1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
2 .. http://creativecommons.org/licenses/by/4.0
3 .. Copyright 2020-2021 NOKIA
4 .. Copyright 2022 Deutsche Telekom, NOKIA
17 :Release Date: 2022-09-21
35 *Fixed Security Issues*
37 Vulnerability [SONATYPE-2021-1694] Top up Google gson to 2.9.0
38 Vulnerability [SONATYPE-2018-0705] Top up commons-io to 2.11.0
39 Vulnerability [CVE-2020-13956] Top up Apache httpclient to 4.5.13
41 [CVE-2020-0187 CVE-2020-15522 CVE-2020-26939 SONATYPE-2020-0770
42 SONATYPE-2021-4916 SONATYPE-2019-0673] Top up Bouncycastle bcprov-jdk15on to 1.70
43 Vulnerability [SONATYPE-2021-1694] Top up sonar-go-pluging at 1.1.1.2000
45 *Known Security Issues*
49 *Known Vulnerabilities in Used Modules*
70 :Release Date: 2022-01-11
88 *Fixed Security Issues*
90 Vulnerability [CVE-2021-44228] Top up Apache log4j2 to 2.17.1
92 *Known Security Issues*
96 *Known Vulnerabilities in Used Modules*
104 **Deprecation Notes**
118 :Release Date: 2021-07-22
122 Add certificate update use case (support for CMPv2 messages: Key Update Request and Certification Request).
136 *Fixed Security Issues*
140 *Known Security Issues*
144 *Known Vulnerabilities in Used Modules*
150 caMode is removed from cmpServers.json configuration file.
152 **Deprecation Notes**
154 CertService client is not supported since Istanbul release.
166 :Release Date: 2021-01-27
174 Enhance CertServiceAPI response (include CMP server error messages).
175 Fix KeyUsage extension sent to CMPv2 server
185 *Fixed Security Issues*
189 *Known Security Issues*
193 *Known Vulnerabilities in Used Modules*
199 **Deprecation Notes**
207 :Release Date: 2020-12-28
215 Align Cert Service Api to RFC4210.
216 Fix Cert Service Client CA_NAME validation.
217 Fix Cert Service External Provider logging.
227 *Fixed Security Issues*
231 *Known Security Issues*
235 *Known Vulnerabilities in Used Modules*
241 **Deprecation Notes**
249 :Release Date: 2020-12-02
257 Fix NullPointerException in CertService Client when SANs environment variable is not defined.
267 *Fixed Security Issues*
271 *Known Security Issues*
275 *Known Vulnerabilities in Used Modules*
281 **Deprecation Notes**
289 :Release Date: 2020-12-01
293 * Extended CertService by support for new SANs types - IPs, E-mails, URIs
301 CertService Client exits unsuccessfully with code 99 when SANs environment variable is not defined, because of
308 *Fixed Security Issues*
312 *Known Security Issues*
316 *Known Vulnerabilities in Used Modules*
322 **Deprecation Notes**
334 * Added module **oom-certservice-k8s-external-provider** with following functionality:
336 An external provider is a part of PKI infrastructure. It consumes CertificateRequest CRD from Cert-Manager and calls CertService API to enroll certificate from CMPv2 server.
338 More information can be found on dedicated `wiki page <https://wiki.onap.org/display/DW/CertService+and+K8s+Cert-Manager+integration>`_
352 *Fixed Security Issues*
356 *Known Security Issues*
360 *Known Vulnerabilities in Used Modules*
366 **Deprecation Notes**
382 * Added module **oom-certservice-post-processor** with following functionality:
384 * appending CMPv2 certificates to CertMan truststore
385 * replacing CertMan keystore with CMPv2 keystore
399 *Fixed Security Issues*
403 *Known Security Issues*
407 *Known Vulnerabilities in Used Modules*
413 **Deprecation Notes**
425 - The same functionality as in aaf-certservice 1.2.0
439 *Fixed Security Issues*
443 *Known Security Issues*
447 *Known Vulnerabilities in Used Modules*
453 **Deprecation Notes**
465 - Client creates subdirectories in given OUTPUT_PATH and place certificate into it.
479 *Fixed Security Issues*
483 *Known Security Issues*
487 *Known Vulnerabilities in Used Modules*
493 **Deprecation Notes**
501 :Release Date: 2020-06-29
505 - Added property to CertService Client to allow selection of output certificates type (One of: PEM, JKS, P12).
509 - Resolved issue where created PKCS12 certificates had jks extension.
519 *Fixed Security Issues*
523 *Known Security Issues*
527 *Known Vulnerabilities in Used Modules*
533 **Deprecation Notes**
546 :Release Date: 2020-05-22
550 The Frankfurt Release is the first release of the Certification Service.
555 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
559 - PKCS12 certificates have jks extension
565 *Fixed Security Issues*
569 *Known Security Issues*
573 *Known Vulnerabilities in Used Modules*
579 **Deprecation Notes**
587 :Release Date: 2020-04-16
591 The Frankfurt Release is the first release of the Certification Service.
595 - No new fixes were implemented for this release
599 - `AAF-1132 <https://jira.onap.org/browse/AAF-1132>`_ - CertService Client returns exit status 5 when TLS configuration fails
601 - PKCS12 certificates have jks extension
607 *Fixed Security Issues*
611 *Known Security Issues*
615 *Known Vulnerabilities in Used Modules*
621 **Deprecation Notes**