1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
2 .. http://creativecommons.org/licenses/by/4.0
3 .. Copyright 2020-2021 NOKIA
18 :Release Date: 2022-01-11
36 *Fixed Security Issues*
38 Vulnerability [CVE-2021-44228] Top up Apache log4j2 to 2.17.1
40 *Known Security Issues*
44 *Known Vulnerabilities in Used Modules*
69 :Release Date: 2021-07-22
73 Add certificate update use case (support for CMPv2 messages: Key Update Request and Certification Request).
87 *Fixed Security Issues*
91 *Known Security Issues*
95 *Known Vulnerabilities in Used Modules*
101 caMode is removed from cmpServers.json configuration file.
103 **Deprecation Notes**
105 CertService client is not supported since Istanbul release.
120 :Release Date: 2021-01-27
128 Enhance CertServiceAPI response (include CMP server error messages).
129 Fix KeyUsage extension sent to CMPv2 server
139 *Fixed Security Issues*
143 *Known Security Issues*
147 *Known Vulnerabilities in Used Modules*
153 **Deprecation Notes**
162 :Release Date: 2020-12-28
170 Align Cert Service Api to RFC4210.
171 Fix Cert Service Client CA_NAME validation.
172 Fix Cert Service External Provider logging.
182 *Fixed Security Issues*
186 *Known Security Issues*
190 *Known Vulnerabilities in Used Modules*
196 **Deprecation Notes**
205 :Release Date: 2020-12-02
213 Fix NullPointerException in CertService Client when SANs environment variable is not defined.
223 *Fixed Security Issues*
227 *Known Security Issues*
231 *Known Vulnerabilities in Used Modules*
237 **Deprecation Notes**
246 :Release Date: 2020-12-01
250 * Extended CertService by support for new SANs types - IPs, E-mails, URIs
258 CertService Client exits unsuccessfully with code 99 when SANs environment variable is not defined, because of
265 *Fixed Security Issues*
269 *Known Security Issues*
273 *Known Vulnerabilities in Used Modules*
279 **Deprecation Notes**
292 * Added module **oom-certservice-k8s-external-provider** with following functionality:
294 An external provider is a part of PKI infrastructure. It consumes CertificateRequest CRD from Cert-Manager and calls CertService API to enroll certificate from CMPv2 server.
296 More information can be found on dedicated `wiki page <https://wiki.onap.org/display/DW/CertService+and+K8s+Cert-Manager+integration>`_
310 *Fixed Security Issues*
314 *Known Security Issues*
318 *Known Vulnerabilities in Used Modules*
324 **Deprecation Notes**
345 * Added module **oom-certservice-post-processor** with following functionality:
347 * appending CMPv2 certificates to CertMan truststore
348 * replacing CertMan keystore with CMPv2 keystore
362 *Fixed Security Issues*
366 *Known Security Issues*
370 *Known Vulnerabilities in Used Modules*
376 **Deprecation Notes**
389 - The same functionality as in aaf-certservice 1.2.0
403 *Fixed Security Issues*
407 *Known Security Issues*
411 *Known Vulnerabilities in Used Modules*
417 **Deprecation Notes**
430 - Client creates subdirectories in given OUTPUT_PATH and place certificate into it.
444 *Fixed Security Issues*
448 *Known Security Issues*
452 *Known Vulnerabilities in Used Modules*
458 **Deprecation Notes**
467 :Release Date: 2020-06-29
471 - Added property to CertService Client to allow selection of output certificates type (One of: PEM, JKS, P12).
475 - Resolved issue where created PKCS12 certificates had jks extension.
485 *Fixed Security Issues*
489 *Known Security Issues*
493 *Known Vulnerabilities in Used Modules*
499 **Deprecation Notes**
514 :Release Date: 2020-05-22
518 The Frankfurt Release is the first release of the Certification Service.
523 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
527 - PKCS12 certificates have jks extension
533 *Fixed Security Issues*
537 *Known Security Issues*
541 *Known Vulnerabilities in Used Modules*
547 **Deprecation Notes**
556 :Release Date: 2020-04-16
560 The Frankfurt Release is the first release of the Certification Service.
564 - No new fixes were implemented for this release
568 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
570 - PKCS12 certificates have jks extension
576 *Fixed Security Issues*
580 *Known Security Issues*
584 *Known Vulnerabilities in Used Modules*
590 **Deprecation Notes**