commit 5e13811e8bf8d551ffd32b666e083c793eb00f4f
author Vijay Venkatesh Kumar <vv770d@att.com> Tue Dec 14 11:41:36 2021 -0500
committer Vijay Venkatesh Kumar <vv770d@att.com> Tue Dec 14 11:41:44 2021 -0500
tree 9cc26c53f1fd358aef0c699a01d86590b4b4af3d
parent 0ea903d6d6c9b7e52eb3fd57ba5e3d1f8273b439

[DCAE] Log4j vulnerability fix

Disable explicitly the msg format lookups

Change-Id: I7485d5de818bd7897458723aaf5b3357a8ccc1dd
Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com>
Issue-ID: DCAEGEN2-3022

kubernetes/dcaegen2-services/components/dcae-restconf-collector/values.yaml

diff --git a/kubernetes/dcaegen2-services/components/dcae-restconf-collector/values.yaml b/kubernetes/dcaegen2-services/components/dcae-restconf-collector/values.yaml
index ad29e33..66c781c 100644
--- a/kubernetes/dcaegen2-services/components/dcae-restconf-collector/values.yaml
+++ b/kubernetes/dcaegen2-services/components/dcae-restconf-collector/values.yaml
@@ -107,6 +107,10 @@
   uid: *controllerCredsUID
   key: password
 
+# application environments
+applicationEnv:
+  LOG4J_FORMAT_MSG_NO_LOOKUPS: 'true'
+
 # Initial Application Configuration
 applicationConfig:
   collector.rcc.appDescription: DCAE RestConf Collector Application

kubernetes/dcaegen2-services/components/dcae-ves-collector/values.yaml

diff --git a/kubernetes/dcaegen2-services/components/dcae-ves-collector/values.yaml b/kubernetes/dcaegen2-services/components/dcae-ves-collector/values.yaml
index f863ff8..31007f2 100644
--- a/kubernetes/dcaegen2-services/components/dcae-ves-collector/values.yaml
+++ b/kubernetes/dcaegen2-services/components/dcae-ves-collector/values.yaml
@@ -107,6 +107,7 @@
 # application environments
 applicationEnv:
   CBS_CLIENT_CONFIG_PATH: '/app-config-input/application_config.yaml'
+  LOG4J_FORMAT_MSG_NO_LOOKUPS: 'true'
 
 # initial application configuration
 applicationConfig:

kubernetes/dcaegen2-services/components/dcae-ves-mapper/values.yaml

diff --git a/kubernetes/dcaegen2-services/components/dcae-ves-mapper/values.yaml b/kubernetes/dcaegen2-services/components/dcae-ves-mapper/values.yaml
index a7186a4..93214d3 100644
--- a/kubernetes/dcaegen2-services/components/dcae-ves-mapper/values.yaml
+++ b/kubernetes/dcaegen2-services/components/dcae-ves-mapper/values.yaml
@@ -70,6 +70,9 @@
       port: 80
       port_protocol: http
 
+# application environments
+applicationEnv:
+  LOG4J_FORMAT_MSG_NO_LOOKUPS: 'true'
 
 # Initial Application Configuration
 applicationConfig: