CPS Release Notes

Contents

• CPS Release Notes

  • Version: 3.0.1

  • Version: 3.0.0

  • Version: 2.0.4

  • Version: 2.0.3

  • Version: 2.0.2

  • Version: 2.0.1

  • Version: 2.0.0

  • Version: 1.0.1

  • Version: 1.0.0

Version: 3.0.1

CPS Project
Docker images	onap/cps-and-ncmp:3.0.1
Release designation	3.0.1 Jakarta
Release date	2022 April 28

Bug Fixes

• CPS-961 Updated ANTLR compiler version to 4.9.2 to be compatible with runtime version

Version: 3.0.0

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:3.0.0
Release designation	3.0.0 Jakarta
Release date	2022 March 15

Features

• CPS-559 Define response objects (schemas) in cps-ncmp

• CPS-636 Update operation for datastore pass through running

• CPS-638 Delete operation for datastore pass through running

• CPS-677 Support ‘public’ Cm Handle Properties

• CPS-741 Re sync after removing cm handles

• CPS-777 Ensure all DMI operations use POST method

• CPS-780 Add examples for parameters, request and response in openapi yaml for cps-core

• CPS-789 CPS Data Updated Event Schema V2 to support delete operation

• CPS-791 CPS-Core sends delete notification event

• CPS-817 Create Endpoint For Get Cm Handles (incl. public properties) By Name

• CPS-837 Add Remove and Update properties (DMI and Public) as part of CM Handle Registration update

Bug Fixes

• CPS-762 Query cm handles for module names returns incorrect cm handle identifiers

• CPS-788 Yang Resource formatting is incorrect

• CPS-783 Remove cm handle does not completely remove all cm handle information

• CPS-841 Upgrade log4j to 2.17.1 as recommended by ONAP SECCOM

• CPS-856 Retry mechanism not working for concurrent CmHandle registration

• CPS-867 Database port made configurable through env variable DB_PORT

• CPS-886 Fragment handling decreasing performance for large number of cmHandles

• CPS-887 Increase performance of cmHandle registration for large number of schema sets in DB

• CPS-892 Fixed the response code during CM-Handle Registration from 201 CREATED to 204 NO_CONTENT

• CPS-893 NCMP Java API depends on NCM-Rest-API (cyclic) through json properties on Java API

Known Limitations, Issues and Workarounds

System Limitations

Null can no longer be passed within the dmi plugin service names when registering a cm handle, as part of CPS-837 null is now used to indicate if a property should be removed as part of cm handle registration.

Known Vulnerabilities

None

Workarounds

Instead of passing null as a value within the dmi plugin service names, remove them from the request completely, or pass an empty string as the value if you do not want to include names for these values.

Security Notes

Fixed Security Issues

None

Known Security Issues

None

Version: 2.0.4

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:2.0.4
Release designation	2.0.4 Istanbul
Release date	2022 Feb 09

Bug Fixes

• CPS-879 Fix docker compose for csit test.

• CPS-873 Fix intermittent circular dependency error when the application starts.

Version: 2.0.3

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:2.0.3
Release designation	2.0.3 Istanbul
Release date	2022-07-01

Bug Fixes

• CPS-841 Update log4j version to 2.17.1 due to security vulnerability

Version: 2.0.2

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:2.0.2
Release designation	2.0.2 Istanbul
Release date	2021-16-12

Bug Fixes

• CPS-820 Update log4j version due to security vulnerability

Version: 2.0.1

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:2.0.1
Release designation	2.0.1 Istanbul
Release date	2021-14-10

Bug Fixes

• CPS-594 SQL ConstraintViolationException when updating the list node element using PATCH List node API

• CPS-653 cmHandleProperties not supported by dmi in fetch modules

• CPS-673 Improvement and cleanup for CPS Core charts

• CPS-691 NCMP no master index label on index documentation page

Known Limitations, Issues and Workarounds

System Limitations

Limitations to the amount of child nodes that can be added to the fix above. The current limit is 3.

Known Vulnerabilities

• CPS-725 fix sample docker compose of cps/ncmp and onap dmi plugin

Workarounds

Add recursive method to save list node data to loop through all corresponding child nodes.

Security Notes

Fixed Security Issues

• CPS-581 Remove security vulnerabilities

Known Security Issues

None

Version: 2.0.0

Abstract

This document provides the release notes for Istanbul release.

Release Data

CPS Project
Docker images	onap/cps-and-ncmp:2.0.0
Release designation	2.0.0 Istanbul
Release date	2021-14-09

Features

• Register DMI-Plugins with NCMP for CM Handle registrations.

• Update, Create and Remove CM Handles.

• Add support for retrieving and writing CM Handle data through NCMP datastores.

• Automatic retrieval and caching of model information for CM Handles within NCMP.

Deliverables

Software Deliverables

Repository	SubModules	Version & Docker Image (if applicable)
cps		onap/cps-and-ncmp-proxy:2.0.0

Bug Fixes

• CPS-310 Data schema migration from Honolulu to Istanbul is failing

• CPS-316 Xpath cannot be created for augmentation data node

• CPS-336 Ends-with functionality in cpsPath does not conform with standard xPath behavior

• CPS-345 Leaf String value comparison matches mix of single and double quotes

• CPS-357 cps-review-verification-maven-master Jenkins job is failing when running csit test

• CPS-367 Get descendent does not support xpaths that end in list values

• CPS-377 Init ran model validation is failing error details are not provided

• CPS-422 REST 404 response returned instead of 400 for POST/PUT/PATCH request types

• CPS-450 Datanode query using full path to node causes NPE

• CPS-451 cps-ran-schema-model@2021-01-28.yang missing root container

• CPS-464 Request to update node leaves (patch) responds with Internal Server Error

• CPS-465 Request to update node leaves (patch) responds with json parsing failure

• CPS-466 Concurrent requests to create schema sets for the same yang model are not supported

• CPS-479 Get Nodes API does not always return the object from the root

• CPS-500 Special Character Limitations of cpsPath Queries

• CPS-501 Put DataNode API has missing transaction and error handling for concurrency issues

• CPS-524 Issue with CPSData API to add an item to an existing list node

• CPS-560 Response from cps query using text() contains escape characters

• CPS-566 Can’t access grandparent node through ancestor axis

• CPS-573 /v1/ch/PNFDemo1/modules returning 401 unauthorised.

