Releases: kairos-io/kairos
v3.0.3
⚠️ Known issues
🐛 Raspberry: EFI booting no longer supported on kernels shipped with ubuntu > 22.04 #2249
We haven't been able to address the following issues on Alpine:
🐛 It's not possible to login on an Alpine 3.18 RPi #2439
🐛 Filesystem expansion on rpi4 doesn't work with Alpine #1995
🐛 cgroup_memory not mounted in Alpine rpi4 #2002
🐛 Upgrade on alpine arm errors #2135
🐛 reset from the GRUB menu on alpine, gets stuck in an endless loop #2136
Deprecation warnings:
Reading of /etc/elemental/config.yaml
is working again but will be deprecated in favor of /etc/kairos/config.yaml
What's Changed
- Fixes issue with the
bootentry
command in the agent when dealing with UKI by @mauromorales in #2410
Full Changelog: v3.0.2...v3.0.3
v3.0.2
Caution
NOTE: The OpenSUSE Tumbleweed flavor of this release was affected by the xz backdoor (https://nvd.nist.gov/vuln/detail/CVE-2024-3094). For this reason all affected artifacts have been removed, both from quay.io (container images) and from GitHub. If you used the Tumbleweed artifacts of Kairos 3.0.1
or 3.0.2
you should immediately stop the affected machines and re-install a version which is not affected. If those systems were exposed to the internet (if ssh was possible) and they included passwords or keys, it's advised that you rotate those credentials.
Read more:
⚠️ Known issues
🐛 Raspberry: EFI booting no longer supported on kernels shipped with ubuntu > 22.04 #2249
We haven't been able to address the following issues on Alpine:
🐛 It's not possible to login on an Alpine 3.18 RPi #2439
🐛 Filesystem expansion on rpi4 doesn't work with Alpine #1995
🐛 cgroup_memory not mounted in Alpine rpi4 #2002
🐛 Upgrade on alpine arm errors #2135
🐛 reset from the GRUB menu on alpine, gets stuck in an endless loop #2136
Deprecation warnings:
Reading of /etc/elemental/config.yaml
is working again but will be deprecated in favor of /etc/kairos/config.yaml
What's Changed
- 🤖 Run fedora and ubuntu uki tests by @Itxaka in #2366
- Replace a full test with a line in another test by @jimmykarily in #2368
- Reduce fedora uki image size by @mauromorales in #2365
- chore(deps): update earthly/earthly docker tag to v0.8.6 by @renovate in #2359
- 🤖 Allow manual testing of branches for uki jobs by @Itxaka in #2373
- Do installation of kernel at the end of dockerfile by @mauromorales in #2374
- chore(deps): update quay.io/kairos/osbuilder-tools docker tag to v0.200.8 by @renovate in #2382
- fix(deps): update module github.com/kairos-io/kairos-sdk to v0.0.27 by @renovate in #2383
- chore(deps): update dependency kairos-io/kairos-framework to v2.7.19 by @renovate in #2391
- Test that after-reset is run when in UKI mode by @jimmykarily in #2331
- 🤖 Bump osbuilder and drop keys by @Itxaka in #2381
- fix(deps): update module github.com/kairos-io/kairos-sdk to v0.0.28 by @renovate in #2394
- bump framework image by @mudler in #2407
Full Changelog: v3.0.1...v3.0.2
v3.0.1
Caution
NOTE: The OpenSUSE Tumbleweed flavor of this release was affected by the xz backdoor (https://nvd.nist.gov/vuln/detail/CVE-2024-3094). For this reason all affected artifacts have been removed, both from quay.io (container images) and from GitHub. If you used the Tumbleweed artifacts of Kairos 3.0.1
or 3.0.2
you should immediately stop the affected machines and re-install a version which is not affected. If those systems were exposed to the internet (if ssh was possible) and they included passwords or keys, it's advised that you rotate those credentials.
