blob: a0066565e6a3942bfc7c1a012d9c173244cdb7c9 [file] [log] [blame]
Chris Donley600f6792017-11-07 12:58:04 -08001.. This work is licensed under a Creative Commons Attribution 4.0 International License.
2.. http://creativecommons.org/licenses/by/4.0
Chris Donley1d4cdb12018-06-06 13:55:24 -07003.. Copyright 2017-2018 Huawei Technologies Co., Ltd.
Chris Donley600f6792017-11-07 12:58:04 -08004
5Release Notes
6=============
7
8.. note::
Chris Donleya3adf072017-11-09 15:17:45 -08009 VNF onboarding is a challenge across the industry because of the lack of a
10 standard format for VNFs.
11 This project provides an ecosystem for ONAP compatible VNFs by:
12
13 * developing tools for vendor CI/CD toolchains
14 * developing validation and testing tools
Chris Donley600f6792017-11-07 12:58:04 -080015
Victor Gao76cad782019-10-14 11:18:41 +080016
17Version: 1.4.0
18--------------
19
20
21:Release Date: 2019-10-07
22
23
24
25**New Features**
26 * TOSCA based VNF validation enabled for supporting OVP & CVC
27 * TOSCA based VNF compliance check based on some operators requirements
28 * SDC now integrated VNFSDK VTP on VNF validation
29 * ETSI SOL004 security check (CMS signature validation) enabled
30 * Code quality improvement(e.g. replace the Jackson to Gson, sonar issue fix)
31 * A C++ implement of VES spec 7.0.1 on ves-agent.
32
33**Bug Fixes**
34
35N/A
36
37**Known Issues**
38
39N/A
40
41**Security Notes**
42
43*Fixed Security Issues*
44
45*Known Security Issues*
46
47 * In default deployment VNFSDK (refrepo) exposes HTTP port 30297 outside of cluster. [`OJSI-154 <https://jira.onap.org/browse/OJSI-154>`_]
48 * CVE-2019-12126 - demo-vnfsdk-vnfsdk exposes JDWP port 8000 on localhost which allows to gain root privileges inside the container [`OJSI-88 <https://jira.onap.org/browse/OJSI-88>`_]
49
50*Known Vulnerabilities in Used Modules*
51
52**Upgrade Notes**
53
54N/A
55
56**Deprecation Notes**
57
58N/A
59
60**Other**
61
62N/A
63
64
kanagaraj Manickam k00365106871f1b62019-05-29 14:45:49 +053065Version: 1.3.0
66--------------
67
68
69:Release Date: 2019-05-31
70
71
72
73**New Features**
74 * VTP (VNF Test Platform) is enabled with scenario and test case execution management
Victor Gao76cad782019-10-14 11:18:41 +080075 * ONAP SDC is integrated with VTP for providing the validation as part of VSP on-boarding
kanagaraj Manickam k00365106871f1b62019-05-29 14:45:49 +053076 * CSAR validation is enabled with PNF and VNF compliance check for SOL004, SOL001 and VNFREQS
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +020077 *
kanagaraj Manickam k00365106871f1b62019-05-29 14:45:49 +053078
79**Bug Fixes**
80
81N/A
82
83**Known Issues**
84
85N/A
86
87**Security Notes**
88
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +020089*Fixed Security Issues*
90
91*Known Security Issues*
92
Krzysztof Opasiak482a0272019-06-04 02:04:34 +020093 * In default deployment VNFSDK (refrepo) exposes HTTP port 30297 outside of cluster. [`OJSI-154 <https://jira.onap.org/browse/OJSI-154>`_]
Krzysztof Opasiak4fd0e982019-06-04 02:05:05 +020094 * CVE-2019-12126 - demo-vnfsdk-vnfsdk exposes JDWP port 8000 on localhost which allows to gain root privileges inside the container [`OJSI-88 <https://jira.onap.org/browse/OJSI-88>`_]
Krzysztof Opasiak482a0272019-06-04 02:04:34 +020095
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +020096*Known Vulnerabilities in Used Modules*
97
kanagaraj Manickam k00365106871f1b62019-05-29 14:45:49 +053098**Upgrade Notes**
99
100N/A
101
102**Deprecation Notes**
103
104N/A
105
106**Other**
107
108N/A
109
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800110Version: 1.2.0
111--------------
112
113
114:Release Date: 2018-11-30
115
116
117
118**New Features**
119 * LFN CVC test support
120 * Introduce VTP (VNF Test Platform) framework for test
121 * Better integration with OPNFV Dovetail (VTP)
122 * Experimental integration with OPNFV Dovetail
123 * Preliminary implementation of VNF requirements
124 * Support CSAR packaging SOL-004 option 1 (CSAR with TOSCA-Metadata directory)
125 * Support HPA schema validation
126
127**Bug Fixes**
128
129N/A
130
131**Known Issues**
132
133N/A
134
135**Security Notes**
136
137VNFSDK code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The VNFSDK open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=45298880>`_.
