Important Notes
The Oxide CLI, Go SDK, and Terraform Provider have been updated for API enhancements such as the BGP API changes described under New Features. Please be sure to upgrade.
System Requirements
Please refer to v1.0.0 release notes.
Installation
Oxide Computer Model 0 must be installed and configured under the guidance of Oxide technicians. The requirement may change in future releases.
Upgrade Compatibility
Upgrade from version 9 is supported. We recommend shutting down all running instances on the rack before the software update commences.
All existing setup and data (e.g., projects, users, instances) will remain intact after the software update.
New Features
Rack networking
A number of new switch configurations and API endpoints for querying BGP settings are available in v10:
BGP
New/enhanced BGP API endpoints
TCP-MD5 authentication for BGP sessions (maghemite#326)
Switch port settings
Switch port configuration for specifying route priorities (omicron#5836)
Switch port configuration to support LLDP (omicron-PR#6185)
Live instance state in web console
When an instance is starting or stopping, the console now automatically refreshes as the instance changes state (console#2360, console#2391). Users no longer have to manually refresh to know when an instance is ready to interact with. When trying to connect to the serial console of a starting instance, the console will wait and automatically connect when the instance is ready (console#2374).
VPC routers and routes in web console
v9 added endpoints for managing VPC routers and routes to the API. In v10, users can manage them in the web console (console#2359, console#2371). Subnets can be linked to custom routers (console#2393).
Rack Reconfigurator
The reconfigurator module provides the foundation for Oxide control plane service configuration changes during hardware and software maintenance. It is accessible by Oxide technicians only at this time. It will be made available to rack operators in the form of component update/replacement capabilities in a future release.
Enable boundary NTP zone replacement
Enable disk downstairs auto-replacement when a sled or disk is marked expunged
Migrate in-progress jobs from expunged nexus zone to other available peers
Bug fixes and minor enhancements
Manage quotas on silo page (console#2369)
Lock technician port access by default (hubris#1835)
Enable PERST pull-up resistor in Sidecar mainboard controller (hubris#1861)
Fix
bgp config createAPI error responses (omicron#6244, omicron#6245, omicron#6246)BGP peer state lookup should also include peer address (omicron#6316)
Cap firewall rules per VPC at 1024 and cap filters per rule (omicron#5662)
Link to new SSH docs from web console (console#2339, console#2370)
VPC firewall rules can be cloned (console#2250)
Improved information density on the instance table (console#2389)
Remove migrate instance endpoint from API in preparation for future work (omicron#6173)
Bump IPv4 LPM table size for more route entries (dendrite#1012)
Firmware update
AMD Microcode: Version update from 20240116 to 20240710
Known Behavior and Limitations
End-user features
| Feature Area | Known Issue/Limitation | Issue Number |
|---|---|---|
Image/snapshot management | Disks in | |
Image/snapshot management | Image upload sometimes stalls with HTTP/2 on Firefox. | |
Image/snapshot management | The ability to modify image metadata is not available at this time. | |
Instance orchestration | Possible 500 errors when creating a large number of instances concurrently. Users can retry the requests to work around the failures. | |
Instance orchestration | Instances are stuck in running state when the backend propolis servers are gone or disassociated from the control plane. | |
Instance orchestration | Instance hostname validation has been strengthened. Instances with a now-invalid hostname will fail to start, though they can still be listed and viewed. If the disks attached to them are valuable, they may be detached from the invalid instances, and re-attached to a new instance. The invalid instance may be deleted at that time. | |
Instance orchestration | Instance disk boot order problem causes instance to drop to UEFI shell. | |
VPC routing | Subnet update clears custom router ID when the field is left out of request body. | |
VPC routing | Network interface update clears transit ips when the field is left out of request body. | - |
Telemetry | VM instance memory utilization and network throughput metrics are unavailable at this time. | - |
Operator features
| Feature Area | Known Issue/Limitation | Issue Number |
|---|---|---|
Access control | Device tokens do not expire. | |
Control plane | Sled and physical storage availability status are not available in the inventory UI and API yet. | |
Control plane | Operator-driven software update is currently unavailable. All updates need to be performed by Oxide technicians. | - |
Control plane | Operator-driven instance migration across sleds is currently unavailable. Instance migrations need to be performed by Oxide technicians. | - |
Rack Networking | Administratively deleting a bgp peer (e.g., To avoid this issue, ensure the peer transitions out of the | |
Telemetry | Hardware metrics such as temperatures, fan speeds, and power consumption are not exposed to the control plane at this time. | - |
User management | User offboarding from the rack is not supported at this time. Apart from updating the identity provider to remove obsolete users from the relevant groups, operators will need to remove any IAM roles granted directly to those users in silos and projects. |