Jump to contentJump to page navigation: previous page [access key p]/next page [access key n]
documentation.suse.com / SUSE Edge Documentation / Appendix / Release Notes

33 Release Notes

33.1 Abstract

SUSE Edge 3.0 is a tightly integrated and comprehensively validated end-to-end solution for addressing the unique challenges of the deployment of infrastructure and cloud-native applications at the edge. Its driving focus is to provide an opinionated, yet highly flexible, highly scalable, and secure platform that spans initial deployment image building, node provisioning and onboarding, application deployment, observability, and lifecycle management.

The solution is designed with the notion that there is no "one-size-fits-all" edge platform due to our customers’ widely varying requirements and expectations. Edge deployments push us to solve, and continually evolve, some of the most challenging problems, including massive scalability, restricted network availability, physical space constraints, new security threats and attack vectors, variations in hardware architecture and system resources, the requirement to deploy and interface with legacy infrastructure and applications, and customer solutions that have extended lifespans.

SUSE Edge is built on best-of-breed open source software from the ground up, consistent with both our 30-year history in delivering secure, stable, and certified SUSE Linux platforms and our experience in providing highly scalable and feature-rich Kubernetes management with our Rancher portfolio. SUSE Edge builds on-top of these capabilities to deliver functionality that can address a wide number of market segments, including retail, medical, transportation, logistics, telecommunications, smart manufacturing, and Industrial IoT.

Note
Note

SUSE Adaptive Telco Infrastructure Platform (ATIP) is a derivative (or downstream product) of SUSE Edge, with additional optimizations and components that enable the platform to address the requirements found in telecommunications use-cases. Unless explicitly stated, all of the release notes are applicable for both SUSE Edge 3.0, and SUSE ATIP 3.0.

33.2 About

These Release Notes are, unless explicitly specified and explained, identical across all architectures, and the most recent version, along with the release notes of all other SUSE products are always available online at https://www.suse.com/releasenotes.

Entries are only listed once, but they can be referenced in several places if they are important and belong to more than one section. Release notes usually only list changes that happened between two subsequent releases. Certain important entries from the release notes of previous product versions may be repeated. To make these entries easier to identify, they contain a note to that effect.

However, repeated entries are provided as a courtesy only. Therefore, if you are skipping one or releases, check the release notes of the skipped releases also. If you are only reading the release notes of the current release, you could miss important changes that may affect system behavior. SUSE Edge versions are defined as x.y.z, where 'x' denotes the major version, 'y' denotes the minor, and 'z' denotes the patch version, also known as the "z-stream". SUSE Edge product lifecycles are defined based around a given minor release, e.g. "3.0", but ship with subsequent patch updates through its lifecycle, e.g. "3.0.1".

Note
Note

SUSE Edge z-stream releases are tightly integrated and thoroughly tested as a versioned stack. Upgrade of any individual components to a different versions to those listed above is likely to result in system downtime. While it’s possible to run Edge clusters in untested configurations, it is not recommended, and it may take longer to provide resolution through the support channels.

33.3 Release 3.0.2

Availability Date: 16th August 2024

Summary: SUSE Edge 3.0.2 is the second z-stream release in the SUSE Edge 3.0 portfolio.

33.3.1 New Features

33.3.2 Bug & Security Fixes

  • The Metal3 chart fixes an issue where host reprovisioning may use stale static network configuration: SUSE Edge issue #133

  • The RKE2 Cluster API provider fixes an issue when specifying TLS configuration for a local registry: RKE2 Provider issue #357

  • The RKE2 Cluster API provider fixes an issue causing rke2-install to error after system reboot: RKE2 Provider issue #346

  • KubeVirt is updated to include several security fixes: Kubevirt Update

33.3.3 Components Versions

The following table describes the individual components that make up the 3.0.2 release, including the version, the Helm chart version (if applicable), and from where the released artifact can be pulled in the binary format. Please follow the associated documentation for usage and deployment examples. Note that items in bold are highlighted changes from the previous z-stream release.

