Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Project NameEnter the name of the project
Target Release NameGuilin 
Project Lifecycle StateIncubation. Refer to ONAP Charter, section 3.3 Project Lifecycle for further information
Participating Company AT&T, Nokia, Ericsson, Wipro,  ChinaMobile, T-Mobile,   Huawei?

Scope

What is this release trying to address?

...

REQ#DescriptionTSC PriorityDCAE Commit StatusDCAE Impact AssesmentDCAE JIRA #
REQ-380ONAP container repository (nexus) must not contain upstream docker imagesMUST HAVEYES

Add explicit references to dockerhub or nexus to all images  

Commitment based on Samsung, AT&T

DCAEGEN2-2322
REQ-379ONAP projects must use only approved and verified base images for their containersMUST HAVEStretch-goal

HIGH RISK - LIST NOT CONFIRMED + MULTIPLE DCAE COMPONENT IMPACT
https://wiki.onap.org/display/DW/Database%2C+Java%2C+Python%2C+Docker%2C+Kubernetes%2C+and+Image+Versions

1) Approved base image for NodeJS TBC
2) Policy-handler base image (python:3.6) + python:3.7-alpine
3) Cloudify base image (Community) support only 3.6
4) Bootstrap (centOS) + cloudify cli may not be compatiable alpine (python image is possible)
5) MOD components
6) NiFi - apache/nifi-registry:0.5.0


Commitment : Multiple companies

DCAEGEN2-2323 
REQ-374ONAP shall use STDOUT for logs collectionPTLStrech-goalMultiple platform components impacts (CBS, DH, PH, Cloudify not complain). May need a generic way to map filebeat container o/p into std out. 
(Long- Stretch goal depending on OOM team support 
DCAEGEN2-2324
REQ-373ONAP must complete update of the Python language (from 2.7 -> 3.8)MUST HAVEYES

Per TSC 2.7->3.8 important; 3.7-3.8 (nice to have) 

Except Cloudify and SNMPTrap - all other DCAE components will be migrated to 3.8. SECCOM approved exception on 7/3 (refer jira)

Commitment based on T-Mobile

DCAEGEN2-2292
REQ-366Containers must crash properly when a failure occursMUST HAVEYES

MEDIUM RISK - Need further assessment on DCAE components impacted 

Commitment based on Ericsson?

DCAEGEN2-2326
REQ-365Containers must have no more than one main processMUST HAVEYES

MEDIUM RISK - Need further assessment on DCAE components impacted 

Exception required for Cloudify due to upstream dependency. 

Commitment based on Ericsson?

DCAEGEN2-2327
REQ-364Replace NodePorts with ingress controller as a default deployment optionPTLStrech-goal

Need to be create DCAE jira if OOM team support is confirmed  (may just need to update your tests to use urls instead of IPs)

Impact : DCAE Platfrom helm charts + DCAE Service components deployment (k8splugin for nodeport mapping) + DCAE services dependent on nodeport/API

Resource TBD

NA
REQ-361Continue hardcoded passwords removalMUST HAVEYES

1) Evaluate certInitializer integration impact for DCAE-tls init container
2) Possible impact to K8s plugin  (Need more discussion)

Hardcoded pasword impact :  Cloudify (can be fixed - https://wiki.web.att.com/pages/viewpage.action?spaceKey=ECOMPC&title=Cloudify+Manager+patches+and+fixes) + Bootstrap, DH, Dashboard (can be changed to use secret) 

Commitment based on Samsung/AT&T?

DCAEGEN2-1972
REQ-360Application config should be fully prepared before starting the application containerPTLNO

Okay for service components (as CBS is used); Platform component should be okay. MOD - to be verified (possibly MOD/Nifi container) + Dashboard

NOT Committed
REQ-358No root (superuser) access to database from application containerYESStrech-goal

Need further assesment.  Current list of component impact -  Dashboard/Inventory/TCA-gen2/heartbeat/PM-Mapper/DL-feed/Son-handler

Commitment based on WIPRO?

DCAEGEN2-2329
REQ-351ONAP must complete update of the java language (from v8 -> v11)MUST HAVEYES

MEDIUM RISK : Due to number of DCAE components impacted.

Some MOD components will need exception (due to NiFI upstream dependency)

Commitment : Multiple companies

DCAEGEN2-2223
REQ-350Each ONAP project shall improve its CII Badging score by improving input validation and documenting it in their CII Badging site.PTLStrech-goal
DCAEGEN2-2332
REQ-349Each ONAP project shall define code coverage improvements and achieve at least 55% code coverageMUST HAVEYES

Already complaint for Frankfurt components; new component/enhancement to adhere

Commitment : Multiple companies

DCAEGEN2-2333
REQ-323Each project will update the vulnerable direct dependencies in their code baseMUST HAVEYESCommitment : Multiple companiesDCAEGEN2-2242

...