1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
2 .. http://creativecommons.org/licenses/by/4.0
3 .. Copyright 2020-2021 NOKIA
18 :Release Date: 2022-01-12
36 *Fixed Security Issues*
38 Vulnerability [CVE-2021-44228] Top up Apache log4j2 to 2.17.1
40 *Known Security Issues*
44 *Known Vulnerabilities in Used Modules*
62 :Release Date: 2021-07-22
66 Add certificate update use case (support for CMPv2 messages: Key Update Request and Certification Request).
80 *Fixed Security Issues*
84 *Known Security Issues*
88 *Known Vulnerabilities in Used Modules*
94 caMode is removed from cmpServers.json configuration file.
98 CertService client is not supported since Istanbul release.
113 :Release Date: 2021-01-27
121 Enhance CertServiceAPI response (include CMP server error messages).
122 Fix KeyUsage extension sent to CMPv2 server
132 *Fixed Security Issues*
136 *Known Security Issues*
140 *Known Vulnerabilities in Used Modules*
146 **Deprecation Notes**
155 :Release Date: 2020-12-28
163 Align Cert Service Api to RFC4210.
164 Fix Cert Service Client CA_NAME validation.
165 Fix Cert Service External Provider logging.
175 *Fixed Security Issues*
179 *Known Security Issues*
183 *Known Vulnerabilities in Used Modules*
189 **Deprecation Notes**
198 :Release Date: 2020-12-02
206 Fix NullPointerException in CertService Client when SANs environment variable is not defined.
216 *Fixed Security Issues*
220 *Known Security Issues*
224 *Known Vulnerabilities in Used Modules*
230 **Deprecation Notes**
239 :Release Date: 2020-12-01
243 * Extended CertService by support for new SANs types - IPs, E-mails, URIs
251 CertService Client exits unsuccessfully with code 99 when SANs environment variable is not defined, because of
258 *Fixed Security Issues*
262 *Known Security Issues*
266 *Known Vulnerabilities in Used Modules*
272 **Deprecation Notes**
285 * Added module **oom-certservice-k8s-external-provider** with following functionality:
287 An external provider is a part of PKI infrastructure. It consumes CertificateRequest CRD from Cert-Manager and calls CertService API to enroll certificate from CMPv2 server.
289 More information can be found on dedicated `wiki page <https://wiki.onap.org/display/DW/CertService+and+K8s+Cert-Manager+integration>`_
303 *Fixed Security Issues*
307 *Known Security Issues*
311 *Known Vulnerabilities in Used Modules*
317 **Deprecation Notes**
338 * Added module **oom-certservice-post-processor** with following functionality:
340 * appending CMPv2 certificates to CertMan truststore
341 * replacing CertMan keystore with CMPv2 keystore
355 *Fixed Security Issues*
359 *Known Security Issues*
363 *Known Vulnerabilities in Used Modules*
369 **Deprecation Notes**
382 - The same functionality as in aaf-certservice 1.2.0
396 *Fixed Security Issues*
400 *Known Security Issues*
404 *Known Vulnerabilities in Used Modules*
410 **Deprecation Notes**
423 - Client creates subdirectories in given OUTPUT_PATH and place certificate into it.
437 *Fixed Security Issues*
441 *Known Security Issues*
445 *Known Vulnerabilities in Used Modules*
451 **Deprecation Notes**
460 :Release Date: 2020-06-29
464 - Added property to CertService Client to allow selection of output certificates type (One of: PEM, JKS, P12).
468 - Resolved issue where created PKCS12 certificates had jks extension.
478 *Fixed Security Issues*
482 *Known Security Issues*
486 *Known Vulnerabilities in Used Modules*
492 **Deprecation Notes**
507 :Release Date: 2020-05-22
511 The Frankfurt Release is the first release of the Certification Service.
516 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
520 - PKCS12 certificates have jks extension
526 *Fixed Security Issues*
530 *Known Security Issues*
534 *Known Vulnerabilities in Used Modules*
540 **Deprecation Notes**
549 :Release Date: 2020-04-16
553 The Frankfurt Release is the first release of the Certification Service.
557 - No new fixes were implemented for this release
561 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
563 - PKCS12 certificates have jks extension
569 *Fixed Security Issues*
573 *Known Security Issues*
577 *Known Vulnerabilities in Used Modules*
583 **Deprecation Notes**