docs/release-notes.rst

   1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
   2 .. http://creativecommons.org/licenses/by/4.0
   3 .. Copyright 2017 Bell Canada & Amdocs Intellectual Property.  All rights reserved.
   4
   5 .. Links
   6 .. _release-notes-label:
   7
   8 Log Enhancements Release Notes
   9 ==============================
  10 Version: 5.0.1 El Alto Release
  11 ------------------------------
  12 El Alto
  13 -------
  14    - logging-analytics Version: 1.5.0
  15
  16 :Release Date: 2019-10-01
  17
  18 **New Features**
  19       None
  20
  21 **Bug Fixes**
  22    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Vulnerability issue: removed jackson-databind
  23    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Vulnerability issue: Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
  24    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Vulnerability issue: glassfish bean-validator-2.4.0-b34.jar SEC
  25    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Vulnerability issue: fix/address/red-flag License org.json:json-20140107.jar
  26
  27 **Known Issues**
  28
  29 **Security Notes**
  30
  31 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
  32
  33 Quick Links:
  34         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
  35
  36         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
  37
  38         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
  39
  40 **Upgrade Notes**
  41       None
  42
  43 **Deprecation Notes**
  44       None
  45
  46 **Other**
  47       None
  48
  49
  50 POMBA Release Notes
  51 -------------------
  52 POMBA is sub-project of the Logging Enhancements Project.
  53
  54 El Alto
  55 -------
  56    - pomba-audit-common Version: 1.5.1
  57    - pomba-aai-context-builder Version: 1.5.1
  58    - pomba-context-aggregator Version: 1.5.1
  59    - pomba-network-discovery-context-builder Version: 1.5.1
  60    - pomba-sdc-context-builder Version: 1.5.1
  61    - pomba-sdnc-context-builder Version: 1.5.1
  62
  63 :Release Date:  2019-10-01
  64
  65 **New Features**
  66    - None
  67
  68 **Bug Fixes**
  69    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Vulnerability issue: upgraded jackson-databind to version 2.9.9
  70    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
  71    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Vulnerability issue:  removed jackson-databind-2.4.5.jar from pomba-audit-common
  72    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Vulnerability issue:  pomba-context-aggregator with javax.jms:jms-1.1.jar
  73    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ Vulnerability issue: POMBA-AUDIT-COMMON fix/address/red-flag jackson-databind-2.4.5
  74    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: upgraded plexus-utils to version 3.1.0
  75    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed commons-beanutils : 1.9.3
  76    - `LOG-1116 <https://jira.onap.org/browse/LOG-1116>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed commons-beanutils : 1.9.3
  77    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed struts-core
  78    - `LOG-1121 <https://jira.onap.org/browse/LOG-1121>`_ Vulnerability issue: POMBA-CONTEXT-AGGREGATOR and POMBA-SDNC-CONTEXT-BUILDER: upgraded logback-classic to version 1.2.3
  79    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Vulnerability issue: Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
  80
  81 **Known Issues**
  82
  83    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
  84    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
  85    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
  86    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER handlebars 2.0.0
  87    - `LOG-1118 <https://jira.onap.org/browse/LOG-1118>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER and POMBA-NETWORK-DISCOVERY-CONTEXT-BUILDER js-yaml
  88    - `LOG-1117 <https://jira.onap.org/browse/LOG-1117>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER and POMBA-NETWORK-DISCOVERY-CONTEXT-BUILDER uikit
  89
  90 **Security Notes**
  91    - all nodeports for Kibana, context builders and data-router are open by default for now
  92
  93 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
  94
  95 Quick Links:
  96    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
  97    - `See the result from LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
  98    - `See the result from LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
  99
 100 **Upgrade Notes**
 101       None
 102
 103 **Deprecation Notes**
 104       None
 105
 106 **Other**
 107       None
 108
 109 Version: 5.0.0 El Alto Early Drop Release
 110 -----------------------------------------
 111 El Alto Early Drop
 112 ------------------
 113    - logging-analytics Version: 1.5.0
 114
 115 :Release Date: 2019-08-16
 116
 117 **New Features**
 118       None
 119
 120 **Bug Fixes**
 121    - `LOG-1066 <https://jira.onap.org/browse/LOG-1066>`_ Vulnerability issue: upgrade org.apache.tomcat.embed.tomcat-embed-core to 8.5.42
