docs/release-notes.rst

   1 .. This work is licensed under a Creative Commons Attribution 4.0 International License.
   2 .. http://creativecommons.org/licenses/by/4.0
   3 .. Copyright 2017 Bell Canada & Amdocs Intellectual Property.  All rights reserved.
   4
   5 .. Links
   6 .. _release-notes-label:
   7
   8 Log Enhancements Release Notes
   9 ==============================
  10 Version: 5.0.1 El Alto Release
  11 ------------------------------
  12 El Alto
  13 -------
  14    - logging-analytics Version: 1.5.1
  15
  16 :Release Date: 2019-10-04
  17
  18 **New Features**
  19       None
  20
  21 **Bug Fixes**
  22    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Vulnerability issue: removed jackson-databind
  23    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Vulnerability issue: Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
  24    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Vulnerability issue: glassfish bean-validator-2.4.0-b34.jar SEC
  25    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Vulnerability issue: fix/address/red-flag License org.json:json-20140107.jar
  26
  27 **Known Issues**
  28    - `LOG-1159 <https://jira.onap.org/browse/LOG-1159>`_ Vulnerability issue: logging-analytics version 5.0.9.RELEASE
  29
  30 **Security Notes**
  31
  32   - LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
  33
  34 Quick Links:
  35         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
  36
  37         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
  38
  39         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
  40
  41 **Upgrade Notes**
  42       None
  43
  44 **Deprecation Notes**
  45       None
  46
  47 **Other**
  48       None
  49
  50
  51 POMBA Release Notes
  52 -------------------
  53 POMBA is sub-project of the Logging Enhancements Project.
  54
  55 El Alto
  56 -------
  57    - pomba-audit-common Version: 1.5.1
  58    - pomba-aai-context-builder Version: 1.5.1
  59    - pomba-context-aggregator Version: 1.5.1
  60    - pomba-network-discovery-context-builder Version: 1.5.1
  61    - pomba-sdc-context-builder Version: 1.5.1
  62    - pomba-sdnc-context-builder Version: 1.5.1
  63
  64 :Release Date:  2019-10-04
  65
  66 **New Features**
  67    - None
  68
  69 **Bug Fixes**
  70    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Vulnerability issue: upgraded jackson-databind to version 2.9.9
  71    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
  72    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Vulnerability issue:  removed jackson-databind-2.4.5.jar from pomba-audit-common
  73    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Vulnerability issue:  pomba-context-aggregator with javax.jms:jms-1.1.jar
  74    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ Vulnerability issue: POMBA-AUDIT-COMMON fix/address/red-flag jackson-databind-2.4.5
  75    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: upgraded plexus-utils to version 3.1.0
  76    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed commons-beanutils : 1.9.3
  77    - `LOG-1116 <https://jira.onap.org/browse/LOG-1116>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed commons-beanutils : 1.9.3
  78    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER: removed struts-core
  79    - `LOG-1121 <https://jira.onap.org/browse/LOG-1121>`_ Vulnerability issue: POMBA-CONTEXT-AGGREGATOR and POMBA-SDNC-CONTEXT-BUILDER: upgraded logback-classic to version 1.2.3
  80    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Vulnerability issue: Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
  81
  82 **Known Issues**
  83
  84    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
  85    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
  86    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
  87    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER handlebars 2.0.0
  88    - `LOG-1118 <https://jira.onap.org/browse/LOG-1118>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER and POMBA-NETWORK-DISCOVERY-CONTEXT-BUILDER js-yaml
  89    - `LOG-1117 <https://jira.onap.org/browse/LOG-1117>`_ Vulnerability issue: POMBA-SDNC-CONTEXT-BUILDER and POMBA-NETWORK-DISCOVERY-CONTEXT-BUILDER uikit
  90    - `LOG-1160 <https://jira.onap.org/browse/LOG-1160>`_ Vulnerability issue: jackson-databind 2.9.9
  91
  92 **Security Notes**
  93    - all nodeports for Kibana, context builders and data-router are open by default for now
  94
  95 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
  96
  97 Quick Links:
  98    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
  99
 100 **Upgrade Notes**
 101       None
 102
 103 **Deprecation Notes**
 104       None
 105
 106 **Other**
 107       None
 108
 109 Version: 5.0.0 El Alto Early Drop Release
 110 -----------------------------------------
 111 El Alto Early Drop
 112 ------------------
 113    - logging-analytics Version: 1.5.0
 114
 115 :Release Date: 2019-08-16
 116
 117 **New Features**
 118       None
 119
 120 **Bug Fixes**
 121    - `LOG-1066 <https://jira.onap.org/browse/LOG-1066>`_ Vulnerability issue: upgrade org.apache.tomcat.embed.tomcat-embed-core to 8.5.42
