Welcome to the community-bundles repository! This repository builds and pushes Kairos community bundles that can be consumed by Kairos core or derivative images (such as provider-kairos ) to extend Kairos configurations and settings, and to add cloud-config keywords.
Please note that these community bundles are not officially supported and are provided on a best-effort basis by the community.
To use a community bundle, you can load it with the bundles block in the Kairos configuration file, like this:
bundles:
- targets:
- run://quay.io/kairos/community-bundles:<bundle-name>Here is an example of how you might use a community bundle in a Kairos core image:
#cloud-config
install:
device: "auto"
auto: true
reboot: true
image: "docker:quay.io/kairos/kairos-opensuse:v1.4.0-k3sv1.26.0-k3s1"
users:
- name: "kairos"
passwd: "kairos"
ssh_authorized_keys:
- ...
bundles:
- targets:
- run://quay.io/kairos/community-bundles:kubevirt
k3s:
enabled: trueThe calico bundle deploys Project Calico.
To configure the bundle, use the calico block:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:calico_latest
# Specify calico settings
calico:
values:
installation:
cni:
type: Calico
calicoNetwork:
bgp: Disabled
ipPools:
- cidr: 10.244.0.0/16
encapsulation: VXLAN
version: 3.25.0Note that specifying values and version are optional. Specifying values allows you to
customize the Helm Chart.
The cert-manager bundle deploys cert-manager.
The bundle does add a certManager block, that allow to change the version (currently only available v1.11.0):
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:cert-manager_latest
# Specify cert-manager settings
certManager:
version: v1.11.0This installs FluxCD and supports
automatically bootstrapping the cluster. Only one node will do the bootstrap.
It will time out after trying for 30 minutes and it requires systemd.
#cloud-config
k3s:
enabled: true
bundles:
- targets:
- run://quay.io/kairos/community-bundles:flux_latest
# Specify command-line arguments as keys under a key of `bitbucket_server`,
# `git`, `github` or `gitlab` for the provider to boostrap from. An example for
# `github` is shown below.
flux:
env:
# Override default $KUBECONFIG of /etc/rancher/k3s/k3s.yaml if needed
# KUBECONFIG: /home/csagan/.kube/config
GITHUB_TOKEN: abcde1234
github:
owner: csagan
repository: fleet-infra
path: clusters/cosmos
components-extra: image-reflector-controller,image-automation-controllerThe Kairos bundle deploys the Kairos helm-charts. It installs the kairos-crds chart, and allows to enable entangle-proxy, osbuilder, and entangle.
By default the bundle will install only the CRDs, components needs to be explicitly enabled:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:kairos_latest
# Specify kairos bundle setting
kairos:
osbuilder:
enable: true
version: ... #optional
entangle:
enable: true
version: ... #optional
entangleProxy:
enable: true
version: ... #optionalThe Kyverno bundle deploys Kyverno.
To configure the bundle, use the kyverno block:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:kyverno_latest
# Specify kyverno settings
kyverno:
values: ....
version: ...Note that specifying values and version are optional. Specifying values allows you to
customize the Helm Chart.
The Kubevirt bundle deploys Kubevirt and optionally kubevirt-manager
The bundle does add a kubevirt block, that allow to enable kubevirt-manager:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:kubevirt_latest
# Specify kubevirt settings
kubevirt:
manager: trueThe longhorn bundle deploys Longhorn.
To configure the bundle, use the longhorn block:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:longhorn_latest
# Specify longhorn settings
longhorn:
values:
defaultSettings:
backupstorePollInterval: 600
version: 1.4.0Note that specifying values and version are optional. Specifying values allows you to
customize the Helm Chart.
The MetalLB bundle deploys MetalLB in the cluster, available after boostrap.
The bundle does add a metallb block, that allow to set up the MetalLB version and the address pool in the Kairos configuration file:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:metallb_latest
# Specify metallb settings
metallb:
version: 0.13.7
address_pool: 192.168.1.10-192.168.1.20Note, you might want to disable the default LoadBalancer of k3s, a full example can be:
#cloud-config
hostname: kairoslab-{{ trunc 4 .MachineID }}
users:
- name: kairos
ssh_authorized_keys:
# Add your github user here!
- github:mudler
k3s:
enabled: true
args:
- --disable=servicelb
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:metallb_latest
# Specify metallb settings
metallb:
version: 0.13.7
address_pool: 192.168.1.10-192.168.1.20The Multus bundle deploys Multus CNI, along with specified CNI plugins.
The only created resources are the ClusterRole and the associated ClusterRoleBinding. Instead of creating a service account, it sets up a normal user using an X509 client certificate. This client certificate has a validity of 3650 days by default which can be overwritten by the configuration.