 122    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
 123
 124 **Known Issues**
 125
 126 **Security Notes**
 127
 128 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
 129
 130 Quick Links:
 131         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 132
 133         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 134
 135         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
 136
 137 **Upgrade Notes**
 138       None
 139
 140 **Deprecation Notes**
 141       None
 142
 143 **Other**
 144       None
 145
 146
 147 POMBA Release Notes
 148 -------------------
 149 POMBA is sub-project of the Logging Enhancements Project.
 150
 151 El Alto Early Drop
 152 ------------------
 153    - pomba-audit-common Version: 1.5.0
 154    - pomba-aai-context-builder Version: 1.5.0
 155    - pomba-context-aggregator Version: 1.5.0
 156    - pomba-network-discovery-context-builder Version: 1.5.0
 157    - pomba-sdc-context-builder Version: 1.5.0
 158    - pomba-sdnc-context-builder Version: 1.5.0
 159
 160 :Release Date:  2019-08-16
 161
 162 **New Features**
 163    - None
 164
 165 **Bug Fixes**
 166    - `LOG-1066 <https://jira.onap.org/browse/LOG-1066>`_ Vulnerability issue: upgrade org.apache.tomcat.embed.tomcat-embed-core to 8.5.42
 167    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
 168
 169 **Known Issues**
 170
 171    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
 172    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
 173    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Logging/POMBA CLM: fix/address/red-flag glassfish bean-validator-2.4.0-b34.jar SEC
 174    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Logging CLM: fix/address/red-flag License org.json:json-20140107.jar
 175    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Logging/POMBA CLM: fix/address/red-flag SEC jackson-databind-2.4.5.jar - auditcommon - even 2.9.7 is still red
 176    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Logging/POMBA CLM: fix/address/red-flag License javax.jms:jms-1.1.jar
 177    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
 178    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Logging/POMBA CLM: fix/address/red-flag jackson-databind-2.8.11.3 SEC
 179    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
 180    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ POMBA-AUDIT-COMMON CLM: fix/address/red-flag jackson-databind-2.4.5 SEC
 181    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag plexus-utils : 3.0.22 SEC
 182    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag commons-beanutils : 1.9.3 SEC
 183    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag struts-core : 1.3.8-2.4.5 SEC
 184    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Logging/POMBA CLM: fix/address/red-flag handlebars-2.0.0.js SEC - upgrade to 4.0.0+
 185    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
 186
 187 **Security Notes**
 188    - all nodeports for Kibana, context builders and data-router are open by default for now
 189
 190 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
 191
 192 Quick Links:
 193    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 194    - `See the result from LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 195    - `See the result from LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
 196
 197 **Upgrade Notes**
 198       None
 199
 200 **Deprecation Notes**
 201       None
 202
 203 **Other**
 204       None
 205
 206 Version: 4.0.0 Dublin Release
 207 -----------------------------
 208 Dublin
 209 ------
 210    - logging-analytics Version: 1.2.6
 211
 212 :Release Date: 2019-06-18
 213
 214 **New Features**
 215
 216 **Bug Fixes**
 217
 218 **Known Issues**
 219
 220 **Security Notes**
 221
 222 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64008625>`_.
 223
 224 Quick Links:
 225         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 226
 227         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 228
 229         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=51282493>`_
 230
 231 **Upgrade Notes**
 232       None
 233
 234 **Deprecation Notes**
 235       None
 236
 237 **Other**
 238       None
 239
 240
 241 POMBA Release Notes
 242 -------------------
 243 POMBA is sub-project of the Logging Enhancements Project.
 244
 245 Dublin
 246 ------
 247    - pomba-audit-common Version: 1.4.0
 248    - pomba-aai-context-builder Version: 1.4.0
 249    - pomba-context-aggregator Version: 1.4.0
 250    - pomba-network-discovery-context-builder Version: 1.4.0
 251    - pomba-sdc-context-builder Version: 1.4.0
 252    - pomba-sdnc-context-builder Version: 1.4.0
 253
 254 :Release Date:  2019-06-18
 255
 256 **New Features**
 257    - Version 2 of the audit common model
 258    - Initial release of SDNC context builder
 259
 260 **Bug Fixes**
 261
 262
 263 **Known Issues**
 264
 265    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
 266    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
 267    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Logging/POMBA CLM: fix/address/red-flag glassfish bean-validator-2.4.0-b34.jar SEC
 268    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Logging CLM: fix/address/red-flag License org.json:json-20140107.jar
 269    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Logging/POMBA CLM: fix/address/red-flag SEC jackson-databind-2.4.5.jar - auditcommon - even 2.9.7 is still red
 270    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Logging/POMBA CLM: fix/address/red-flag License javax.jms:jms-1.1.jar
 271    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
 272    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Logging/POMBA CLM: fix/address/red-flag jackson-databind-2.8.11.3 SEC
 273    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
 274    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ POMBA-AUDIT-COMMON CLM: fix/address/red-flag jackson-databind-2.4.5 SEC
 275    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag plexus-utils : 3.0.22 SEC
 276    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag commons-beanutils : 1.9.3 SEC
 277    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag struts-core : 1.3.8-2.4.5 SEC
 278    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Logging/POMBA CLM: fix/address/red-flag handlebars-2.0.0.js SEC - upgrade to 4.0.0+
 279    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
 280
 281 **Security Notes**
 282    - all nodeports for Kibana, context builders and data-router are open by default for now
 283
 284 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64008625>`_.
