Document OJSI-160 vulnerability
[ccsdk/distribution.git] / docs / release-notes.rst
1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
2
3 Release Notes
4 #############
5
6 Version 0.4.3
7 *************
8 :Release Date: 2019-06-13
9
10 **New Features**
11
12 The full list of Dublin epics and user stories for CCSDK maybe be found at <https://jira.onap.org/issues/?filter=11802>.
13
14 The following list summarizes some of the most significant epics:
15
16 +-------------+------------------------------------------------+
17 | Jira #      | Abstract                                       |
18 +=============+================================================+
19 | [CCSDK-575] | Improve E2E Process Automation                 |
20 +-------------+------------------------------------------------+
21 | [CCSDK-840] | S3P - Footprint Optimization                   |
22 +-------------+------------------------------------------------+
23 | [CCSDK-859] | Update to OpenDaylight Fluorine                |
24 +-------------+------------------------------------------------+
25 | [CCSDK-929] | 5G Use Case                                    |
26 +-------------+------------------------------------------------+
27 | [CCSDK-930] | CCVPN Use Case Extension                       |
28 +-------------+------------------------------------------------+
29
30
31 **Bug Fixes**
32 The full list of bug fixes in the CCSDK Dublin release may be found at <https://jira.onap.org/issues/?filter=11804>
33
34 **Known Issues**
35 The full list of known issues in CCSDK may be found in the ONAP Jira at <https://jira.onap.org/issues/?filter=11341>
36
37 **Security Notes**
38
39 *Fixed Security Issues*
40
41 *Known Security Issues*
42
43         * In default deployment CCSDK (netbox-nginx) exposes HTTP port 30420 outside of cluster. [`OJSI-160 <https://jira.onap.org/browse/OJSI-160>`_]
44
45 *Known Vulnerabilities in Used Modules*
46
47 Quick Links:
48         - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
49
50         - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
51
52         - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=51282469>`_
53
54 Version: 0.3.3
55 **************
56
57 :Release Date: 2019-01-30
58
59 ** Bug Fixes **
60 The following bugs are fixed in the CCSDK Casablanca January 2019 maintenance release:
61
62 +-------------+-------------------------------------------------------------------------------+
63 | Jira #      | Abstract                                                                      |
64 +=============+===============================================================================+
65 | [CCSDK-727] | Do not prepend "sub" for subnet net id                                        |
66 +-------------+-------------------------------------------------------------------------------+
67 | [CCSDK-728] | Self serve DG adjustement for unassign                                        |
68 +-------------+-------------------------------------------------------------------------------+
69 | [CCSDK-740] | Restore inventory-response-item definition to the original version            |
70 +-------------+-------------------------------------------------------------------------------+
71 | [CCSDK-765] | Upgrade jackson version to 2.8.9                                              |
72 +-------------+-------------------------------------------------------------------------------+
73 | [CCSDK-777] | Release version contains some snapshots                                       |
74 +-------------+-------------------------------------------------------------------------------+
75 | [CCSDK-843] | Compile error due to old snapshot dependency                                  |
76 +-------------+-------------------------------------------------------------------------------+
77 | [CCSDK-935] | restapicall JsonParser failed if response contains : as part of response body |
78 +-------------+-------------------------------------------------------------------------------+
79
80 **Known Issues**
81 The full list of known issues in CCSDK may be found in the ONAP Jira at <https://jira.onap.org/issues/?filter=11341>
82
83 Quick Links:
84    - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
85
86    - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
87
88    - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=45300857>`_
89
90 Version: 0.3.2
91 **************
92
93 :Release Date: 2018-11-30
94
95 **New Features**
96
97 The full list of Casablanca epics and user stories for CCSDK maybe be found at <https://jira.onap.org/issues/?filter=11516>.