Name

Version

Helm Chart Version

Artifact Location (URL/Image)

SLE Micro

5.5 (latest)

N/A

SLE Micro Download Page
SLE-Micro.x86_64-5.5.0-Default-SelfInstall-GM2.install.iso (sha256 4f672a4a0f8ec421e7c25797def05598037c56b7f306283566a9f921bdce904a)
SLE-Micro.x86_64-5.5.0-Default-RT-SelfInstall-GM2.install.iso (sha256 527a5a7cdbf11e3e6238e386533755257676ad8b4c80be3b159d0904cb637678)
SLE-Micro.x86_64-5.5.0-Default-GM.raw.xz (sha256 13243a737ca219bad6a7aa41fa747c06e8b825fef10a756cf4d575f4493ed68b)
SLE-Micro.x86_64-5.5.0-Default-RT-GM.raw.xz (sha256 6c2af94e7ac785c8f6a276032c8e6a4b493c294e6cd72809c75089522f01bc93)

SUSE Manager

4.3.11

N/A

SUSE Manager Download Page

K3s

1.28.10

N/A

Upstream K3s Release

RKE2

1.28.10

N/A

Upstream RKE2 Release

Rancher Prime

2.8.5

2.8.5

Rancher 2.8.5 Images
Rancher Prime Helm Repo

Longhorn

1.6.1

103.3.0

Longhorn 1.6.1 Images
Longhorn Helm Repo

NM Configurator

0.3.0

N/A

NMConfigurator Upstream Release

NeuVector

5.3.2

103.0.3

registry.suse.com/rancher/mirrored-neuvector-controller:5.3.2
registry.suse.com/rancher/mirrored-neuvector-enforcer:5.3.2
registry.suse.com/rancher/mirrored-neuvector-manager:5.3.2
registry.suse.com/rancher/mirrored-neuvector-prometheus-exporter:5.3.2
registry.suse.com/rancher mirrored-neuvector-registry-adapter:0.1.1-s1
registry.suse.com/rancher/mirrored-neuvector-scanner:latest
registry.suse.com/rancher/mirrored-neuvector-updater:latest

Cluster API (CAPI)

1.6.2

N/A

registry.suse.com/edge/cluster-api-controller:1.6.2
registry.suse.com/edge/cluster-api-provider-metal3:1.6.0
registry.suse.com/edge/cluster-api-provider-rke2-bootstrap:0.4.1
registry.suse.com/edge/cluster-api-provider-rke2-controlplane:0.4.1

Metal3

1.16.0

0.7.3

registry.suse.com/edge/metal3-chart:0.7.3
registry.suse.com/edge/baremetal-operator:0.5.1
registry.suse.com/edge/ip-address-manager:1.6.0
registry.suse.com/edge/ironic:23.0.2.1
registry.suse.com/edge/ironic-ipa-downloader:1.3.4
registry.suse.com/edge/kube-rbac-proxy:v0.14.2 +.1 registry.suse.com/edge/mariadb:10.6.15.1

MetalLB

0.14.3

0.14.3

registry.suse.com/edge/metallb-chart:0.14.3
registry.suse.com/edge/metallb-controller:v0.14.3
registry.suse.com/edge/metallb-speaker:v0.14.3
registry.suse.com/edge/frr:8.4
registry.suse.com/edge/frr-k8s:v0.0.8

Elemental

1.4.4

1.4.4

registry.suse.com/rancher/elemental-operator-chart:1.4.4
registry.suse.com/rancher/elemental-operator-crds-chart:1.4.4
registry.suse.com/rancher/elemental-operator:1.4.4

Edge Image Builder

1.0.2

N/A

registry.suse.com/edge/edge-image-builder:1.0.2

KubeVirt

1.2.2

0.3.0

registry.suse.com/edge/kubevirt-chart:0.3.0
registry.suse.com/suse/sles/15.5/virt-operator:1.2.2
registry.suse.com/suse/sles/15.5/virt-api:1.2.2
registry.suse.com/suse/sles/15.5/virt-controller:1.2.2
registry.suse.com/suse/sles/15.5/virt-exportproxy:1.2.2
registry.suse.com/suse/sles/15.5/virt-exportserver:1.2.2
registry.suse.com/suse/sles/15.5/virt-handler:1.2.2
registry.suse.com/suse/sles/15.5/virt-launcher:1.2.2

KubeVirt Dashboard Extension

1.0.0

1.0.0

registry.suse.com/edge/kubevirt-dashboard-extension-chart:1.0.0

Containerized Data Importer

1.59.0

0.3.0

registry.suse.com/edge/cdi-chart:0.3.0
registry.suse.com/suse/sles/15.5/cdi-operator:1.59.0
registry.suse.com/suse/sles/15.5/cdi-controller:1.59.0
registry.suse.com/suse/sles/15.5/cdi-importer:1.59.0
registry.suse.com/suse/sles/15.5/cdi-cloner:1.59.0
registry.suse.com/suse/sles/15.5/cdi-apiserver:1.59.0
registry.suse.com/suse/sles/15.5/cdi-uploadserver:1.59.0
registry.suse.com/suse/sles/15.5/cdi-uploadproxy:1.59.0

