Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

REQ#DescriptionTSC PriorityDCAE Commit StatusDCAE Impact AssesmentDCAE JIRA #
REQ-380ONAP container repository (nexus) must not contain upstream docker imagesMUST HAVEYES

Add explicit references to dockerhub or nexus to all images  

Commitment based on Samsung, AT&T

DCAEGEN2-2322
REQ-379ONAP projects must use only approved and verified base images for their containersMUST HAVEStretch-goal

HIGH RISK - LIST Approved base images list NOT CONFIRMED + MULTIPLE DCAE COMPONENT IMPACT
https://wiki.onap.org/display/DW/Database%2C+Java%2C+Python%2C+Docker%2C+Kubernetes%2C+and+Image+Versions

1) Approved base image for NodeJS TBC
2) Policy-handler base image (python:3.6) + python:3.7-alpine
3) Cloudify base image (Community) support only 3.6
4) Bootstrap (centOS) + cloudify cli may not be compatiable alpine (python image is possible)
5) MOD components
6) NiFi - apache/nifi-registry:0.5.0


Commitment : Multiple companies

DCAEGEN2-2323 
REQ-374ONAP shall use STDOUT for logs collectionPTLStrech-goalMultiple platform components impacts (CBS, DH, PH, Cloudify not complain). May need a generic way to map filebeat container o/p into std out. 
(Long- Stretch goal depending on OOM team support 
DCAEGEN2-2324
REQ-373ONAP must complete update of the Python language (from 2.7 -> 3.8)MUST HAVEYES

Per TSC 2.7->3.8 important; 3.7-3.8 (nice to have) 

Except Cloudify and SNMPTrap - all other DCAE components will be migrated to 3.8. SECCOM approved exception on 7/3 (refer jira)

Commitment based on T-Mobile

DCAEGEN2-2292
REQ-366Containers must crash properly when a failure occursMUST HAVEYES

MEDIUM RISK - Need further assessment on DCAE components impacted 

Commitment based on Ericsson?

DCAEGEN2-2326
REQ-365Containers must have no more than one main processMUST HAVEYES

MEDIUM RISK - Need further assessment on DCAE components impacted 

Exception required for Cloudify due to upstream dependency. 

Commitment based on Ericsson?

DCAEGEN2-2327
REQ-364Replace NodePorts with ingress controller as a default deployment optionPTLStrech-goal

Need to be create DCAE jira if OOM team support is confirmed  (may just need to update your tests to use urls instead of IPs)

Impact : DCAE Platfrom helm charts + DCAE Service components deployment (k8splugin for nodeport mapping) + DCAE services dependent on nodeport/API

Resource TBD

NA
REQ-361Continue hardcoded passwords removalMUST HAVEYES

1) Evaluate certInitializer integration impact for DCAE-tls init container
2) Possible impact to K8s plugin  (Need more discussion)

Hardcoded pasword impact :  Cloudify (can be fixed - https://wiki.web.att.com/pages/viewpage.action?spaceKey=ECOMPC&title=Cloudify+Manager+patches+and+fixes) + Bootstrap, DH, Dashboard (can be changed to use secret) 

Commitment based on Samsung/AT&T?

DCAEGEN2-1972
REQ-360Application config should be fully prepared before starting the application containerPTLNO

Okay for service components (as CBS is used); Platform component should be okay. MOD - to be verified (possibly MOD/Nifi container) + Dashboard

NOT Committed
REQ-358No root (superuser) access to database from application containerYESStrech-goal

Need further assesment.  Current list of component impact -  Dashboard/Inventory/TCA-gen2/heartbeat/PM-Mapper/DL-feed/Son-handler

Commitment based on WIPRO?

DCAEGEN2-2329
REQ-351ONAP must complete update of the java language (from v8 -> v11)MUST HAVEYES

MEDIUM RISK : Due to number of DCAE components impacted.

Some MOD components will need exception (due to NiFI upstream dependency)

Commitment : Multiple companies

DCAEGEN2-2223
REQ-350Each ONAP project shall improve its CII Badging score by improving input validation and documenting it in their CII Badging site.PTLStrech-goal
DCAEGEN2-2332
REQ-349Each ONAP project shall define code coverage improvements and achieve at least 55% code coverageMUST HAVEYES

Already complaint for Frankfurt components; new component/enhancement to adhere

Commitment : Multiple companies

DCAEGEN2-2333
REQ-323Each project will update the vulnerable direct dependencies in their code baseMUST HAVEYESCommitment : Multiple companiesDCAEGEN2-2242

...