98
99 The following list summarizes some of the most significant epics:
100
101 +-------------+------------------------------------------------+
102 | Jira #      | Abstract                                       |
103 +=============+================================================+
104 | [CCSDK-279] | Update to OpenDaylight Oxygen release          |
105 +-------------+------------------------------------------------+
106 | [CCSDK-357] | Develop Controller Design Studio in Casablanca |
107 +-------------+------------------------------------------------+
108 | [CCSDK-324] | Enhancements to support CCVPN use case         |
109 +-------------+------------------------------------------------+
110 | [CCSDK-288] | Usability Enhancements                         |
111 +-------------+------------------------------------------------+
112
113 **Bug Fixes**
114 The full list of bug fixes in the CCSDK Casablanca release may be found at <https://jira.onap.org/issues/?filter=11544>
115
116 **Known Issues**
117 The full list of known issues in CCSDK may be found in the ONAP Jira at <https://jira.onap.org/issues/?filter=11341>
118
119 Quick Links:
120         - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
121
122         - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
123
124         - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=45300857>`_
125
126 Version: 0.2.4
127 **************
128
129
130 :Release Date: 2018-06-07
131
132
133
134 **New Features**
135
136 The full list of Beijing Epics and user stories for CCSDK may be found at <https://jira.onap.org/issues/?filter=10792>.  The following
137 list summarizes some of the more critical features:
138
139 +--------------+-----------------------------------------------------------------------------------------------+
140 | Jira #       | Abstract                                                                                      |
141 +==============+===============================================================================================+
142 | [CCSDK-222]  | Ansible server support <https://jira.onap.org/browse/CCSDK-222>                               |
143 +--------------+-----------------------------------------------------------------------------------------------+
144 | [CCSDK-191]  | enable fast loading of graphs <https://jira.onap.org/browse/CCSDK-191>                        |
145 +--------------+-----------------------------------------------------------------------------------------------+
146 | [CCSDK-179]  | Upgrade CCSDK ODL containers to Nitrogen <https://jira.onap.org/browse/CCSDK-179>             |
147 +--------------+-----------------------------------------------------------------------------------------------+
148 | [CCSDK-177]  | Upgrade sli/northbound to Nitrogen <https://jira.onap.org/browse/CCSDK-177>                   |
149 +--------------+-----------------------------------------------------------------------------------------------+
150 | [CCSDK-176]  | Upgrade sli/adaptors to Nitrogen <https://jira.onap.org/browse/CCSDK-176>                     |
151 +--------------+-----------------------------------------------------------------------------------------------+
152 | [CCSDK-175]  | Upgrade sli/core to Nitrogen <https://jira.onap.org/browse/CCSDK-175>                         |
153 +--------------+-----------------------------------------------------------------------------------------------+
154 | [CCSDK-174]  | Update ccsdk parent to support Nitrogen parent poms <https://jira.onap.org/browse/CCSDK-174>  |
155 +--------------+-----------------------------------------------------------------------------------------------+
156 | [CCSDK-172]  | Ability to call Ansible playbook from directed graph <https://jira.onap.org/browse/CCSDK-172> |
157 +--------------+-----------------------------------------------------------------------------------------------+
158
159 **Bug Fixes**
160
161 The full list of bug fixes in the CCSDK Beijing release may be found at <https://jira.onap.org/issues/?filter=11117>
162
163 **Known Issues**
164
165 +--------------+-----------------------------------------------------------------------------------------------------+
166 | Jira #       | Abstract                                                                                            |
167 +==============+=====================================================================================================+
168 | [CCSDK-136]  | pgaas is dependent on location\_prefix being all lowercase <https://jira.onap.org/browse/CCSDK-136> |
169 +--------------+-----------------------------------------------------------------------------------------------------+
170
171 **Security Notes**
172
173 CCSDK code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The CCSDK open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28379011>`_.
174
175 Quick Links:
176         - `CCSDK project page <https://wiki.onap.org/display/DW/Common+Controller+SDK+Project>`_
177
178         - `Passing Badge information for CCSDK <https://bestpractices.coreinfrastructure.org/en/projects/1630>`_
179
180         - `Project Vulnerability Review Table for CCSDK <https://wiki.onap.org/pages/viewpage.action?pageId=28379011>`_
181
182 **Upgrade Notes**
183
184 N/A
185
186 **Deprecation Notes**
187
188 N/A
189
190 **Other**
191
192 N/A
193
194
195 Version: 0.1.0
196 **************
197
198
199 :Release Date: 2017-11-16
200
201
202
203 **New Features**
204
205 The Common Controller SDK provides the following functionality :
206    - Service Logic Interpreter
207    - Database access library (dblib)
208    - Service Logic test api (sliapi)
209    - MD-SAL data query adaptor
210    - SQL query adaptor
211    - Resource allocator
212    - SDC interface
213    - DMAAP interface
214    - REST API adaptor
215
216
217 **Bug Fixes**
218
219 **Known Issues**
220    - `CCSDK-110 <https://jira.onap.org/browse/CCSDK-110>`_ Resolve license issues in dashboard project
221    - `CCSDK-136 <https://jira.onap.org/browse/CCSDK-136>`_ pgaas is dependent on location_prefix being all lowercase
222    - `CCSDK-137 <https://jira.onap.org/browse/CCSDK-137>`_ isolate deprecated methods
223
224 **Security Issues**
225    You may want to include a reference to CVE (Common Vulnerabilities and Exposures) `CVE <https://cve.mitre.org>`_
226
227
228 **Upgrade Notes**
229
230 **Deprecation Notes**
231
232 **Other**

© 2017 ONAP. Copyright © The Linux Foundation ®. All Rights Reserved.
The Linux Foundation has registered trademarks and uses trademarks.
For a list of trademarks of The Linux Foundation, please see our Trademark Usage page.
Linux is a registered trademark of Linus Torvalds.
Privacy Policy and Terms of Use