Endpoint Copier Operator

0.2.0

0.2.0

registry.suse.com/edge/endpoint-copier-operator:v0.2.0
registry.suse.com/edge/endpoint-copier-operator-chart:0.2.0

Akri (Tech Preview)

0.12.20

0.12.20

registry.suse.com/edge/akri-chart:0.12.20
registry.suse.com/edge/akri-dashboard-extension-chart:1.0.0
registry.suse.com/edge/akri-agent:v0.12.20
registry.suse.com/edge/akri-controller:v0.12.20
registry.suse.com/edge/akri-debug-echo-discovery-handler:v0.12.20
registry.suse.com/edge/akri-onvif-discovery-handler:v0.12.20
registry.suse.com/edge/akri-opcua-discovery-handler:v0.12.20
registry.suse.com/edge/akri-udev-discovery-handler:v0.12.20
registry.suse.com/edge/akri-webhook-configuration:v0.12.20

SR-IOV Network Operator

1.2.2

1.2.2+up0.1.0

registry.suse.com/edge/sriov-network-operator-chart:1.2.2
registry.suse.com/edge/sriov-crd-chart:1.2.2

33.4 Release 3.0.1

Availability Date: 14th June 2024

Summary: SUSE Edge 3.0.1 is the first z-stream release in the SUSE Edge 3.0 portfolio.

33.4.1 New Features

  • Elemental and EIB now support node reset for unmanaged hosts

  • SR-IOV Network Operator chart is now included

  • The Metal3 chart now supports providing additional trusted CA certificates

  • NM Configurator now supports applying unified configurations without any MAC specification

  • Added version subcommand to EIB; the version will also automatically be included in each image built by EIB

33.4.2 Bug & Security Fixes

33.4.3 Components Versions

The following table describes the individual components that make up the 3.0.1 release, including the version, the Helm chart version (if applicable), and where the released artifact can be pulled from in binary format. Please follow the associated documentation for usage and deployment examples. Note that items in bold are highlighted changes from the previous z-stream release.

Name

Version

Helm Chart Version

Artifact Location (URL/Image)

SLE Micro

5.5 (latest)

N/A

SLE Micro Download Page
SLE-Micro.x86_64-5.5.0-Default-SelfInstall-GM2.install.iso (sha256 4f672a4a0f8ec421e7c25797def05598037c56b7f306283566a9f921bdce904a)
SLE-Micro.x86_64-5.5.0-Default-RT-SelfInstall-GM2.install.iso (sha256 527a5a7cdbf11e3e6238e386533755257676ad8b4c80be3b159d0904cb637678)
SLE-Micro.x86_64-5.5.0-Default-GM.raw.xz (sha256 13243a737ca219bad6a7aa41fa747c06e8b825fef10a756cf4d575f4493ed68b)
SLE-Micro.x86_64-5.5.0-Default-RT-GM.raw.xz (sha256 6c2af94e7ac785c8f6a276032c8e6a4b493c294e6cd72809c75089522f01bc93)

SUSE Manager

4.3.11

N/A

SUSE Manager Download Page

K3s

1.28.9

N/A

Upstream K3s Release

RKE2

1.28.9

N/A

Upstream RKE2 Release

Rancher Prime

2.8.4

2.8.4

Rancher 2.8.4 Images
Rancher Prime Helm Repo

Longhorn

1.6.1

103.3.0

Longhorn 1.6.1 Images
Longhorn Helm Repo

NM Configurator

0.3.0

N/A

NMConfigurator Upstream Release

NeuVector

5.3.2

103.0.3

registry.suse.com/rancher/mirrored-neuvector-controller:5.3.2
registry.suse.com/rancher/mirrored-neuvector-enforcer:5.3.2
registry.suse.com/rancher/mirrored-neuvector-manager:5.3.2
registry.suse.com/rancher/mirrored-neuvector-prometheus-exporter:5.3.2
registry.suse.com/rancher mirrored-neuvector-registry-adapter:0.1.1-s1
registry.suse.com/rancher/mirrored-neuvector-scanner:latest
registry.suse.com/rancher/mirrored-neuvector-updater:latest