 285
 286 Quick Links:
 287    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 288    - `See the result from LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 289    - `See the result from LOG <https://wiki.onap.org/pages/viewpage.action?pageId=51282493>`_
 290
 291 **Upgrade Notes**
 292       None
 293
 294 **Deprecation Notes**
 295       None
 296
 297 **Other**
 298       None
 299
 300 Version: 3.0.1 Casablanca Release
 301 ---------------------------------
 302 Casablanca
 303 -----------
 304    - logging-analytics Version: 1.2.6
 305
 306 --------------
 307 :Release Date: 2019-02-08
 308
 309 **New Features**
 310    - kubernetes installation upped to 1.11.5 in the Rancher 1.6.25 RI
 311    - NFS support for AWS EFS
 312
 313 **Bug Fixes**
 314    - `LOG-837 <https://jira.onap.org/browse/LOG-837>`_ Logging/POMBA CLM: fix/address/red-flag spring-mvc-5.1.2 pulls in spring-web-5.0.9
 315
 316 **Known Issues**
 317
 318    - `LOG-376 <https://jira.onap.org/browse/LOG-376>`_ Logstash load balancing is asymmetric wherever AAI is run
 319    - `LOG-895 <https://jira.onap.org/browse/LOG-895>`_ Upgrade Rancher to 1.6.25 to address CVE-2018-1002105 and move to Kubernetes 1.11.5 (server side)
 320
 321 **Security Notes**
 322
 323 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_.
 324
 325 Quick Links:
 326         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 327
 328         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 329
 330         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_
 331
 332 **Upgrade Notes**
 333       None
 334
 335 **Deprecation Notes**
 336       None
 337
 338 **Other**
 339       None
 340
 341
 342 POMBA Release Notes
 343 -------------------
 344 POMBA is sub-project of the Logging Enhancements Project.
 345
 346 Casablanca
 347 ----------
 348    - pomba-audit-common Version: 1.3.2
 349    - pomba-aai-context-builder Version: 1.3.2
 350    - pomba-context-aggregator Version: 1.3.4
 351    - pomba-network-discovery-context-builder Version: 1.3.1
 352    - pomba-sdc-context-builder Version: 1.3.2
 353
 354 --------------
 355 :Release Date:  2019-02-08
 356
 357 **New Features**
 358    - Version 1 of the audit common model
 359    - Initial release of context aggregator and 3 context builders
 360
 361 **Bug Fixes**
 362
 363    - `LOG-892 <https://jira.onap.org/browse/LOG-892`_ PORT - POMBA Network Discovery Context Builder does not log
 364
 365 **Known Issues**
 366
 367    - `LOG-913 <https://jira.onap.org/browse/LOG-913>`_ POMBA: 1 of 11 pods failing on sequenced startup on 3.0.0-ONAP - pomba is 22 on the order - looks timing related
 368    - `LOG-950 <https://jira.onap.org/browse/LOG-950>`_ LOG-950 upped the numbers from 10 to 30 – for intermittent deploy timing – this is an issue for several projects since 3.0.0-ONAP - the solution is a sequenced 5h deploy via `cd.sh <https://git.onap.org/logging-analytics/tree/deploy/cd.sh#n228>`_ and/or better vms for now until the `dependencies <https://wiki.onap.org/display/DW/Log+Streaming+Compliance+and+API#LogStreamingComplianceandAPI-DeploymentDependencyTree-Containerlevel>`_ and jobs are refactored into helm hooks
 369
 370 **Security Notes**
 371    - all three nodeports for kibana, context builder and data-router are open by default for now
 372
 373 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 374
 375 Quick Links:
 376    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 377    - `See the result from LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 378    - `See the result from LOG <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_
 379
 380 **Upgrade Notes**
 381       None
 382
 383 **Deprecation Notes**
 384       None
 385
 386 **Other**
 387       None
 388
 389
 390 Version: 1.2.2 Casablanca
 391 -------------------------
 392
 393 :Release Date: 2018-11-30
 394
 395 **New Features**
 396    - Demo slf4j library with marker/mdc support along with kubernetes, docker, war support projects.
 397
 398 **Bug Fixes**
 399
 400
 401 **Known Issues**
 402    - `Logstash load balancing is asymmetric wherever AAI is run <https://jira.onap.org/browse/LOG-376>`_
 403
 404 **Security Notes**
 405
 406 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_.