 122    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
 123
 124 **Known Issues**
 125
 126 **Security Notes**
 127
 128 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
 129
 130 Quick Links:
 131         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 132
 133         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 134
 135         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=68541351>`_
 136
 137 **Upgrade Notes**
 138       None
 139
 140 **Deprecation Notes**
 141       None
 142
 143 **Other**
 144       None
 145
 146
 147 POMBA Release Notes
 148 -------------------
 149 POMBA is sub-project of the Logging Enhancements Project.
 150
 151 El Alto Early Drop
 152 ------------------
 153    - pomba-audit-common Version: 1.5.0
 154    - pomba-aai-context-builder Version: 1.5.0
 155    - pomba-context-aggregator Version: 1.5.0
 156    - pomba-network-discovery-context-builder Version: 1.5.0
 157    - pomba-sdc-context-builder Version: 1.5.0
 158    - pomba-sdnc-context-builder Version: 1.5.0
 159
 160 :Release Date:  2019-08-16
 161
 162 **New Features**
 163    - None
 164
 165 **Bug Fixes**
 166    - `LOG-1066 <https://jira.onap.org/browse/LOG-1066>`_ Vulnerability issue: upgrade org.apache.tomcat.embed.tomcat-embed-core to 8.5.42
 167    - `LOG-1067 <https://jira.onap.org/browse/LOG-1067>`_ Vulnerability issue: confirm rather or not commons-codec is needed for logging projects
 168
 169 **Known Issues**
 170
 171    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
 172    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
 173    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Logging/POMBA CLM: fix/address/red-flag glassfish bean-validator-2.4.0-b34.jar SEC
 174    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Logging CLM: fix/address/red-flag License org.json:json-20140107.jar
 175    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Logging/POMBA CLM: fix/address/red-flag SEC jackson-databind-2.4.5.jar - auditcommon - even 2.9.7 is still red
 176    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Logging/POMBA CLM: fix/address/red-flag License javax.jms:jms-1.1.jar
 177    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
 178    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Logging/POMBA CLM: fix/address/red-flag jackson-databind-2.8.11.3 SEC
 179    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
 180    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ POMBA-AUDIT-COMMON CLM: fix/address/red-flag jackson-databind-2.4.5 SEC
 181    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag plexus-utils : 3.0.22 SEC
 182    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag commons-beanutils : 1.9.3 SEC
 183    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag struts-core : 1.3.8-2.4.5 SEC
 184    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Logging/POMBA CLM: fix/address/red-flag handlebars-2.0.0.js SEC - upgrade to 4.0.0+
 185    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
 186
 187 **Security Notes**
 188    - all nodeports for Kibana, context builders and data-router are open by default for now
 189
 190 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/display/DW/El+Alto+Vulnerabilities>`_.
 191
 192 Quick Links:
 193    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 194
 195 **Upgrade Notes**
 196       None
 197
 198 **Deprecation Notes**
 199       None
 200
 201 **Other**
 202       None
 203
 204 Version: 4.0.0 Dublin Release
 205 -----------------------------
 206 Dublin
 207 ------
 208    - logging-analytics Version: 1.2.6
 209
 210 :Release Date: 2019-06-18
 211
 212 **New Features**
 213
 214 **Bug Fixes**
 215
 216 **Known Issues**
 217
 218 **Security Notes**
 219    - LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64008625>`_.
