Kohn Release Key Updates

The R11 Kohn release of ONAP includes updates to the schema and edge rules.

 AAI is serving v27 as the latest version of the REST APIs, and has support for v25.

- Model updates made on the following nodes for changes to attributes or indexing, present in v27
    * User Network Interfaces (uni)
    * Route target
    * Network Route
    * Bgp neighbor
    * Vpn binding
    * Lag interface
    * Physical interface
    * Logical interface

- Edge rule changes include
    * UPDATE collection > service instance edge label and multiplicity change
    * ADD configuration > p-interface
    * ADD collection>endpoint
    * ADD collection>configuration
    * ADD collection>aggregate-route
    * ADD collection>parameter-list
    * ADD collection>policy-key-term
    * ADD collection>policy-map-member
    * ADD collection>rule
    * ADD collection>profile
    * ADD collection>policy
    * ADD collection>l3-network
    * ADD collection>vpn-binding
    * ADD collection>community-list
    * ADD collection>object-group
    * ADD p-interface>object-group

CDS

• General
  • Added endpoint for deleting templates
  • Upgrade spring boot parent and hazelcast
    • Change of Kotlin version and other maven dependencies
• Resource Resolution Enhancements
  • Enabled deleting resources by lastN occurrences
  • Template headers, path, and outputs mapping in the rest processor
  • The empty Output mapping means for JSON/MAP all keys and for other types extracting of primitive
  • The empty response is mapped to the value is output mapping is empty (but not null)
  • Open resolution processors for in-CBA customization
  • Improve resolution tests verification
  • Use RestProcessor for testing RestProcessor
  • Added component for deleting resources and templates
  • Fixed enrichment for multiplicated assignments
  • Fixed the transform-templating for referenced complex types
  • Creation of dynamic data-type using all workflow steps
• Rest Clients improvements
  • Timeouts supported
  • Headerless clients creation
  • Better handling of http response without body
• UAT testing changes
  • UatExecutor made accessible inside a CBA JUnit test
  • Registration of custom rest client for testing
  • UATExecutor support for k8sConnectionPlugin
  • SpyPostInterceptor in UatExecutor collects now all responses

CCSDK/O-RAN: A1 Policy Functions

• Continued maturing A1-Policy controller functions:
  • Support updated RESTCONF spec (RFC 8040) between A1 PMS & A1 Adapter
  • Numerous 3PP dependency updates
  • Support custom south-bound adapters for custom A1-AP protocol versions
  • Deprecate DMaaP NBI
  • Improved logging / Tracing / Metrics
  • Improved logging/debug-ability in CSIT tests
  • Support JWT access tokens - for use in service mesh environments.
  • Additional SONAR reporting for A1-PMS service

• Maintaining synchronisation state for each cm handle.
• (Configurable) Data synchronisation for ncmp:operational datastore.
• Notifications on cm handle state changes.
• Asynchronous request Handling.
• DMI cm handle Audit.
• Performance Improvements (ongoing).

• User can query the state of a cm handles and retrieve cm handles in a given state. 
• Users can register (listen) for cm handle state changes.
• Users can now control which cm handles are cached which aren't.
• Users can execute CRUD operations asynchronously.
• Users can find out which cm handles are managed by which DMI Plugin.

New Enhancements/Features

• DCAEGEN2-3148 5G SON use case enhancements for Kohn release
      - CL message for ANR modified to align with A1-based flow/support
• DCAEGEN2-3195 CCVPN Kohn Enhancements for Intent-based Cloud Leased Line and Transport Slicing
      - DCAE SDK alignment for SliceAnalysis MS & enhancing AAI interface for supporting IBN CL 
• DCAEGEN2-3194 Maintenance and Enhancement of Intent-driven Closed-loop Autonomous Networks
      - Slice Analysis Enhancement with AAI Interface/processing for CL notification
• DCAEGEN2-3119 Helm Transformation - Post migration
  • DCAE Common Template improvements
  • Removed Cloudify and associated platform component charts 
  • Removed Consul/CBS API dependency from each DCAE MS, enabling independent config management via respective charts
• DCAEGEN2-2975 VES 7.2.1 support for DCAE Microservices
       - TCAgen2 enhanced to support VES 7.2.1
• DCAEGEN2-3037 AAF certificate dependency removal
      - DFC Enhanced to support additional property to disable certificates checks
• DCAEGEN2-3030 DMAAP SDK standardization for DCAE Microservices
      - SliceAnalysis MS, SON-Handler MS switched to use DMAAP SDK

