Omni 0.42.0 (2024-09-10)
Welcome to the v0.42.0 release of Omni!
Please try out the release binaries and report any issues at
https://github.com/siderolabs/omni/issues.
Allow multiple IP's in siderolink-wireguard-advertised-addr flag
The siderolink-wireguard-advertised-addr flag now accepts multiple IP addresses separated by commas. This is useful
when you have multiple IPs (IPv4 and IPv6) on the host machine and want to allow Talos nodes to connect to the Omni
using any of them.
Audit log
It is now possible to get the audit log from the Omni. By default it's disabled. To enable, pass
--audit-log-dir <dir> to the Omni. The audit log will be written to the specified directory, separated by day.
Retention is set to 30 days (including the current day). The audit log is written in JSON format, where each entry is
a JSON object.
There are two ways to get audit log, and for both you need Admin role:
- By using the UI: Simply click "Download audit log" in the main menu.
- Using
omnictl audit-logcommand. This command will stream the audit log from the Omni to the local machine stdout.
Cluster Sort
Cluster list on Clusters page can now be sorted by name or creation date.
Before it was always sorted by creation date (newest first).
TLS Cert Reload
Omni service can now reload the TLS certs without restart.
Contributors
- Artem Chernyshev
- Dmitriy Matrenichev
- Andrey Smirnov
- Utku Ozdemir
- Noel Georgi
- Justin Garrison
Changes
31 commits
06a1553release(v0.42.0): prepare release4ed9049fix: hide download audit log button if audit logs feature is disabledb6b252efix: use YAML representation inomnictl get44e1c5drelease(v0.42.0-beta.0): prepare releasec076c3cfix: filter readonly, CD and loop devices for 1.80360422feat: support passing extra data through the siderolink join token381021efix: calculate requested and connected machines in theClusterStatus7abb0f5chore: bump deps464f699chore: renameCloudProvidertoInfraProviderbfe036echore: allow to specifystartandendtime foraudit-loge2f5795chore: allow multiple IP's forsiderolink-wireguard-advertised-addrflag3c1defefix: fix spelling for hover text76ba670chore: allow users with admin role to download audit log from UIe8d578afix: add siderolink connection params to the infra provider interface4a82cd0chore: rewrite renamed extension names on Talos version updates56c0394fix: always remove finalizers from theClusterMachineStatusce45042feat: implementMachineRequestSetsand support links cleanup flow85aaf1cfeat: support sorting cluster by name, creation time95c8210feat: implement base infra provider librarya32a6fafeat: reload TLS certs without restart00ae084fix: delete upgrade meta key from nodes after upgrades3f5c0f8chore: enable 'github.com/planetscale/vtprotobuf' encoding34a8c36chore: rekres to get BUSL license change date updated on releasesbf188e4chore: implement audit log reader5d48547chore: use range-over-func iterators for resource iterationdc349c1chore: do a full generate with latest deps67f2e8dchore: print error on closing secondary storage backing store89e8a62fix: pass the logger to machine logs circular bufferd2387d9fix: use a separate phase for the extensions installationcbfe7c9chore: add periodic cleanup of old log filesaea900ffix: display machines in tearing down state
Changes since v0.42.0-beta.0
3 commits
06a1553release(v0.42.0): prepare release4ed9049fix: hide download audit log button if audit logs feature is disabledb6b252efix: use YAML representation inomnictl get
Changes from siderolabs/discovery-service
Changes from siderolabs/go-api-signature
2 commits
8807c5efix: account for time truncation to a second resolution1b35ea8chore: bump deps and fix data race
Changes from siderolabs/go-debug
Changes from siderolabs/go-talos-support
3 commits
58f4f0fchore: bump Go dependenciesf9d46fdfix: adddns-resolve-cacheto the list of logs gathered69891cfchore: remove containerd dependency
Changes from siderolabs/image-factory
9 commits
fe9134arelease(v0.5.0): prepare release7f09750feat: update to Talos 1.8b985abcfix: cache generated system extension image correctly9687413fix: set SOURCE_DATA_EPOCHfef0833chore: add in new helios64 overlay03bd46ffeat: support inclusion on well-known UEFI SecureBoot certs608a6f0chore: alias nvidia extensions to lts versions8b4e0d9chore: make metatadata pkg public7a4de58chore: build multi-arch image
Dependency Changes
- github.com/auth0/go-jwt-middleware/v2 v2.2.1 -> v2.2.2
- github.com/aws/aws-sdk-go-v2 v1.30.3 -> v1.30.4
- github.com/aws/aws-sdk-go-v2/config v1.27.27 -> v1.27.31
- github.com/aws/aws-sdk-go-v2/credentials v1.17.27 -> v1.17.30
- github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.17.10 -> v1.17.16
- github.com/aws/aws-sdk-go-v2/service/s3 v1.58.3 -> v1.61.0
- github.com/aws/smithy-go v1.20.3 -> v1.20.4
- github.com/containers/image/v5 v5.32.1 -> v5.32.2
- github.com/cosi-project/runtime v0.5.5 -> v0.6.1
- github.com/cosi-project/state-etcd v0.3.0 -> v0.3.1
- github.com/fsnotify/fsnotify v1.7.0 new
- github.com/grpc-ecosystem/grpc-gateway/v2 v2.21.0 -> v2.22.0
- github.com/prometheus/client_golang v1.19.1 -> v1.20.2
- github.com/prometheus/common v0.55.0 -> v0.57.0
- github.com/siderolabs/discovery-service 74bca2da5cc8 -> v1.0.3
- github.com/siderolabs/go-api-signature v0.3.4 -> v0.3.6
- github.com/siderolabs/go-debug v0.3.0 -> v0.4.0
- github.com/siderolabs/go-talos-support v0.1.0 -> v0.1.1
- github.com/siderolabs/image-factory v0.4.2 -> v0.5.0
- github.com/siderolabs/talos/pkg/machinery v1.8.0-alpha.1 -> 6f7c3a8e5c63
- github.com/zitadel/oidc/v3 v3.27.0 -> v3.28.2
- go.etcd.io/bbolt v1.3.10 -> v1.3.11
- google.golang.org/grpc v1.65.0 -> v1.66.0
- sigs.k8s.io/controller-runtime v0.18.5 -> v0.19.0
Previous release can be found at v0.41.0