetes version
  • 688272515 fix: use different username for Talos Kubernetes API access
  • 161a52a9e feat: check apid client certificate extended key usage
  • 9dadc4a59 fix: include all node addresses into etcd cert SANs
  • 71bfd3e43 feat: update CoreDNS to 1.9.4
  • 9df8f1ff1 fix: list COSI APIs for the apid authenticator
  • 31462450f fix: pass a pointer to specs.Mount into protoenc.Marshal
  • e626540df chore: avoid double API request logging in trustd
  • f62d17125 chore: update crypto to use new import path siderolabs/crypto
  • ef27dd855 chore: bump dependencies
  • 6472ae00b fix: automatically discard VIPs for etcd advertised addresses
  • 5e21cca52 feat: support setting kernel parameters
  • bd56621cd feat: add structprotogen tool
  • cdb6bb2cc feat: add Nano Pi R4S support
  • 36c1f1d6e fix: flip the client-server version check
  • cd6c53a97 docs: fork docs for v1.3
  • 0847400f7 fix: prevent panic on health check if a member has no IPs
  • 7471d7f01 feat: update Flannel to v0.19.2
  • 148c75cfb docs: consolidate the control-plane documentation
  • 353154281 fix: drop kube-system SA default binding
  • 4f37b668b chore: remove capi hacks
  • 1369afea8 docs: make 1.2.0 docs default ones
  • 7627cb0e3 docs: add new talosctl gen secrets
  • 8aa60a37a chore: bump kernel to 5.15.64
  • a798dbd5d docs: update docs for upcoming 1.2.0 release
  • b2fec3c97 fix: properly handle configContext being nil in Talos client
  • 1c0977b3a fix: change the type of returned gRPC connection object from the client
  • 41848e421 fix: expose Talos client gRPC connection via the function Conn
  • 2e9be4af8 chore: bump dependencies
  • d283aba3a test: fix cli reboot test
  • 0b339a9dc feat: track progress of action API calls
  • 072349812 fix: update COSI to the version with gRPC Wait fix
  • 89d57aa81 fix: always abort the maintenance service
  • f6fa74619 fix: limit apid backoff max delay
  • d7ef346db fix: get command in the case 'nodes' are not set in the context
  • 4e9c32256 fix: correctly render hosts.toml with multiple endpoints
  • cdd0f08bc feat: check client <> server version in some Talos commands
  • 446b0af58 chore: bump kernel and runc
  • 8c203ce9b feat: remove the machine from the discovery service on reset
  • b59ca5810 chore: move from inet.af/netaddr to net/netip and go4.org/netipx
  • 053af1d59 fix: update etcd certificates when node addresses changes
  • 11edb2c6f test: re-enable upgrade tests
  • 0310e2089 chore: bump github.com/siderolabs/protoenc to v0.1.5
  • 29bd63240 chore: remove old build tags syntax
  • b500d0aa9 chore: bump k8s to v1.25.0
  • 29e574be7 docs: update to v1.2.0-beta.1
  • 26b549f2a chore: bump dependencies
  • 8c3ac4c42 chore: limit GOMAXPROCS for Talos services
  • 361e85b74 fix: properly read kexec disabled sysctl
  • cfe6c2bc2 docs: nvidia oss drivers
  • 2f2d97b6b fix: don't wait for the hostname in maintenance mode
  • b15a63924 chore: bump kernel to 5.15.62
  • a0d94be30 fix: stable default hostname bias
  • da4cd34ef feat: update etcd advertised peer addresses on the fly
  • faf92ce01 chore: bump kubernetes to v1.25.0-rc.1
  • 52de919e3 chore: bump containerd to v1.6.8
  • 7d43fc79b fix: make 'ca', 'crt' and 'key' flags optional for 'talosctl config add'
  • fd467e02c fix: handle grub config being empty in the Revert function
  • 9492aca65 fix: clean up cancelCtxMu leftovers in PriorityLock
  • 61e3eb2ea fix: talosctl edit mc loop
  • 32db7a7f5 fix: surround cancelCtx with the mutex

Changes since v1.3.0-alpha.1

24 commits

  • 9e44341c4 release(v1.3.0-alpha.2): prepare release
  • aa56aed79 feat: publish discovered public IP as one of the KubeSpan endpoint
  • 9382443ba feat: update Kubernetes to v1.26.0-rc.0
  • 6ffc381c5 feat: implement CRI configuration customization
  • e1e340bdd feat: expose Talos node labels as a machine configuration field
  • c78bbbfda docs: specify that only XFS partitions are detected
  • b881a9a79 chore: bump dependencies
  • 5bfd7dbfa test: fix assertion on reboot test
  • 1cfb6188b feat: implement support for cgroupsv1
  • 3866d0e33 feat: update Kubernetes to v1.26.0-beta.0
  • e1590ba7b fix: lifecycle action tracking
  • 804762c59 feat: add timeout to cli action tracking, track by default & refactor
  • 4e114ca12 feat: use the etcd member id for etcd operations instead of hostname
  • 06fea2441 feat: expand platform metadata resources
  • 03a20da9d fix: filter up duplicate IPs out of NodeAddresses
  • 6b771bc73 chore: bump deps
  • 96aa9638f chore: rename talos-systems/talos to siderolabs/talos
  • 30bbf6463 refactor: use siderolabs/net version with netip.Addr
  • 343c55762 chore: replace talos-systems Go modules with siderolabs
  • 0301bbe93 fix: check if processes is nil to avoid panic
  • 08e7e49a2 test: update versions for upgrade tests
  • 0b41923c3 fix: restore the StaticPodStatus resource
  • 1947092ae chore: introduce a healthcheck for machined service
  • 3333cd93c fix: generate correct Flannel config for IPv6-only clusters