To configure the bundle, use the multus block:
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:multus_latest
# Specify multus settings. Here are the defaults:
multus:
# List of additional CNI plugins to install. May also be a
# whitelist-delimited list.
# See https://www.cni.dev/plugins/current/ for available plugins.
cni_plugins: []
# Full path to the directory the plugins will be installed.
cni_bin_dir: /opt/cni/bin
# Full path to the directory where multus will be installed.
multus_bin_dir: /var/lib/rancher/k3s/data/current/bin
# Full path to the directory where the configuration files will be written.
cni_conf_dir: /var/lib/rancher/k3s/agent/etc/cni/net.d
# Full path to the directory containing certificate authority (CA) files.
ca_path: /var/lib/rancher/k3s/server/tls
# Duration (in days) during which the generated certificate will be valid
# for.
crt_validity: 3650
# URL of the Kubernetes API
cluster_server: https://127.0.0.1:6443
# Whether or not to isolate the NetworkAttachmentDefinition resources so that
# the pods referring to them must be in the same namespace.
namespace_isolation: false
# When namespace isolation is enabled, list of namespaces that are to be
# considered “global” and allow their NetworkAttachmentDefinitions to be
# referred to by pods in other namespaces. May also be a coma-delimited list.
global_namespaces: []
# Full path to the CNI configuration wrapped by Multus. If left unset, scan
# the multus.cni_conf_dir directory, sort the filenames alphabetically and
# use the first file result.
primary_config: ~The EdgeVPN bundle deploys EdgeVPN to create a mesh VPN network.
The bundle supports both systemd and openrc init systems, making it compatible with Alpine-based distributions.
To configure the bundle, use the edgevpn block:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:edgevpn_latest
# Specify edgevpn settings
edgevpn:
token: "your-edgevpn-token-here"The bundle will automatically detect the init system (systemd or openrc) and configure the service accordingly.
The Nginx bundle deploys Ingress-Nginx-Controller in the cluster, available after boostrap.
The bundle does add a nginx block, that allow to set up the nginx version and helm chart values in the Kairos configuration file:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:nginx_latest
# Specify nginx settings
nginx:
version: 4.7.3#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:nginx_latest
# Specify nginx settings
nginx:
values:
commonLabels:
myLabel: abc123Note, you might want to disable the default Ingress-Controller of k3s, a full example can be:
#cloud-config
hostname: kairoslab-{{ trunc 4 .MachineID }}
users:
- name: kairos
ssh_authorized_keys:
# Add your github user here!
- github:mudler
k3s:
enabled: true
args:
- --disable=traefik
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:nginx_latest
# Specify nginx settings
nginx:
version: 4.7.3WARNING: This will not work with Kairos distributions that don't use
systemd(i.e. Alpine).
The SpinKube bundle deploys SpinKube to a running k3s cluster.
The bundle has a spinkube block that allows you to install cert-manager, which is required by SpinKube:
bundles:
- targets:
- run://quay.io/kairos/community-bundles:spinkube_latest
spinkube:
installCertManager: trueIf you don't want to use the bundle's cert-manager installation, be sure to check SpinKube's documentation for which version of cert-manager to use.
The System upgrade controller bundle deploys System upgrade controller.
The bundle does add a suc block, that allow to change the version:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:system-upgrade-controller_latest
# Specify system-upgrade-controller settings
suc:
version: v0.10.0The Kairos Operator bundle deploys the Kairos Operator to a k0s or k3s cluster.
The bundle automatically detects the Kubernetes distribution and deploys to the appropriate manifest directory. You can also configure it manually:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:kairos-operator_latest
k0s:
enabled: true # if k0s is enabled or binary is found in the system, it will install under /var/lib/k0s/manifests/kairos-operator/kairos-operator.yaml
k3s:
enabled: true # if k3s is enabled or binery is found in the system, it will install under /var/lib/rancher/k3s/server/manifests/
# Specify kairos-operator settings
kairosOperator:
manifest_dir: "/custom/path" # (optional) overrides the previous defaultsThe ArgoCD bundle deploys ArgoCD.
To configure the bundle, use the argocd block:
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:argocd_latest
# Specify argocd settings
argocd:
values:
redis-ha:
enabled: true
controller:
replicas: 1
server:
autoscaling:
enabled: true
minReplicas: 2
version: 7.5.2The K9s bundle installs K9s, a terminal-based UI for managing Kubernetes clusters.
This bundle installs the k9s binary to /usr/local/bin/k9s, making it available system-wide. No additional configuration is required.
#cloud-config
# Specify the bundle to use
bundles:
- targets:
- run://quay.io/kairos/community-bundles:k9s_latestAfter installation, you can run k9s from the command line to manage your Kubernetes cluster.
If you want to build and test a bundle, you can use earthly by running the following commands:
# build
./earthly.sh +build --BUNDLE=<bundle-name>
# test
./earthly.sh +test --BUNDLE=<bundle-name>
We also provide a version of the earthly.sh script for Windows (earthly.ps1).