Cluster API (CAPI)

1.6.2

N/A

registry.suse.com/edge/cluster-api-controller:1.6.2
registry.suse.com/edge/cluster-api-provider-metal3:1.6.0
registry.suse.com/edge/cluster-api-provider-rke2-bootstrap:0.2.6
registry.suse.com/edge/cluster-api-provider-rke2-controlplane:0.2.6

Metal3

1.16.0

0.7.1

registry.suse.com/edge/metal3-chart:0.7.1
registry.suse.com/edge/baremetal-operator:0.5.1
registry.suse.com/edge/ip-address-manager:1.6.0
registry.suse.com/edge/ironic:23.0.2.1
registry.suse.com/edge/ironic-ipa-downloader:1.3.2
registry.suse.com/edge/kube-rbac-proxy:v0.14.2 +.1 registry.suse.com/edge/mariadb:10.6.15.1

MetalLB

0.14.3

0.14.3

registry.suse.com/edge/metallb-chart:0.14.3
registry.suse.com/edge/metallb-controller:v0.14.3
registry.suse.com/edge/metallb-speaker:v0.14.3
registry.suse.com/edge/frr:8.4
registry.suse.com/edge/frr-k8s:v0.0.8

Elemental

1.4.4

1.4.4

registry.suse.com/rancher/elemental-operator-chart:1.4.4
registry.suse.com/rancher/elemental-operator-crds-chart:1.4.4
registry.suse.com/rancher/elemental-operator:1.4.4

Edge Image Builder

1.0.2

N/A

registry.suse.com/edge/edge-image-builder:1.0.2

KubeVirt

1.1.1

0.2.4

registry.suse.com/edge/kubevirt-chart:0.2.4
registry.suse.com/suse/sles/15.5/virt-operator:1.1.1
registry.suse.com/suse/sles/15.5/virt-api:1.1.1
registry.suse.com/suse/sles/15.5/virt-controller:1.1.1
registry.suse.com/suse/sles/15.5/virt-exportproxy:1.1.1
registry.suse.com/suse/sles/15.5/virt-exportserver:1.1.1
registry.suse.com/suse/sles/15.5/virt-handler:1.1.1
registry.suse.com/suse/sles/15.5/virt-launcher:1.1.1

KubeVirt Dashboard Extension

1.0.0

1.0.0

registry.suse.com/edge/kubevirt-dashboard-extension-chart:1.0.0

Containerized Data Importer

1.58.0

0.2.3

registry.suse.com/edge/cdi-chart:0.2.3
registry.suse.com/suse/sles/15.5/cdi-operator:1.58.0
registry.suse.com/suse/sles/15.5/cdi-controller:1.58.0
registry.suse.com/suse/sles/15.5/cdi-importer:1.58.0
registry.suse.com/suse/sles/15.5/cdi-cloner:1.58.0
registry.suse.com/suse/sles/15.5/cdi-apiserver:1.58.0
registry.suse.com/suse/sles/15.5/cdi-uploadserver:1.58.0
registry.suse.com/suse/sles/15.5/cdi-uploadproxy:1.58.0

Endpoint Copier Operator

0.2.0

0.2.0

registry.suse.com/edge/endpoint-copier-operator:v0.2.0
registry.suse.com/edge/endpoint-copier-operator-chart:0.2.0

Akri (Tech Preview)

0.12.20

0.12.20

registry.suse.com/edge/akri-chart:0.12.20
registry.suse.com/edge/akri-dashboard-extension-chart:1.0.0
registry.suse.com/edge/akri-agent:v0.12.20
registry.suse.com/edge/akri-controller:v0.12.20
registry.suse.com/edge/akri-debug-echo-discovery-handler:v0.12.20
registry.suse.com/edge/akri-onvif-discovery-handler:v0.12.20
registry.suse.com/edge/akri-opcua-discovery-handler:v0.12.20
registry.suse.com/edge/akri-udev-discovery-handler:v0.12.20
registry.suse.com/edge/akri-webhook-configuration:v0.12.20

SR-IOV Network Operator

1.2.2

1.2.2+up0.1.0

registry.suse.com/edge/sriov-network-operator-chart:1.2.2
registry.suse.com/edge/sriov-crd-chart:1.2.2

33.5 Release 3.0.0

Availability Date: 26th April 2024

Summary: SUSE Edge 3.0.0 is the first release in the SUSE Edge 3.0 portfolio.