Read more:
⚠️ Known issues
🐛 Raspberry: EFI booting no longer supported on kernels shipped with ubuntu > 22.04 #2249
We haven't been able to address the following issues on Alpine:
🐛 It's not possible to login on an Alpine 3.18 RPi #2439
🐛 Filesystem expansion on rpi4 doesn't work with Alpine #1995
🐛 cgroup_memory not mounted in Alpine rpi4 #2002
🐛 Upgrade on alpine arm errors #2135
🐛 reset from the GRUB menu on alpine, gets stuck in an endless loop #2136
Deprecation warnings:
Reading of /etc/elemental/config.yaml
is working again but will be deprecated in favor of /etc/kairos/config.yaml
What's Changed
- Add docs versioning item in the template by @mauromorales in #2317
- Update earthly/earthly Docker tag to v0.8.5 by @renovate in #2333
- Install nohang from source for ubuntu by @liyimeng in #2318
- Update softprops/action-gh-release digest to 9d7c94c by @renovate in #2320
- Update koalaman/shellcheck-alpine Docker tag to v0.10.0 by @renovate in #2321
- Update quay.io/kairos/osbuilder-tools Docker tag to v0.200.6 - autoclosed by @renovate in #2339
- Update dependency kairos-io/kairos-framework to v2.7.15 by @renovate in #2344
- Move nfs-common to common build target in ubuntu flavor by @kaiehrhardt in #2340
- chore(deps): update quay.io/kairos/osbuilder-tools docker tag to v0.200.7 by @renovate in #2350
- chore(deps): update quay.io/luet/base docker tag to v0.35.1 by @renovate in #2352
- Bump framework to v2.7.17 by @mauromorales in #2357
New Contributors
- @liyimeng made their first contribution in #2318
- @kaiehrhardt made their first contribution in #2340
Full Changelog: v3.0.0...v3.0.1
v3.0.0
⚠️ Known issues
🐛 Raspberry: EFI booting no longer supported on kernels shipped with ubuntu > 22.04 #2249
We haven't been able to address the following issues on Alpine:
🐛 Filesystem expansion on rpi4 doesn't work with Alpine #1995
🐛 cgroup_memory not mounted in Alpine rpi4 #2002
🐛 Upgrade on alpine arm errors #2135
🐛 reset from the GRUB menu on alpine, gets stuck in an endless loop #2136
Deprecation warnings:
Reading of /etc/elemental/config.yaml
is working again but will be deprecated in favor of /etc/kairos/config.yaml
New and noteworthy
- ✨ Enable secureboot for all flavors (minus alpine) by @Itxaka in #2140
- 📖 Docs now have versioning starting with 3.0.0
What's Changed
- Add scp to fedora by @jimmykarily in #2154
- Remove duplicated zfs installation on rhel by @mauromorales in #2161
- [uki] Provide proper artifacts for auto-key-enrollment by @Itxaka in #2172
- 🤖 Allow passing flags to enki and bump version by @Itxaka in #2193
- 🐛 Do not recompress compressed firmware by @Itxaka in #2237
- Have different compression depending on the ubuntu release by @mauromorales in #2270
- Slim down Ubuntu by @mauromorales in #2284
- Publish uki base image by @mauromorales in #2290
Full Changelog: v2.5.0...v3.0.0
v3.0.0-beta1
What's Changed
- Have different compression depending on the ubuntu release by @mauromorales in #2270
- Update earthly/earthly Docker tag to v0.8.4 by @renovate in #2276
- Update quay.io/kairos/osbuilder-tools Docker tag to v0.200.2 by @renovate in #2277
- Update dependency kairos-io/kairos-framework to v2.7.4 by @renovate in #2278
- Slim down Ubuntu by @mauromorales in #2284
- Bump framework to use compressed binaries by @mauromorales in #2289
- Update quay.io/kairos/osbuilder-tools Docker tag to v0.200.4 by @renovate in #2280
- Update actions/download-artifact action to v4.1.3 by @renovate in #2288
- Publish uki base image by @mauromorales in #2290
- Update dependency kairos-io/kairos-framework to v2.7.7 by @renovate in #2294
- Add dracut-live to Ubuntu arm64 22+ by @mauromorales in #2296
- Update module github.com/kairos-io/kairos-sdk to v0.0.26 by @renovate in #2298
- Update dependency kairos-io/kairos-framework to v2.7.9 by @renovate in #2299
- Fix uki test by @Itxaka in #2302
- Update actions/download-artifact action to v4.1.4 by @renovate in #2303
- Add Ubuntu standard build on master by @mauromorales in #2306
Full Changelog: v3.0.0-alpha3...v3.0.0-beta1
v3.0.0-alpha3
What's Changed
- Update quay.io/kairos/osbuilder-tools Docker tag to v0.15.0 by @renovate in #2207
- Add warning to outdated example by @mauromorales in #2211
- ✨ Rework pipelines by @mauromorales in #2216
- Update actions/download-artifact action to v4.1.2 by @renovate in #2213
- Update aquasec/trivy Docker tag to v0.49.1 by @renovate in #2206
- Update earthly/earthly Docker tag to v0.8.3 by @renovate in #2163
- Update slackapi/slack-github-action action to v1.25.0 by @renovate in #2190
- Update robinraju/release-downloader action to v1.9 by @renovate in #2191
- Do not push sbom master files to repo by @mauromorales in #2234
- 🐛 Do not recompress compressed firmware by @Itxaka in #2237
- Test latest fedora-based osbuilder by @Itxaka in #2232
- Run zst per file by @mauromorales in #2238
- Move versioneer call inside Dockerfile by @mauromorales in #2242
- Update module github.com/kairos-io/kairos-sdk to v0.0.24 by @renovate in #2205
- Ubuntu 24.04 arm64 generic by @mauromorales in #2241
- append k3s version to master builds by @mauromorales in #2248
- Remove unused Earthly targets by @jimmykarily in #2264
- Update module github.com/kairos-io/kairos-sdk to v0.0.25 by @renovate in #2268
Full Changelog: v3.0.0-alpha2...v3.0.0-alpha3
v3.0.0-alpha2
What's Changed
-
bump framework to 2.4.6 to use its cache by @mauromorales in #2187
-
🤖 Allow passing flags to enki and bump version by @Itxaka in #2193
-
Update quay.io/kairos/enki Docker tag to v0.0.12 by @renovate in #2197
-
sdk: identifying recovery via recovery-mode stanza
-
sdk: more shim locations when installing
-
agent: Add uki reset
-
agent: Fix a race condition when encrypting
-
agent: remove entries on uki install (interactive-install entries)
-
agent: Set proper partition sizes based on source size
-
agent: can now encrypt extra partitions on uki
-
agent: several fixes for uki
-
framework: Several fixes in cloud config files for uki boot/install
-
enki: Allow building artifacts with different cmdlines for uki.