• CPS-587 cps-ncmp-service NullpointerException when DmiPluginRegistration has no additionProperties

• CPS-591 CPS-Core Leaf stored as integer is being returned from DB as float

• CPS-601 CPS swagger-ui does not show NCMP endpoints

• CPS-616 NCMP base path does not conform to agreed API URL

• CPS-630 Incorrect information sent when same anchor is updated faster than notification service processes

• CPS-635 Module Resource call does not include body

This document provides the release notes for Istanbul release.

Summary

Following CPS components are available with default ONAP/CPS installation.

• Platform components

  • CPS (Helm charts)

• Service components

  • CPS-NCMP

  • CPS-Temporal

  • DMI-Plugin

• Additional resources that CPS utilizes deployed using ONAP common charts

  • Postgres Database

Below service components (mS) are available to be deployed on-demand.

• CPS-TBDMT

Under OOM (Kubernetes) all CPS component containers are deployed as Kubernetes Pods/Deployments/Services into Kubernetes cluster.

Known Limitations, Issues and Workarounds

System Limitations

Limitations to the amount of child nodes that can be added to the fix above. The current limit is 3.

Known Vulnerabilities

• CPS-594 SQL ConstraintViolationException when updating the list node element using PATCH List node API

• CPS-653 cmHandleProperties not supported by dmi in fetch modules

• CPS-673 Improvement and cleanup for CPS Core charts

Workarounds

Add recursive method to save list node data to loop through all corresponding child nodes.

Security Notes

Fixed Security Issues

• CPS-249 Exception stack trace is exposed

Known Security Issues

• CPS-581 Remove security vulnerabilities

Test Results

• Integration tests

Version: 1.0.1

Release Data

CPS Project
Docker images	onap/cps-and-nf-proxy:1.0.1
Release designation	1.0.1 Honolulu
Release date	2021-04-09

Bug Fixes

• CPS-706 Get moduleschema/yangresouce endpoint not working

• CPS-276 Improve error reporting for invalid cpsPath on Queries

• CPS-288 Move security configuration to the application module

• CPS-290 Internal Server Error when creating the same data node twice

• CPS-292 Detailed information is missing to explain why data is not compliant with the specified YANG model

• CPS-300 Not able to create data instances for 2 different anchors using the same model

• CPS-304 Use ONAP recommended base Java Docker image

• CPS-308 Not able to upload yang models files greater than 1MB

Security Notes

Fixed Security Issues

• CPS-249 Exception stack trace is exposed

Known Security Issues

• Security Waiver Security - Expose external endpoints with https

Version: 1.0.0

Abstract

This document provides the release notes for Honolulu release.

Summary

Following CPS components are available with default ONAP/CPS installation.

• Platform components

  • CPS (Helm charts)

• Service components

  • CPS Core

• Additional resources that CPS utilizes deployed using ONAP common charts

  • Postgres Database

Below service components (mS) are available to be deployed on-demand.

• CPS-TBDMT

Under OOM (Kubernetes) all CPS component containers are deployed as Kubernetes Pods/Deployments/Services into Kubernetes cluster.

Release Data

CPS Project
Docker images	Refer Deliverable
Release designation	1.0.0 Honolulu
Release date	2021-03-11

Features

Configuration Persistence Service is a model driven persistence solution for data described by YANG models. CPS has been driven by the needs of the E2E Networking Slicing use case. It currently supports basic (rw) persistence and simple queries. It also provides MVP support for network data access using simulated data.

Deliverables

Software Deliverables

Repository	SubModules	Version & Docker Image (if applicable)
cps		onap/cps-and-nf-proxy:1.0.0

Known Limitations, Issues and Workarounds

• CPS-249 Exception stack trace is exposed

• CPS-264 Unique timestamp is missing when tagging docker images.

• Methods exposed on API which are yet not implemented : deleteAnchor, getNodesByDataspace & deleteDataspace.

• CPS-465 & CPS-464 Update data node leaves API does not support updating a list element with compound keys.

System Limitations

None

Known Vulnerabilities

None

Workarounds

Documented under corresponding jira if applicable.

Security Notes

Fixed Security Issues

• CPS-167 -Update CPS dependencies as Required for Honolulu release

  • Upgrade org.onap.oparent to 3.2.0

  • Upgrade spring.boot to 2.3.8.RELEASE

  • Upgrade yangtools to 5.0.7

Known Security Issues

• Weak Crytography using md5

• Risk seen in Zip file expansion

Known Vulnerabilities in Used Modules

None

CPS code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive.

Test Results

• Integration tests

References

For more information on the ONAP Honolulu release, please see:

1. ONAP Home Page

2. ONAP Documentation

3. ONAP Release Downloads

4. ONAP Wiki Page

Quick Links:

• CPS project page

• Passing Badge information for CPS