Non-Functional

• DCAEGEN2-3089 - Sonarcoverage improvements for DCAE components - SliceAnalysis mS, SNMPTrap, TCA-gen2, SON-Handler, KPi-MS, Mapper, RESTConf  (meeting 80% or more coverage)
• DCAEGEN2-3209 - CII Badging improvements (Silver badge completion)
• DCAEGEN2-3196 - Vulnerability updates for several DCAE MS (TCA-gen2, DataFileCollector, HV-VES, RESTConf, VES, Mapper, PM-Mapper, PRH, SON-handler, KPI-MS, Slice-Analysis MS, DCAE-SDK, VES OpenAPI Manager)
• DCAEGEN2-3225 - SBOM Enablement for DCAE components  

1) Support evolution on Network Slicing, 5G SON, CCPVN & IBN usecases

2) Security enhancements addressing vulnerability updates, SBOM compliance, CII Badging improvement

3) OOM Chart simplification for DCAE project

Minor bug fixes.

Package upgrades, etc

• Migrated from Dropwizard to Springboot due to vulnerability issues.

deployment/noheat refactorization, fixes and updates:

• updated Ansible, Galaxy collections and Python libs to latest versions
• better Galaxy collections and Python libraries versions management
• added playbook to deploy Devstack
• added option to deploy Istio
• ability to set arbitrary overrides file
• added one playbook to deploy whole infrastructure (i.e. create OpenStack VMs in which Devstack, k8s and ONAP gets deployed)
• documentation updates

MSB apigateway performance improvement

Minor bug fixes.

Package upgrades, etc

Update of Infrastructure and tools versions to improve build and deployment time, as well as fix vulnerabilities:

• Kubernetes: 1.23.8
• Helm: 3.8.2
• Kubespray: 2.19 (used for automated deployment)

Initial Setup for "ONAP on ServiceMesh" deployment as basis for the London release:

• using Istio 1.14.1 as SM platform
• including Istio Ingress Gateway for external access
• modify 90% of ONAP component charts to support SeviceMesh
• Established daily deployment pipelines to test the SM setup (https://logs.onap.org/onap-integration/daily/onap-daily-dt-oom-sm-master/)

• Bug fix in DCAE client in HAS component

• Support for O1 and A1 Policy Payloads in the 5G SON use Case
  The 5G SON policy is updated to allow O1 and A1 Policy payloads to be passed to SDN-R. Now, policies can pass O1 and A1 Policy payloads.

• Native Kafka messaging bewtween Policy Framework components
  The Policy Framework can now be configured to use Kafka for asynchronous communication between PAP and PDPs and between CLAMP ACM Runtime and Participants. Kafka messaging is an alternative to using DMaaP MR for asynchronous messaging. The Policy Framework components are configured to use either DMaaP or Kafka messaging, with DMaaP being the default. This change is supported by APEX-PDP in this release and will be supported DROOLS-PDP and XACML-PDP in future releases.

• Support for Secured Database Communication
  Database communiction with MariaDB, MySql, or PostgreSQL can be configured to be secure. Secure database communication is introduced for API, PAP, DROOLS-PDP and XACML-PDP. Support for secure database communication will be introduced in CLAMP ACM in a future release.

• Support for MySql 8The Policy Framework can use MySql 8 for persistence in addition to MariaDb and Postgres. Interoperability with MySql 8 has been added for DB-MIGRATOR, API, PAP, DROOLS-PDP, XACML-PDP, and CLAM ACM.

• Support for Service Mesh
  All Policy Framework components and images support service mesh and are service mesh compatible. The OOM charts for all Policy Framework components have been updated to supprot configuration for Service Mesh. In addition, some minor bugs in startup scripts were fixed to allow HTTP or HTTPS to be configured on components.

• XACML-PDP improvements

  • Support for XACML 3.1 introduced

  • Exposure of application level metrics

  • Support for Postgres database as well as MariaDB

  • Support for DCAE TCAGEN2 monitoring app changes

  • Logging to standard output

  • XACML tutorial updated and improved

• DROOLS-PDP and DROOLS-Applications improvements

  • Latest Drools libraries supported

  • JDBC pooling libraries upgraded

• APEX-PDP Improvement

  • Support for event definitions in JSON as well as AVRO is added

  • Support for Metadata Set generation from the APEX CLI editor

  • Support for deserialization of messages encoded in Avro carried over Kafka

• Policy-Distribution Improvements

  • Configuration added to allow distribution of CLAMP ACM compositions

  • Policy distribution re-synchs if SDC is reinstalled

• CLAMP Improvements

  • Instance properties can be edited

  • Helm repository can be configured in the Kubernetes participant

• System Attribute Improvements
  Demo Grafana dashboards available for policy framework components
  All parameters in Helm Charts have default values
  Springboot dependency handling improved in policy-parent
  CSITs amended to use HTTP rather than HTTPS and to use released image versions from Nexus when snapshot image versions are not available
  Updates to database drivers to latest versions

