Talos Linux Support

Requirements

You must meet the following requirements before installing Longhorn on a Talos Linux cluster.

System Extensions

Some Longhorn-dependent binary executables are not present in the default Talos root filesystem. To have access to these binaries, Talos offers system extension mechanism to extend the installation.

  • siderolabs/iscsi-tools: this extension enables iscsid daemon and iscsiadm to be available to all nodes for the Kubernetes persistent volumes operations.
  • siderolabs/util-linux-tools: this extension enables linux tool to be available to all nodes. For example, the fstrim binary is used for Longhorn volume trimming.

The most straightforward method is patching the extensions onto existing Talos Linux nodes.

  1. customization:
  2.   systemExtensions:
  3.     officialExtensions:
  4.       - siderolabs/iscsi-tools
  5.       - siderolabs/util-linux-tools

For detailed instructions, see the Talos documentation on System Extensions and Boot Assets.

Pod Security

Longhorn requires pod security enforce: "privileged".

By default, Talos Linux applies a baseline pod security profile across namespaces, except for the kube-system namespace. This default setting restricts Longhorn’s ability to manage and access system resources. For more information, see Root and Privileged Permission.

For detailed instructions, see Pod Security Policies Disabled & Pod Security Admission Introduction and Talos’ documentation on Pod Security.

Data Path Mounts

You need provide additional data path mounts to be accessible to the Kubernetes Kubelet container.

These mount is necessary to provide access to the host directories and attaching volumes required by the Longhorn components.

  1. machine:
  2.   kubelet:
  3.     extraMounts:
  4.       - destination: /var/lib/longhorn
  5.         type: bind
  6.         source: /var/lib/longhorn
  7.         options:
  8.           - bind
  9.           - rshared
  10.           - rw

For detailed instructions, see the Talos documentation on Editing Machine Configuration.

Limitations

  • Exclusive to v1 data volume: currently, within a Talos Linux cluster, Longhorn only supports v1 data volume. The v2 data volume isn’t currently supported in this environment.

References

© 2019-2024 Longhorn Authors | Documentation Distributed under CC-BY-4.0