33.5.1 New Features

  • Not Applicable - this is the first release shipped in 3.0.z.

33.5.2 Bug & Security Fixes

  • Not Applicable - this is the first release shipped in 3.0.z.

33.5.3 Components Versions

The following table describes the individual components that make up the 3.0.0 release, including the version, the Helm chart version (if applicable), and where the released artifact can be pulled from in binary format. Please follow the associated documentation for usage and deployment examples.

Name

Version

Helm Chart Version

Artifact Location (URL/Image)

SLE Micro

5.5 (latest)

N/A

SLE Micro Download Page
SLE-Micro.x86_64-5.5.0-Default-SelfInstall-GM2.install.iso (sha256 4f672a4a0f8ec421e7c25797def05598037c56b7f306283566a9f921bdce904a)
SLE-Micro.x86_64-5.5.0-Default-RT-SelfInstall-GM2.install.iso (sha256 527a5a7cdbf11e3e6238e386533755257676ad8b4c80be3b159d0904cb637678)
SLE-Micro.x86_64-5.5.0-Default-GM.raw.xz (sha256 13243a737ca219bad6a7aa41fa747c06e8b825fef10a756cf4d575f4493ed68b)
SLE-Micro.x86_64-5.5.0-Default-RT-GM.raw.xz (sha256 6c2af94e7ac785c8f6a276032c8e6a4b493c294e6cd72809c75089522f01bc93)

SUSE Manager

4.3.11

N/A

SUSE Manager Download Page

K3s

1.28.8

N/A

Upstream K3s Release

RKE2

1.28.8

N/A

Upstream RKE2 Release

Rancher Prime

2.8.3

2.8.3

Rancher 2.8.3 Images
Rancher Prime Helm Repo

Longhorn

1.6.1

103.3.0

Longhorn 1.6.1 Images
Longhorn Helm Repo

NM Configurator

0.2.3

N/A

NMConfigurator Upstream Release

NeuVector

5.3.2

103.0.3

registry.suse.com/rancher/mirrored-neuvector-controller:5.3.2
registry.suse.com/rancher/mirrored-neuvector-enforcer:5.3.2
registry.suse.com/rancher/mirrored-neuvector-manager:5.3.2
registry.suse.com/rancher/mirrored-neuvector-prometheus-exporter:5.3.2
registry.suse.com/rancher mirrored-neuvector-registry-adapter:0.1.1-s1
registry.suse.com/rancher/mirrored-neuvector-scanner:latest
registry.suse.com/rancher/mirrored-neuvector-updater:latest

Cluster API (CAPI)

1.6.2

N/A

registry.suse.com/edge/cluster-api-controller:1.6.2
registry.suse.com/edge/cluster-api-provider-metal3:1.6.0
registry.suse.com/edge/cluster-api-provider-rke2-bootstrap:0.2.6
registry.suse.com/edge/cluster-api-provider-rke2-controlplane:0.2.6

Metal3

1.16.0

0.6.5

registry.suse.com/edge/metal3-chart:0.6.5
registry.suse.com/edge/baremetal-operator:0.5.1
registry.suse.com/edge/ip-address-manager:1.6.0
registry.suse.com/edge/ironic:23.0.1.2
registry.suse.com/edge/ironic-ipa-downloader:1.3.1
registry.suse.com/edge/kube-rbac-proxy:v0.14.2
registry.suse.com/edge/mariadb:10.6.15.1

MetalLB

0.14.3

0.14.3

registry.suse.com/edge/metallb-chart:0.14.3
registry.suse.com/edge/metallb-controller:v0.14.3
registry.suse.com/edge/metallb-speaker:v0.14.3
registry.suse.com/edge/frr:8.4
registry.suse.com/edge/frr-k8s:v0.0.8

Elemental

1.4.3

1.4.3

registry.suse.com/rancher/elemental-operator-chart:1.4.3
registry.suse.com/rancher/elemental-operator-crds-chart:1.4.3
registry.suse.com/rancher/elemental-operator:1.4.3

