C1: mirror tailscale container locally for ringtail proxyclass #347

Merged

eblume merged 3 commits from mirror-tailscale-container into main

2026-05-06 06:50:42 -07:00

Author	SHA1	Message	Date
Erich Blume	4381e1d86f	C1: switch to strategic merge patch for proxyclass image rewrite Kustomize's images: directive only rewrites image fields on built-in k8s kinds (Pod, Deployment, etc.), not on custom resources like ProxyClass. The first attempt left the rendered ProxyClass pointing at upstream docker.io. Replaces it with a strategic merge patch over spec.statefulSet.pod.tailscale{Container,InitContainer}.image. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-06 06:46:37 -07:00
Erich Blume	3bc9990355	C1: rewrite ringtail proxyclass image to local tailscale container Adds a kustomize images: rewrite scoped to tailscale-operator-ringtail, pointing docker.io/tailscale/tailscale at registry.ops.eblu.me's v1.94.2-67af7a8-nix build. Indri's tailscale-operator overlay is unchanged — it continues pulling upstream until the k3s migration retires the indri minikube cluster. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-06 06:42:58 -07:00
Erich Blume	67af7a8e60	C1: add containers/tailscale (nix) for ringtail proxyclass Local mirror of docker.io/tailscale/tailscale, pinned at v1.94.2 to match service-versions.yaml and current ringtail proxyclass. Nix-only build via ringtail's nix-container-builder runner; mirrors upstream Dockerfile contents (tailscale, tailscaled, containerboot binaries plus iptables, iproute2, ca-certificates). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-06 06:29:16 -07:00

Author

SHA1

Message

Date

Erich Blume

4381e1d86f

C1: switch to strategic merge patch for proxyclass image rewrite

Kustomize's images: directive only rewrites image fields on built-in k8s
kinds (Pod, Deployment, etc.), not on custom resources like ProxyClass.
The first attempt left the rendered ProxyClass pointing at upstream
docker.io. Replaces it with a strategic merge patch over
spec.statefulSet.pod.tailscale{Container,InitContainer}.image.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-06 06:46:37 -07:00

Erich Blume

3bc9990355

C1: rewrite ringtail proxyclass image to local tailscale container

Adds a kustomize images: rewrite scoped to tailscale-operator-ringtail,
pointing docker.io/tailscale/tailscale at registry.ops.eblu.me's
v1.94.2-67af7a8-nix build. Indri's tailscale-operator overlay is
unchanged — it continues pulling upstream until the k3s migration
retires the indri minikube cluster.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-06 06:42:58 -07:00

Erich Blume

67af7a8e60

C1: add containers/tailscale (nix) for ringtail proxyclass

Local mirror of docker.io/tailscale/tailscale, pinned at v1.94.2 to match
service-versions.yaml and current ringtail proxyclass. Nix-only build via
ringtail's nix-container-builder runner; mirrors upstream Dockerfile
contents (tailscale, tailscaled, containerboot binaries plus iptables,
iproute2, ca-certificates).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-06 06:29:16 -07:00