 407
 408 Quick Links:
 409         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 410
 411         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 412
 413         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_
 414
 415 **Upgrade Notes**
 416       None
 417
 418 **Deprecation Notes**
 419       None
 420
 421 **Other**
 422       None
 423
 424
 425 POMBA Release Notes
 426 -------------------
 427 POMBA is sub-project of the Logging Enhancements Project.
 428
 429 Casablanca
 430 ----------
 431    - pomba-audit-common Version: 1.3.1
 432    - pomba-aai-context-builder Version: 1.3.1
 433    - pomba-context-aggregator Version: 1.3.3
 434    - pomba-network-discovery-context-builder Version: 1.3.0
 435    - pomba-sdc-context-builder Version: 1.3.1
 436
 437
 438 --------------
 439
 440 :Release Date: 2018-11-15
 441
 442 **New Features**
 443    - Version 1 of the audit common model
 444    - Initial release of context aggregator and 3 context builders
 445
 446 **Bug Fixes**
 447
 448
 449 **Known Issues**
 450
 451
 452 **Security Notes**
 453    - all three nodeports for kibana, context builder and data-router are open by default for now
 454
 455 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 456
 457 Quick Links:
 458    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 459    - `See the result from LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 460    - `See the result from LOG <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_
 461
 462 **Upgrade Notes**
 463       None
 464
 465 **Deprecation Notes**
 466       None
 467
 468 **Other**
 469       None
 470
 471 Version: Beijing
 472 ----------------
 473
 474 :Release Date: 2018-06-07
 475
 476 **New Features**
 477    - Logstash is a daemonset (clustered at 1 container per VM)
 478    - `The following applications send logs to the ELK stack - <https://jira.onap.org/browse/LOG-230>`_
 479
 480 **Bug Fixes**
 481
 482
 483 **Known Issues**
 484    - Logstash load balancing is asymmetric
 485
 486 **Security Notes**
 487    - all three nodeports for logstash, elasticsearch and kibana are open by default for now
 488
 489 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 490
 491 Quick Links:
 492         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 493
 494         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 495
 496         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_
 497
 498 **Upgrade Notes**
 499       None
 500
 501 **Deprecation Notes**
 502       None
 503
 504 **Other**
 505       Note: there was no released artifacts under 1.2.2 for Beijing - release was pushed to Casablanca
 506
 507
 508
 509 Version: 1.0.0
 510 --------------
 511
 512 :Release Date: 2017-11-16
 513
 514 **New Features**
 515
 516 This release adds Elastic Stack analytics deployment to OOM, aligns logging provider configurations, and fixes issues with the propagation of transaction IDs and other contextual information.
 517
 518     - `LOG-1 <https://jira.onap.org/browse/LOG-1>`_ Transaction ID propagation.
 519     - `LOG-2 <https://jira.onap.org/browse/LOG-2>`_ Standardized logging provider configuration.
 520     - `LOG-3 <https://jira.onap.org/browse/LOG-3>`_ Elastic Stack reference analytics pipeline.
 521     - `LOG-4 <https://jira.onap.org/browse/LOG-4>`_ Transaction ID conventions.
 522
 523 **Bug Fixes**
 524
 525     - `LOG-64 <https://jira.onap.org/browse/LOG-64>`_ Logger field has a length restriction of 36 which needs a fix.
 526     - `LOG-74 <https://jira.onap.org/browse/LOG-74>`_ Extract componentName from the source path of log files.
 527
 528 **Known Issues**
 529
 530     - `LOG-43 <https://jira.onap.org/browse/LOG-43>`_
 531       Unable to find logback xml for DMaaP component.
 532       Logging file for DMaaP is available in this jar "eelf-core-0.0.1.jar".
 533
 534     - `LOG-65 <https://jira.onap.org/browse/LOG-65>`_
 535       SO Logging Provider Config File need correction in Timestamp MDC.
 536       Logging provider configuration file for SO i.e. logback files requires correction in Timestamp MDC for correct MDC generation in log.
 537       The current pattern prints Timestamp as 2017-09-25 05:30:07,832. Expected  pattern is - 2017-09-25T05:30:07.832Z.
 538
 539     - `LOG-80 <https://jira.onap.org/browse/LOG-80>`_ Kibana does not seem to show all the logs from application pods.
 540       The content of the log directories (/var/log/onap/mso) are not 100% reflected in Kibana.
 541
 542     - `LOG-88 <https://jira.onap.org/browse/LOG-88>`_
 543       SO log format error during Health Check - blocking tracking jira for SO-246.
 544
 545 **Security Issues**
 546       None
 547
 548 **Upgrade Notes**
 549       None
 550
 551 **Deprecation Notes**
 552       None
 553
 554 **Other**
 555       None
 556
 557 ===========
 558
 559 End of Release Notes