Edge Image Builder

1.0.1

N/A

registry.suse.com/edge/edge-image-builder:1.0.1

KubeVirt

1.1.1

0.2.4

registry.suse.com/edge/kubevirt-chart:0.2.4
registry.suse.com/suse/sles/15.5/virt-operator:1.1.1
registry.suse.com/suse/sles/15.5/virt-api:1.1.1
registry.suse.com/suse/sles/15.5/virt-controller:1.1.1
registry.suse.com/suse/sles/15.5/virt-exportproxy:1.1.1
registry.suse.com/suse/sles/15.5/virt-exportserver:1.1.1
registry.suse.com/suse/sles/15.5/virt-handler:1.1.1
registry.suse.com/suse/sles/15.5/virt-launcher:1.1.1

KubeVirt Dashboard Extension

1.0.0

1.0.0

registry.suse.com/edge/kubevirt-dashboard-extension-chart:1.0.0

Containerized Data Importer

1.58.0

0.2.3

registry.suse.com/edge/cdi-chart:0.2.3
registry.suse.com/suse/sles/15.5/cdi-operator:1.58.0
registry.suse.com/suse/sles/15.5/cdi-controller:1.58.0
registry.suse.com/suse/sles/15.5/cdi-importer:1.58.0
registry.suse.com/suse/sles/15.5/cdi-cloner:1.58.0
registry.suse.com/suse/sles/15.5/cdi-apiserver:1.58.0
registry.suse.com/suse/sles/15.5/cdi-uploadserver:1.58.0
registry.suse.com/suse/sles/15.5/cdi-uploadproxy:1.58.0

Endpoint Copier Operator

0.2.0

0.2.0

registry.suse.com/edge/endpoint-copier-operator:v0.2.0
registry.suse.com/edge/endpoint-copier-operator-chart:0.2.0

Akri (Tech Preview)

0.12.20

0.12.20

registry.suse.com/edge/akri-chart:0.12.20
registry.suse.com/edge/akri-dashboard-extension-chart:1.0.0
registry.suse.com/edge/akri-agent:v0.12.20
registry.suse.com/edge/akri-controller:v0.12.20
registry.suse.com/edge/akri-debug-echo-discovery-handler:v0.12.20
registry.suse.com/edge/akri-onvif-discovery-handler:v0.12.20
registry.suse.com/edge/akri-opcua-discovery-handler:v0.12.20
registry.suse.com/edge/akri-udev-discovery-handler:v0.12.20
registry.suse.com/edge/akri-webhook-configuration:v0.12.20

33.6 Components Verification

The components mentioned above may be verified using the Software Bill Of Materials (SBOM) data - for example using cosign as outlined below:

Download the SUSE Edge Container public key from the SUSE Signing Keys source:

> cat key.pem
-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7N0S2d8LFKW4WU43bq7Z
IZT537xlKe17OQEpYjNrdtqnSwA0/jLtK83m7bTzfYRK4wty/so0g3BGo+x6yDFt
SVXTPBqnYvabU/j7UKaybJtX3jc4SjaezeBqdi96h6yEslvg4VTZDpy6TFP5ZHxZ
A0fX6m5kU2/RYhGXItoeUmL5hZ+APYgYG4/455NBaZT2yOywJ6+1zRgpR0cRAekI
OZXl51k0ebsGV6ui/NGECO6MB5e3arAhszf8eHDE02FeNJw5cimXkgDh/1Lg3KpO
dvUNm0EPWvnkNYeMCKR+687QG0bXqSVyCbY6+HG/HLkeBWkv6Hn41oeTSLrjYVGa
T3zxPVQM726sami6pgZ5vULyOleQuKBZrlFhFLbFyXqv1/DokUqEppm2Y3xZQv77
fMNogapp0qYz+nE3wSK4UHPd9z+2bq5WEkQSalYxadyuqOzxqZgSoCNoX5iIuWte
Zf1RmHjiEndg/2UgxKUysVnyCpiWoGbalM4dnWE24102050Gj6M4B5fe73hbaRlf
NBqP+97uznnRlSl8FizhXzdzJiVPcRav1tDdRUyDE2XkNRXmGfD3aCmILhB27SOA
Lppkouw849PWBt9kDMvzelUYLpINYpHRi2+/eyhHNlufeyJ7e7d6N9VcvjR/6qWG
64iSkcF2DTW61CN5TrCe0k0CAwEAAQ==
-----END PUBLIC KEY-----

Verify the container image hash, for example using crane:

> crane digest registry.suse.com/edge/baremetal-operator:0.5.1
sha256:13e8b2c59aeb503f8adaac095495007071559c9d6d8ef5a7cb1ce6fd1430c782

Verify with cosign:

> cosign verify-attestation --type spdxjson --key key.pem registry.suse.com/edge/baremetal-operator@sha256:13e8b2c59aeb503f8adaac095495007071559c9d6d8ef5a7cb1ce6fd1430c782 > /dev/null
#
Verification for registry.suse.com/edge/baremetal-operator@sha256:13e8b2c59aeb503f8adaac095495007071559c9d6d8ef5a7cb1ce6fd1430c782 --
The following checks were performed on each of these signatures:
  - The cosign claims were validated
  - The claims were present in the transparency log
  - The signatures were integrated into the transparency log when the certificate was valid
  - The signatures were verified against the specified public key

Extract SBOM data as described at the upstream documentation:

> cosign verify-attestation --type spdxjson --key key.pem registry.suse.com/edge/baremetal-operator@sha256:13e8b2c59aeb503f8adaac095495007071559c9d6d8ef5a7cb1ce6fd1430c782 | jq '.payload | @base64d | fromjson | .predicate'

33.7 Upgrade Steps

Refer to the Day 2 Documentation for details around how to upgrade to a new z-stream release.

33.8 Known Limitations

Unless otherwise stated these apply to the 3.0.0 release and all subsequent z-stream versions.

  • Akri is released for the first time as a Technology Preview offering, and is not subject to the standard scope of support.

  • Rancher UI Extensions used in SUSE Edge cannot currently be deployed via the Rancher Marketplace and must be deployed manually. Rancher issue #29105

  • If you’re using NVIDIA GPU’s, SELinux cannot be enabled at the containerd layer due to a missing SELinux policy. Bugzilla #1222725

  • If deploying with Metal3 and Cluster API (CAPI), clusters aren’t automatically imported into Rancher post-installation. It will be addressed in future releases.

  • Due to certain limitations, Elemental and Metal3 components cannot be deployed on the same management cluster. It will be addressed in future releases.

33.9 Product Support Lifecycle

SUSE Edge is backed by award-winning support from SUSE, an established technology leader with a proven history of delivering enterprise-quality support services. For more information, see https://www.suse.com/lifecycle and the Support Policy page at https://www.suse.com/support/policy.html. If you have any questions about raising a support case, how SUSE classifies severity levels, or the scope of support, please see the Technical Support Handbook at https://www.suse.com/support/handbook/.

At the time of publication, each minor version of SUSE Edge, e.g. "3.0" is supported for 12-months of production support, with an initial 6-months of "full support", followed by 6-months of "maintenance support". In the "full support" coverage period, SUSE may introduce new features (that do not break existing functionality), introduce bug fixes, and deliver security patches. During the "maintenance support" window, only critical security and bug fixes will be introduced, with other fixes delivered at our discretion.

Unless explicitly stated, all components listed are considered Generally Available (GA), and are covered by SUSE’s standard scope of support. Some components may be listed as "Technology Preview", where SUSE is providing customers with access to early pre-GA features and functionality for evaluation, but are not subject to the standard support policies and are not recommended for production use-cases. SUSE very much welcomes feedback and suggestions on the improvements that can be made to Technology Preview components, but SUSE reserves the right to deprecate a Technology Preview feature before it becomes Generally Available if it doesn’t meet the needs of our customers or doesn’t reach a state of maturity that we require.

Please note that SUSE must occasionally deprecate features or change API specifications. Reasons for feature deprecation or API change could include a feature being updated or replaced by a new implementation, a new feature set, upstream technology is no longer available, or the upstream community has introduced incompatible changes. It is not intended that this will ever happen within a given minor release (x.z), and so all z-stream releases will maintain API compatibility and feature functionality. SUSE will endeavor to provide deprecation warnings with plenty of notice within the release notes, along with workarounds, suggestions, and mitigations to minimize service disruption.

The SUSE Edge team also welcomes community feedback, where issues can be raised within the respective code repository within https://www.github.com/suse-edge.

33.10 Obtaining source code

This SUSE product includes materials licensed to SUSE under the GNU General Public License (GPL) and various other open source licenses. The GPL requires SUSE to provide the source code that corresponds to the GPL-licensed material, and SUSE conforms to all other open-source license requirements. As such, SUSE makes all source code available, and can generally be found in the SUSE Edge GitHub repository (https://www.github.com/suse-edge), the SUSE Rancher GitHub repository (https://www.github.com/rancher) for dependent components, and specifically for SLE Micro, the source code is available for download at https://www.suse.com/download/sle-micro on "Medium 2".