 220
 221 Quick Links:
 222         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 223
 224         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 225
 226         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=51282493>`_
 227
 228 **Upgrade Notes**
 229       None
 230
 231 **Deprecation Notes**
 232       None
 233
 234 **Other**
 235       None
 236
 237
 238 POMBA Release Notes
 239 -------------------
 240 POMBA is sub-project of the Logging Enhancements Project.
 241
 242 Dublin
 243 ------
 244    - pomba-audit-common Version: 1.4.0
 245    - pomba-aai-context-builder Version: 1.4.0
 246    - pomba-context-aggregator Version: 1.4.0
 247    - pomba-network-discovery-context-builder Version: 1.4.0
 248    - pomba-sdc-context-builder Version: 1.4.0
 249    - pomba-sdnc-context-builder Version: 1.4.0
 250
 251 :Release Date:  2019-06-18
 252
 253 **New Features**
 254    - Version 2 of the audit common model
 255    - Initial release of SDNC context builder
 256
 257 **Bug Fixes**
 258
 259
 260 **Known Issues**
 261
 262    - `LOG-1017 <https://jira.onap.org/browse/LOG-1017>`_ Violations are thrown on attributes that are same (or missing)
 263    - `LOG-1016 <https://jira.onap.org/browse/LOG-1016>`_ When comparing attributes from multiple sources, violations thrown do not accurately show the issue.
 264    - `LOG-836 <https://jira.onap.org/browse/LOG-836>`_ Logging/POMBA CLM: fix/address/red-flag glassfish bean-validator-2.4.0-b34.jar SEC
 265    - `LOG-874 <https://jira.onap.org/browse/LOG-874>`_ Logging CLM: fix/address/red-flag License org.json:json-20140107.jar
 266    - `LOG-832 <https://jira.onap.org/browse/LOG-832>`_ Logging/POMBA CLM: fix/address/red-flag SEC jackson-databind-2.4.5.jar - auditcommon - even 2.9.7 is still red
 267    - `LOG-831 <https://jira.onap.org/browse/LOG-831>`_ Logging/POMBA CLM: fix/address/red-flag License javax.jms:jms-1.1.jar
 268    - `LOG-769 <https://jira.onap.org/browse/LOG-769>`_ POMBA aai ctx pod reports HD full - but DF shows HD is OK
 269    - `LOG-826 <https://jira.onap.org/browse/LOG-826>`_ Logging/POMBA CLM: fix/address/red-flag jackson-databind-2.8.11.3 SEC
 270    - `LOG-1060 <https://jira.onap.org/browse/LOG-1060>`_ Logging CLM: fix/address/red-flag jackson-databind-2.8.6 SEC
 271    - `LOG-1061 <https://jira.onap.org/browse/LOG-1061>`_ POMBA-AUDIT-COMMON CLM: fix/address/red-flag jackson-databind-2.4.5 SEC
 272    - `LOG-1063 <https://jira.onap.org/browse/LOG-1063>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag plexus-utils : 3.0.22 SEC
 273    - `LOG-1064 <https://jira.onap.org/browse/LOG-1064>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag commons-beanutils : 1.9.3 SEC
 274    - `LOG-1062 <https://jira.onap.org/browse/LOG-1062>`_ POMBA-SDNC-CONTEXT-BUILDER CLM: fix/address/red-flag struts-core : 1.3.8-2.4.5 SEC
 275    - `LOG-827 <https://jira.onap.org/browse/LOG-827>`_ Logging/POMBA CLM: fix/address/red-flag handlebars-2.0.0.js SEC - upgrade to 4.0.0+
 276    - `LOG-830 <https://jira.onap.org/browse/LOG-830>`_ Logging/POMBA CLM: fix/address/red-flag License org.json:json-20140107.jar
 277
 278 **Security Notes**
 279    - all nodeports for Kibana, context builders and data-router are open by default for now
 280
 281 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64008625>`_.
 282
 283 Quick Links:
 284    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 285
 286 **Upgrade Notes**
 287       None
 288
 289 **Deprecation Notes**
 290       None
 291
 292 **Other**
 293       None
 294
 295 Version: 3.0.1 Casablanca Release
 296 ---------------------------------
 297 Casablanca
 298 -----------
 299    - logging-analytics Version: 1.2.6
 300
 301 :Release Date: 2019-02-08
 302
 303 **New Features**
 304    - kubernetes installation upped to 1.11.5 in the Rancher 1.6.25 RI
 305    - NFS support for AWS EFS
 306
 307 **Bug Fixes**
 308    - `LOG-837 <https://jira.onap.org/browse/LOG-837>`_ Logging/POMBA CLM: fix/address/red-flag spring-mvc-5.1.2 pulls in spring-web-5.0.9
 309
 310 **Known Issues**
 311
 312    - `LOG-376 <https://jira.onap.org/browse/LOG-376>`_ Logstash load balancing is asymmetric wherever AAI is run
 313    - `LOG-895 <https://jira.onap.org/browse/LOG-895>`_ Upgrade Rancher to 1.6.25 to address CVE-2018-1002105 and move to Kubernetes 1.11.5 (server side)
 314
 315 **Security Notes**
 316
 317 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_.