138
139Quick Links:
140 - `VNFSDK project page <https://wiki.onap.org/display/DW/VNF+SDK+Project>`_
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +0200141
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800142 - `Passing Badge information for VNFSDK <https://bestpractices.coreinfrastructure.org/en/projects/1588>`_
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +0200143
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800144 - `Project Vulnerability Review Table for VNFSDK <https://wiki.onap.org/pages/viewpage.action?pageId=45298880>`_
145
146**Upgrade Notes**
147
148N/A
149
150**Deprecation Notes**
151
152N/A
153
154**Other**
155
156N/A
157
Chris Donley23a07502018-05-16 09:36:06 -0700158Version: 1.1.0
159--------------
160
161
Gildas Lanilis0b1f0322018-05-29 16:57:59 -0700162:Release Date: 2018-06-07
Chris Donley23a07502018-05-16 09:36:06 -0700163
164
165
166**New Features**
167 * Integration with SDC for VNF Onboarding
168 * Functional test support
169 * Incorporation of ICE tools for HEAT validation
170 * Experimental integration with OPNFV Dovetail
171 * Preliminary support for SOL-004
172 * Support for HTTPS
173
174**Bug Fixes**
175 * Fix localization support
176
177**Known Issues**
178
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800179N/A
180
Gildas Lanilis0b1f0322018-05-29 16:57:59 -0700181**Security Notes**
Chris Donley23a07502018-05-16 09:36:06 -0700182
Gildas Lanilisc214bd12018-05-30 10:53:20 -0700183VNFSDK code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The VNFSDK open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28377592>`_.
Gildas Lanilis0b1f0322018-05-29 16:57:59 -0700184
Gildas Lanilisc214bd12018-05-30 10:53:20 -0700185Quick Links:
186 - `VNFSDK project page <https://wiki.onap.org/display/DW/VNF+SDK+Project>`_
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +0200187
Gildas Lanilisc214bd12018-05-30 10:53:20 -0700188 - `Passing Badge information for VNFSDK <https://bestpractices.coreinfrastructure.org/en/projects/1588>`_
Krzysztof Opasiakb2e3bf62019-06-04 01:58:36 +0200189
Gildas Lanilisc214bd12018-05-30 10:53:20 -0700190 - `Project Vulnerability Review Table for VNFSDK <https://wiki.onap.org/pages/viewpage.action?pageId=28377592>`_
Chris Donley23a07502018-05-16 09:36:06 -0700191
192**Upgrade Notes**
193 * Updated to use Swagger for APIs
194
195**Deprecation Notes**
196
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800197N/A
Chris Donley23a07502018-05-16 09:36:06 -0700198
199**Other**
200
Gildas Lanilisfdcc4a32018-11-07 17:49:46 -0800201N/A
Chris Donley23a07502018-05-16 09:36:06 -0700202
Chris Donley600f6792017-11-07 12:58:04 -0800203Version: 1.0.0
204--------------
205
206
207:Release Date: 2017-11-16
208
209
210
211**New Features**
212
Chris Donleya3adf072017-11-09 15:17:45 -0800213The VNF SDK project delivers a set of tools designed to expand the VNF
214ecosystem for ONAP.
215
Chris Donley600f6792017-11-07 12:58:04 -0800216It provides:
217
218* VNF packaging tools, which bundle VNFs into an ONAP-compliant TOSCA CSAR file
Chris Donleya3adf072017-11-09 15:17:45 -0800219* VNF Marketplace, which sits between VNF suppliers and operators. It provides
220 a repository for uploading and downloading VNFs and tools to validate package
221 consistency.
Chris Donley600f6792017-11-07 12:58:04 -0800222* VES Collector that may optionally be incorporated into VNFs
223
224VNF SDK works with SDC to facilitate VNF Onboarding.
225
226**Bug Fixes**
Chris Donley24d831b2017-11-15 09:57:25 -0800227
Chris Donleya3adf072017-11-09 15:17:45 -0800228N/A
Chris Donley24d831b2017-11-15 09:57:25 -0800229
Chris Donley600f6792017-11-07 12:58:04 -0800230**Known Issues**
Chris Donley24d831b2017-11-15 09:57:25 -0800231
Manish Kumar08cdece2018-10-24 11:01:58 +0530232`VNFSDK-126 <https://jira.onap.org/browse/VNFSDK-126>`_ : The service 'GET /packageresource/csrs' ignores query parameters
Chris Donley24d831b2017-11-15 09:57:25 -0800233
Chris Donley600f6792017-11-07 12:58:04 -0800234**Security Issues**
Chris Donley24d831b2017-11-15 09:57:25 -0800235
Chris Donleya3adf072017-11-09 15:17:45 -0800236N/A
Chris Donley24d831b2017-11-15 09:57:25 -0800237
Chris Donley600f6792017-11-07 12:58:04 -0800238**Upgrade Notes**
Chris Donley24d831b2017-11-15 09:57:25 -0800239
Chris Donleya3adf072017-11-09 15:17:45 -0800240N/A
Chris Donley24d831b2017-11-15 09:57:25 -0800241
Chris Donley600f6792017-11-07 12:58:04 -0800242**Deprecation Notes**
Chris Donley24d831b2017-11-15 09:57:25 -0800243
Chris Donleya3adf072017-11-09 15:17:45 -0800244N/A
Chris Donley24d831b2017-11-15 09:57:25 -0800245
Chris Donley600f6792017-11-07 12:58:04 -0800246**Other**
Chris Donley24d831b2017-11-15 09:57:25 -0800247
Chris Donley1d4cdb12018-06-06 13:55:24 -0700248N/A