Changes from siderolabs/crypto

27 commits

Changes from siderolabs/discovery-api

3 commits

Changes from siderolabs/discovery-client

2 commits

Changes from siderolabs/extras

3 commits

Changes from siderolabs/gen

6 commits

Changes from siderolabs/go-blockdevice

56 commits

Changes from siderolabs/go-circular

2 commits

Changes from siderolabs/go-cmd

5 commits

Changes from siderolabs/go-debug

6 commits

Changes from siderolabs/go-kmsg

4 commits

Changes from siderolabs/go-kubeconfig

2 commits

Changes from siderolabs/go-loadbalancer

12 commits

Changes from siderolabs/go-procfs

10 commits

Changes from siderolabs/go-retry

9 commits

Changes from siderolabs/go-smbios

11 commits

Changes from siderolabs/go-tail

2 commits

Changes from siderolabs/grpc-proxy

51 commits

Changes from siderolabs/net

12 commits

Changes from siderolabs/pkgs

39 commits

Changes from siderolabs/siderolink

19 commits

Changes from siderolabs/tools

22 commits

Dependency Changes

  • cloud.google.com/go/compute/metadata v0.2.1 new
  • github.com/BurntSushi/toml v1.2.0 -> v1.2.1
  • github.com/aws/aws-sdk-go v1.44.76 -> v1.44.136
  • github.com/containerd/containerd v1.6.8 -> v1.6.9
  • github.com/cosi-project/runtime v0.1.1 -> v0.2.0-alpha.3
  • github.com/docker/docker v20.10.17 -> v20.10.21
  • github.com/emicklei/dot v1.0.0 -> v1.1.0
  • github.com/fsnotify/fsnotify v1.5.4 -> v1.6.0
  • github.com/gdamore/tcell/v2 v2.5.2 -> v2.5.3
  • github.com/google/go-cmp v0.5.8 -> v0.5.9
  • github.com/google/nftables 2eca00135732 -> 130caa4c31c9
  • github.com/hetznercloud/hcloud-go v1.35.2 -> v1.37.0
  • github.com/insomniacslk/dhcp 509691fd59ec -> 5308ebe5334c
  • github.com/jsimonetti/rtnetlink v1.2.2 -> v1.2.3
  • github.com/mdlayher/ethtool 856bd6cb8a38 -> 0e16326d06d1
  • github.com/mdlayher/genetlink v1.2.0 -> v1.3.0
  • github.com/mdlayher/netlink v1.6.0 -> v1.7.0
  • github.com/opencontainers/image-spec c5a74bcca799 -> v1.1.0-rc2
  • github.com/packethost/packngo v0.25.0 -> v0.29.0
  • github.com/pmorjan/kmod v1.0.0 -> v1.1.0
  • github.com/rivo/tview 0e6b21a48e96 -> 04a46906d2e9
  • github.com/scaleway/scaleway-sdk-go v1.0.0-beta.9 -> v1.0.0-beta.10
  • github.com/siderolabs/crypto v0.4.0 new
  • github.com/siderolabs/discovery-api v0.1.1 new
  • github.com/siderolabs/discovery-client v0.1.1 -> v0.1.3
  • github.com/siderolabs/extras v1.2.0 -> v1.3.0-alpha.0-2-gb155fa0
  • github.com/siderolabs/gen v0.4.0 new
  • github.com/siderolabs/go-blockdevice v0.4.1 new
  • github.com/siderolabs/go-circular v0.1.0 new
  • github.com/siderolabs/go-cmd v0.1.1 new
  • github.com/siderolabs/go-debug v0.2.2 new
  • github.com/siderolabs/go-kmsg v0.1.2 new
  • github.com/siderolabs/go-kubeconfig v0.1.0 new
  • github.com/siderolabs/go-loadbalancer v0.2.1 new
  • github.com/siderolabs/go-procfs v0.1.1 new
  • github.com/siderolabs/go-retry v0.3.2 new
  • github.com/siderolabs/go-smbios v0.3.1 new
  • github.com/siderolabs/go-tail v0.1.0 new
  • github.com/siderolabs/grpc-proxy v0.4.0 new
  • github.com/siderolabs/net v0.4.0 new
  • github.com/siderolabs/pkgs v1.2.0-8-g970860d -> v1.3.0-alpha.0-38-g8b975a7
  • github.com/siderolabs/siderolink v0.3.0 new
  • github.com/siderolabs/talos/pkg/machinery v1.3.0-alpha.2 new
  • github.com/siderolabs/tools v1.2.0 -> v1.3.0-alpha.0-21-ge8f92b3
  • github.com/spf13/cobra v1.5.0 -> v1.6.1
  • github.com/stretchr/testify v1.8.0 -> v1.8.1
  • github.com/u-root/u-root v0.9.0 -> v0.10.0
  • github.com/vmware-tanzu/sonobuoy v0.56.9 -> v0.56.11
  • go.etcd.io/etcd/api/v3 v3.5.4 -> v3.5.5
  • go.etcd.io/etcd/client/pkg/v3 v3.5.4 -> v3.5.5
  • go.etcd.io/etcd/client/v3 v3.5.4 -> v3.5.5
  • go.etcd.io/etcd/etcdutl/v3 v3.5.4 -> v3.5.5
  • go.uber.org/atomic v1.9.0 -> v1.10.0
  • go.uber.org/zap v1.22.0 -> v1.23.0
  • go4.org/netipx 797b0c90d8ab new
  • golang.org/x/net 3211cb980234 -> v0.2.0
  • golang.org/x/sync 886fb9371eb4 -> v0.1.0
  • golang.org/x/sys fbc7d0a398ab -> v0.2.0
  • golang.org/x/term a9ba230a4035 -> v0.2.0
  • golang.org/x/time e5dcc9cfc0b9 -> v0.2.0
  • golang.zx2c4.com/wireguard/wgctrl 3d4a969bb56b -> 97bc4ad4a1cb
  • google.golang.org/grpc v1.48.0 -> v1.50.1
  • k8s.io/api v0.25.0 -> v0.26.0-beta.0
  • k8s.io/apimachinery v0.25.0 -> v0.26.0-beta.0
  • k8s.io/apiserver v0.25.0 -> v0.26.0-beta.0
  • k8s.io/client-go v0.25.0 -> v0.26.0-beta.0
  • k8s.io/component-base v0.25.0 -> v0.26.0-beta.0
  • k8s.io/cri-api v0.25.0 -> v0.26.0-beta.0
  • k8s.io/klog/v2 v2.70.1 -> v2.80.1
  • k8s.io/kubectl v0.25.0 -> v0.26.0-beta.0
  • k8s.io/kubelet v0.25.0 -> v0.26.0-beta.0
  • kernel.org/pub/linux/libs/security/libcap/cap v1.2.65 -> v1.2.66

Previous release can be found at v1.2.0

Images

ghcr.io/siderolabs/flannel:v0.20.1
ghcr.io/siderolabs/install-cni:v1.3.0-alpha.0-2-gb155fa0
docker.io/coredns/coredns:1.10.0
gcr.io/etcd-development/etcd:v3.5.5
k8s.gcr.io/kube-apiserver:v1.26.0-rc.0
k8s.gcr.io/kube-controller-manager:v1.26.0-rc.0
k8s.gcr.io/kube-scheduler:v1.26.0-rc.0
k8s.gcr.io/kube-proxy:v1.26.0-rc.0
ghcr.io/siderolabs/kubelet:v1.26.0-rc.0
ghcr.io/siderolabs/installer:v1.3.0-alpha.2
registry.k8s.io/pause:3.6

Don't miss a new talos release

NewReleases is sending notifications on new releases.