-
enki: Allow building different output artifacts
Full Changelog: v3.0.0-alpha1...v3.0.0-alpha2
v3.0.0-alpha1
What's Changed
- Update release template by @mauromorales in #2137
- Make sure test doesn't break when master matches the latest release by @jimmykarily in #2141
- 🔧 Adapt uki test by @Itxaka in #2145
- ✨ Enable secureboot for all flavors (minus alpine) by @Itxaka in #2140
- Update aquasec/trivy Docker tag to v0.48.3 by @renovate in #2142
- Update tj-actions/changed-files action to v42 by @renovate in #2153
- Add scp to fedora by @jimmykarily in #2154
- Remove duplicated zfs installation on rhel by @mauromorales in #2161
- Add target to transform kairos image into UKI by @mauromorales in #2169
- [uki] Provide proper artifacts for auto-key-enrollment by @Itxaka in #2172
- Update enki to v0.0.9 by @mauromorales in #2181
- Bump kairos framework by @jimmykarily in #2184
- bump enki by @mudler in #2185
Full Changelog: v2.5.0...v3.0.0-alpha1
v2.5.0
⚠️ Known issues
We haven't been able to address the following issues on Alpine ARM64:
- 🐛 Filesystem expansion on rpi4 doesn't work with Alpine #1995
- 🐛 cgroup_memory not mounted in Alpine rpi4 #2002
- 🐛 Upgrade on alpine arm errors #2135
And for Alpine AMD64:
- 🐛 reset from the GRUB menu on alpine, gets stuck in an endless loop #2136
What's Changed
- ✨ Use framework images built on new repo by @mauromorales in #2074
- ✨ Sign
-img
images by @jimmykarily in #2111 - ✨ build RPI3 artifacts by @Ludea in #1966
- ✨ [UKI feature] Measure boot by @Itxaka in #2028
- ✨ Introduce versioneer to easily generate kairos versions by @jimmykarily in #2081
- 🐧 Update alpine to 3.19 by @mauromorales in #2098
- 🐧 Upgrade Ubuntu 23.04 to 23.10 by @mauromorales in #2093
Packages included
Name | Category | Version |
---|---|---|
alpine | initrd | 3.8.1+2 |
grub-config | static | 0.10 |
grub2-efi | system | 2.06-150500.27.4 |
immucore | dracut | 0.1.9 |
immucore | system | 0.1.9 |
kairos-agent | system | 2.6.2 |
kairos-network | dracut | 1.1.0 |
kairos-overlay-files | static | 1.1.20 |
kairos-sysext | dracut | 1.0.0 |
kcrypt | system | 0.9.0 |
kcrypt-challenger | system | 0.6.0 |
suc-upgrade | system | 0.2.1 |
alpine | initrd | 3.8.1+2 |
grub-config | static | 0.10 |
grub2-efi | system | 2.06-150500.27.4 |
immucore | dracut | 0.1.9 |
immucore | fips | 0.1.9 |
kairos-agent | fips | 2.6.2 |
kairos-network | dracut | 1.1.0 |
kairos-overlay-files | static | 1.1.20 |
kairos-sysext | dracut | 1.0.0 |
kcrypt | fips | 0.9.0 |
kcrypt-challenger | fips | 0.6.0 |
suc-upgrade | system | 0.2.1 |
Full Changelog: v2.4.3...v2.5.0
v2.5.0-rc1
Use self-hosted for ubuntu 23.10 standard rpi4 Signed-off-by: Mauro Morales <[email protected]>