• Application Service Descriptor
  • Onboarding ASD CSARs
  • Transformation to ONAP SDC CSAR
  • Model updates to support ASD TOSCA types
  • Support in SDC TOSCA parser
• Deletion of archived assets
  • Deletion of the following asset types:
    • VSP
    • VLM
    • VFC
    • VF
    • Service
  • Must be archived to be available for deletion
  • Must not be referenced in another asset (e.g. VF used in Service cannot be deleted)
• Improved support for TOSCA constructs
  • Editing of interfaces on VFCs
  • List<Map<String, String> properties
  • Instance count
  • Timestamp properties
• Support for TOSCA value expressions using TOSCA functions
  • Support for following TOSCA functions:
    • get_input
    • get_property
    • get_attribute
    • concat
  • Support for raw yaml value
• Improved support for import of services
  • Following in a service definition can now be successfully imported
    • Node template node filters
    • Outputs
    • Input metadata
    • Group instances
    • Policy instances
    • Inputs
    • Node template relationship templates
    • Node template interface definitions
    • Value expressions using TOSCA functions
• Application metrics

Upgrade to OpenDaylight Sulfur

Planning for continuity of RESTCONF Bierman-draft02 interfaces, which will be removed in next OpenDaylight release (Chlorine)

SO improved flows around the CNF orchestration, CNF Upgrade, and minor bug fixes around the slicing use case.

It also includes Security and minor functional bug fixes.

In details:

• Create multiple PNF instances in the same request
• Support for long-running CDS process
• Recursive orchestration Support
  • Deployment of composite service instance with sub-service instances
  • Deletion of composite service instance with sub-service instances
  • AAI relations created
  • Processing priority supported for nested services
  • Rollback scenario for Recursive orchestration
• CNF Upgrade Workflow with Da-2 supported
  • Change of the SDC model with Helm chart
  • Config assign run before an upgrade and config deploy after
  • In k8s helm upgrade, alike operation is being run

Enhancement of NLP platform and model:

• Add PyTorch framework to support more models (TenserFlow framework has been added since Honolulu Release).   
• Improve the accuracy rate of intent translation with multiple models. 
• Enhance the function of STT (speech to text).

Support general intent model and general intent interface:

• Add intent analysis micro service in UUI. 
• Add intent format input in UUI portal.

Use common postgresql chart instead of embedding database server.

• Enhance NLP platform and model.
• Provide general intent model and general intent interface to ensure that all intents(especially machine-machine intents) operate according to the same expression and process. 
• Use a separate Postgres docker container to make the system more secure.

Key updates for 5G SON use case include:

• Modification of RAN control loop flows so that we have specific control loop flows for O1-based and A1-based RAN actions. This includes changes in Policy, SDN-R, SON-Handler MS, and RAN-Sim.
• Enhancement of RAN-Sim to support A1-based action with new modules for (a) A1 Termination, (b) ran-app to provide xApp/Near-RT RIC abstraction. The A1 Termination is harmonized with OSC work, and the ran-app has an interface to the RAN-Sim controller and simulated RAN NFs.
• Modification of Control Loop message formats and policies to direct O1 and A1 flows appropriately

E2E Network Slicing

The key updates for E2E network slicing in Kohn release include:

• Slice Analysis MS enhancement to support real-time intent listening using DCAE SDK dmaap-client lib
• KPI Computation MS enhancement to support new KPI reporting to UUI, KPIs spanning multiple resources and error handling for missing counter
• Contribution to DCAE R11 Global requirements 

Enhanced and robust KPI computation. Support for IBN based slicing in future releases.

PNF software version onboarding

Key updates for Intent-driven Closed-loop Autonomous Networks with CCVPN usecase:

• Enhance the architecture of Intent-driven Closed-loop Autonomous Networks with intent interaction closed-loop and intent guarantee closed-loop.
• Enhance the AI ability with PyTorch/TensorFlow Frameworks for intent translation by nature language processing.

PNF support

1. Python and Java updates
2. Upgrade 3rd party packages
3. Improve OpenSSF (formerly CII) bading)
4. Logging framework (POC)
5. SBOM (POC)

1. Ensures ONAP includes most recent security updates for Python and Java
2. Removes known vulnerabilities from ONAP release
3. Improves the security of the ONAP release
4. Provides consistent logging and easier integration with SIEM
5. Adoption of key software supply chain security artifact