@highstate/talos 0.4.1 → 0.4.2

package/dist/cluster/index.js

@@ -0,0 +1,154 @@
+import { readFileSync } from 'node:fs';
+import { forUnit, output, interpolate, all } from '@highstate/pulumi';
+import { talos } from '@highstate/library';
+import { machine, cluster } from '@pulumiverse/talos';
+
+const { name, args, inputs, outputs } = forUnit(talos.cluster);
+const clusterName = args.clusterName ?? name;
+const globalConfigPatch = output({
+  machine: {
+    install: {
+      image: "ghcr.io/siderolabs/installer:v1.8.3",
+      extensions: [{ image: "ghcr.io/siderolabs/qemu-guest-agent:9.1.0" }]
+    },
+    sysctls: {
+      "net.ipv4.ip_forward": "1",
+      "net.ipv4.conf.all.src_valid_mark": "1"
+    }
+  },
+  cluster: {
+    allowSchedulingOnMasters: inputs.workers.length.apply(
+      (length) => length === 0 || args.scheduleOnMasters
+    ),
+    inlineManifests: [
+      {
+        name: "cilium",
+        contents: readFileSync("../../assets/manifests/cilium.yaml", "utf-8")
+      }
+    ],
+    network: {
+      cni: {
+        name: "none"
+      }
+    },
+    proxy: {
+      disabled: true
+    }
+  }
+}).apply(JSON.stringify);
+const secrets = new machine.Secrets("secrets", { talosVersion: "v1.8.3" });
+const clusterEndpoint = args.endpoint ?? interpolate`https://${inputs.masters[0].endpoint}:6443`;
+const masterConfig = getConfiguration("controlplane");
+const workerConfig = getConfiguration("worker");
+const masterApplies = inputs.masters.apply((masters) => {
+  if (!masters.length) {
+    throw new Error("At least one master node is required.");
+  }
+  return masters.map((master) => {
+    return new machine.ConfigurationApply(
+      master.hostname,
+      getConfigurationApplyArgs(master, masterConfig.machineConfiguration)
+    );
+  });
+});
+const bootstrap = new machine.Bootstrap(
+  "bootstrap",
+  {
+    clientConfiguration: secrets.clientConfiguration,
+    node: masterApplies[0].node
+  },
+  { dependsOn: masterApplies }
+);
+const workerApplies = inputs.workers.apply((workers) => {
+  return workers.map((worker) => {
+    return new machine.ConfigurationApply(
+      worker.hostname,
+      getConfigurationApplyArgs(worker, workerConfig.machineConfiguration),
+      { dependsOn: bootstrap }
+    );
+  });
+});
+const kubeconfig = all([
+  cluster.getKubeconfigOutput({
+    clientConfiguration: secrets.clientConfiguration,
+    node: masterApplies[0].node
+  }),
+  cluster.getHealthOutput({
+    clientConfiguration: secrets.clientConfiguration,
+    endpoints: masterApplies.apply((masterApplies2) => masterApplies2.map((x) => x.node)),
+    controlPlaneNodes: masterApplies.apply((masterApplies2) => masterApplies2.map((x) => x.node)),
+    workerNodes: workerApplies.apply((workerApplies2) => workerApplies2.map((x) => x.node))
+  })
+]).apply(([kubeconfig2]) => kubeconfig2.kubeconfigRaw);
+const clientConfiguration = output({
+  context: clusterName,
+  contexts: {
+    [clusterName]: {
+      endpoints: masterApplies.apply((masterApplies2) => masterApplies2.map((x) => x.node)),
+      ca: secrets.clientConfiguration.caCertificate,
+      crt: secrets.clientConfiguration.clientCertificate,
+      key: secrets.clientConfiguration.clientKey
+    }
+  }
+}).apply(JSON.stringify);
+const machineSecrets = secrets.machineSecrets.apply(JSON.stringify);
+function getConfiguration(machineType) {
+  const configPatches = [globalConfigPatch];
+  if (args.sharedConfigPatch && Object.keys(args.sharedConfigPatch).length > 0) {
+    configPatches.push(JSON.stringify(args.sharedConfigPatch));
+  }
+  if (machineType === "controlplane" && args.masterConfigPatch && Object.keys(args.masterConfigPatch).length > 0) {
+    configPatches.push(JSON.stringify(args.masterConfigPatch));
+  }
+  if (machineType === "worker" && args.workerConfigPatch && Object.keys(args.workerConfigPatch).length > 0) {
+    configPatches.push(JSON.stringify(args.workerConfigPatch));
+  }
+  return machine.getConfigurationOutput({
+    clusterEndpoint,
+    machineSecrets: secrets.machineSecrets,
+    clusterName,
+    machineType,
+    talosVersion: "v1.8.3",
+    configPatches
+  });
+}
+function getConfigurationApplyArgs(node, machineConfiguration) {
+  return {
+    clientConfiguration: secrets.clientConfiguration,
+    machineConfigurationInput: machineConfiguration,
+    node: node.endpoint,
+    configPatches: [
+      JSON.stringify({
+        machine: { network: { hostname: node.hostname } }
+      })
+    ]
+  };
+}
+var index = outputs({
+  k8sCluster: {
+    kubeconfig
+  },
+  talosCluster: {
+    clientConfiguration,
+    machineSecrets
+  },
+  egress: {
+    someField: "hi"
+  },
+  $terminal: {
+    image: "ghcr.io/exeteres/highstate/terminal-talos",
+    command: ["/bin/bash"],
+    cwd: "/cluster",
+    files: {
+      "/cluster/kubeconfig": kubeconfig,
+      "/cluster/talosconfig": clientConfiguration,
+      "/cluster/secrets": machineSecrets
+    },
+    env: {
+      KUBECONFIG: "/cluster/kubeconfig",
+      TALOSCONFIG: "/cluster/talosconfig"
+    }
+  }
+});
+
+export { index as default };

package/package.json

@@ -1,18 +1,24 @@
 {
   "name": "@highstate/talos",
-  "version": "0.4.1",
+  "version": "0.4.2",
   "type": "module",
   "files": [
+    "assets",
     "dist"
   ],
   "exports": {
-    "./cluster": "./dist/cluster/index.mjs"
+    "./cluster": "./dist/cluster/index.js"
   },
   "publishConfig": {
     "access": "public"
   },
   "scripts": {
-    "build": "pkgroll --clean-dist"
+    "build": "pkgroll --tsconfig=tsconfig.build.json",
+    "generate-cilium": "bash ./scripts/generate-cilium.sh"
+  },
+  "dependencies": {
+    "@highstate/pulumi": "^0.4.2",
+    "@pulumiverse/talos": "^0.4.1"
   },
   "peerDependencies": {
     "@highstate/library": "workspace:^"
@@ -20,5 +26,5 @@
   "devDependencies": {
     "pkgroll": "^2.5.1"
   },
-  "gitHead": "0ebd5c9d6f0176a38e8786d239a0b0828fa635f0"
+  "gitHead": "e88c7c588267cf028c054f694d402902dc057919"
 }

package/dist/cluster/index.mjs

@@ -1,3 +0,0 @@
-const hi = 123;
-
-export { hi };