 318
 319 Quick Links:
 320         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 321
 322         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 323
 324         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_
 325
 326 **Upgrade Notes**
 327       None
 328
 329 **Deprecation Notes**
 330       None
 331
 332 **Other**
 333       None
 334
 335
 336 POMBA Release Notes
 337 -------------------
 338 POMBA is sub-project of the Logging Enhancements Project.
 339
 340 Casablanca
 341 ----------
 342    - pomba-audit-common Version: 1.3.2
 343    - pomba-aai-context-builder Version: 1.3.2
 344    - pomba-context-aggregator Version: 1.3.4
 345    - pomba-network-discovery-context-builder Version: 1.3.1
 346    - pomba-sdc-context-builder Version: 1.3.2
 347
 348 :Release Date:  2019-02-08
 349
 350 **New Features**
 351    - Version 1 of the audit common model
 352    - Initial release of context aggregator and 3 context builders
 353
 354 **Bug Fixes**
 355
 356    - `LOG-892 <https://jira.onap.org/browse/LOG-892`_ PORT - POMBA Network Discovery Context Builder does not log
 357
 358 **Known Issues**
 359
 360    - `LOG-913 <https://jira.onap.org/browse/LOG-913>`_ POMBA: 1 of 11 pods failing on sequenced startup on 3.0.0-ONAP - pomba is 22 on the order - looks timing related
 361    - `LOG-950 <https://jira.onap.org/browse/LOG-950>`_ LOG-950 upped the numbers from 10 to 30 – for intermittent deploy timing – this is an issue for several projects since 3.0.0-ONAP - the solution is a sequenced 5h deploy via `cd.sh <https://git.onap.org/logging-analytics/tree/deploy/cd.sh#n228>`_ and/or better vms for now until the `dependencies <https://wiki.onap.org/display/DW/Log+Streaming+Compliance+and+API#LogStreamingComplianceandAPI-DeploymentDependencyTree-Containerlevel>`_ and jobs are refactored into helm hooks
 362
 363 **Security Notes**
 364    - all three nodeports for kibana, context builder and data-router are open by default for now
 365
 366 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 367
 368 Quick Links:
 369    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 370
 371 **Upgrade Notes**
 372       None
 373
 374 **Deprecation Notes**
 375       None
 376
 377 **Other**
 378       None
 379
 380
 381 Version: 1.2.2 Casablanca
 382 -------------------------
 383
 384 :Release Date: 2018-11-30
 385
 386 **New Features**
 387    - Demo slf4j library with marker/mdc support along with kubernetes, docker, war support projects.
 388
 389 **Bug Fixes**
 390
 391
 392 **Known Issues**
 393    - `Logstash load balancing is asymmetric wherever AAI is run <https://jira.onap.org/browse/LOG-376>`_
 394
 395 **Security Notes**
 396
 397 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_.
 398
 399 Quick Links:
 400         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 401
 402         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 403
 404         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=45307852>`_
 405
 406 **Upgrade Notes**
 407       None
 408
 409 **Deprecation Notes**
 410       None
 411
 412 **Other**
 413       None
 414
 415
 416 POMBA Release Notes
 417 -------------------
 418 POMBA is sub-project of the Logging Enhancements Project.
 419
 420 Casablanca
 421 ----------
 422    - pomba-audit-common Version: 1.3.1
 423    - pomba-aai-context-builder Version: 1.3.1
 424    - pomba-context-aggregator Version: 1.3.3
 425    - pomba-network-discovery-context-builder Version: 1.3.0
 426    - pomba-sdc-context-builder Version: 1.3.1
 427
 428
 429 --------------
 430
 431 :Release Date: 2018-11-15
 432
 433 **New Features**
 434    - Version 1 of the audit common model
 435    - Initial release of context aggregator and 3 context builders
 436
 437 **Bug Fixes**
 438
 439
 440 **Known Issues**
 441
 442
 443 **Security Notes**
 444    - all three nodeports for kibana, context builder and data-router are open by default for now
 445
 446 POMBA code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 447
 448 Quick Links:
 449    - `POMBA project page <https://wiki.onap.org/display/DW/POMBA>`_
 450
 451 **Upgrade Notes**
 452       None
 453
 454 **Deprecation Notes**
 455       None
 456
 457 **Other**
 458       None
 459
 460 Version: Beijing
 461 ----------------
 462
 463 :Release Date: 2018-06-07
 464
 465 **New Features**
 466    - Logstash is a daemonset (clustered at 1 container per VM)
 467    - `The following applications send logs to the ELK stack - <https://jira.onap.org/browse/LOG-230>`_
 468
 469 **Bug Fixes**
 470
 471
 472 **Known Issues**
 473    - Logstash load balancing is asymmetric
 474
 475 **Security Notes**
 476    - all three nodeports for logstash, elasticsearch and kibana are open by default for now
 477
 478 LOG code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The LOG open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_.
 479
 480 Quick Links:
 481         - `LOG project page <https://wiki.onap.org/display/DW/Logging+Enhancements+Project>`_
 482
 483         - `Passing Badge information for LOG <https://bestpractices.coreinfrastructure.org/en/projects/1578>`_
 484
 485         - `Project Vulnerability Review Table for LOG <https://wiki.onap.org/pages/viewpage.action?pageId=28378692>`_
 486
 487 **Upgrade Notes**
 488       None
 489
 490 **Deprecation Notes**
 491       None
 492
 493 **Other**
 494       Note: there was no released artifacts under 1.2.2 for Beijing - release was pushed to Casablanca
 495
 496
 497
 498 Version: 1.0.0
 499 --------------
 500
 501 :Release Date: 2017-11-16
 502
 503 **New Features**
 504
 505 This release adds Elastic Stack analytics deployment to OOM, aligns logging provider configurations, and fixes issues with the propagation of transaction IDs and other contextual information.
 506
 507     - `LOG-1 <https://jira.onap.org/browse/LOG-1>`_ Transaction ID propagation.
 508     - `LOG-2 <https://jira.onap.org/browse/LOG-2>`_ Standardized logging provider configuration.
 509     - `LOG-3 <https://jira.onap.org/browse/LOG-3>`_ Elastic Stack reference analytics pipeline.
 510     - `LOG-4 <https://jira.onap.org/browse/LOG-4>`_ Transaction ID conventions.
 511
 512 **Bug Fixes**
 513
 514     - `LOG-64 <https://jira.onap.org/browse/LOG-64>`_ Logger field has a length restriction of 36 which needs a fix.
 515     - `LOG-74 <https://jira.onap.org/browse/LOG-74>`_ Extract componentName from the source path of log files.
 516
 517 **Known Issues**
 518
 519     - `LOG-43 <https://jira.onap.org/browse/LOG-43>`_
 520       Unable to find logback xml for DMaaP component.
 521       Logging file for DMaaP is available in this jar "eelf-core-0.0.1.jar".
 522
 523     - `LOG-65 <https://jira.onap.org/browse/LOG-65>`_
 524       SO Logging Provider Config File need correction in Timestamp MDC.
 525       Logging provider configuration file for SO i.e. logback files requires correction in Timestamp MDC for correct MDC generation in log.
 526       The current pattern prints Timestamp as 2017-09-25 05:30:07,832. Expected  pattern is - 2017-09-25T05:30:07.832Z.
 527
 528     - `LOG-80 <https://jira.onap.org/browse/LOG-80>`_ Kibana does not seem to show all the logs from application pods.
 529       The content of the log directories (/var/log/onap/mso) are not 100% reflected in Kibana.
 530
 531     - `LOG-88 <https://jira.onap.org/browse/LOG-88>`_
 532       SO log format error during Health Check - blocking tracking jira for SO-246.
 533
 534 **Security Issues**
 535       None
 536
 537 **Upgrade Notes**
 538       None
 539
 540 **Deprecation Notes**
 541       None
 542
 543 **Other**
 544       None
 545
 546 ===========
 547
 548 End of Release Notes