Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Deadline for contribution by  

...

ProjectKey UpdatesBenefits
A&AI

AAF

APP-C

Features:

  • Resource resolution via CDS
  • ODL Neon SR1 update with  ONAP distribution
  • vnfc/vf-module/v-server operations support for ansible LCMs
  • New LCM commands implemented:
    • ActivateNESw
    • ConfigScaleIn
    • DownloadNESw
    • GetConfig   
    • LicenseManagement 
    • PostEvacuate 
    • PostMigrate  
    • PostRebuild  
    • PreConfigure  
    • PreEvacuate 
    • PreMigrate 
    • PreRebuild   
    • Provisioning  
    • StartTraffic  
    • StatusTraffic 
    • StopTraffic   
  • Move northbound DMAAP adapter out from ODL OSGI Karaf base

Security:

  • Removed hardcoded password for Maria DB
  • Moved to non root processes for all APPC Pods
  • Moved All connections to https
  • Openstack password encrypted 
  • Fixed SQL injection vulnerability

Quality:

  • Test Coverage rate reaches 80%

CLAMP
  • Improve model driven control implementation by:
    1. Implementing a new Control Loop creation flow: Self Serve Control Loop(partially done will be continued in next release).
    2. Adding Tosca policy-model support for Operational Policies definitions.
  • Add integration to CDS for Actor/Action selection.
  • Move from SearchGuard to OpenDistro for the ELK stack based Control Loop Dashboard.
  • Improve security by:
    1. Removing even more vulnerabilities from the code at the point that there is none today!.
    2. Implementing all the SECCOM must have User Stories.
  1. Move closer to a full model driven Control Loop end to end in ONAP (from SDC, to Policy, to CLAMP to DCAE).
  2. Improve Security and Vulnarabilities.
CCSDK

DCAE

DCAE Platform Enhancement

  • Introduction of Microservice and Onboarding Design (MOD) platform

MOD platform will eventually replace SDC_DCAE-DesignStudio. For Frankfurt, DCAE-MOD can be used to onboard DCAE components,compose flows (Service composition), generate and distribute dynamic blueprints into DCAE Platform/Runtime - enabling users to onboard and deploy MS on-demand

  • Policy-Handler enhancement to support Policy update notification through DMaaP

DCAE Platform (Policy-Handler) enhancement enables automated policy based reconfiguration for DCAE MS in near real-time manner.

  • Dynamic AAF certificate creation during component instantiation
  • Helm chart optimization to control each platform component separate
  • Dashboard Optimization
  • Blueprint generator tool to simplify deployment artifact creation
  • Deployment/bootstrap optimization


Following are new services components are delivered with Frankfurt. New DCAE service components delivered add into expanding ONAP/DCAE MS catalog; this enables new usecase support and data/analytics integration capabilties.  

  • Event Processors
    • PM Subscription Handler
    • DataLake Handlers
  • Analytics/RCA
    • TCA-GEN2
  • Acumos Adapter (PoC)

Acumos Adapter provides mechanism to onboard Models from Acumos into ONAP and onboard (through MOD into DCAE). This enables designer to use this model for deploying  catalog for designers 


Security Improvements

  • Python 3.x migration
  • Java 11 migration (VES, HV_VES, BBS-EP, SDK)
  • Resolved all outstanding OJSI
  • Switched external interfaces to HTTPS (VES, Dashboard, HV_VES)




DMaaP

Documentation


External API Framework

Security:

Integration with AAF for automatic certitificate retrieval

Migration from http to https

Use common secret template to generate DB credentials

Migration from Java 8 to Java 11

removal of nbi root container


Use Cases:

5G E2E Slicing, new support for CST and serviceType in Service Ordering


Bug fixes:

Public HTTP port open

Improved security and integration with AAF, with automatic retrieval of Certificates using AAF Init on OOM install.



HolmesNot part of the Frankfurt ReleaseNot part of the Frankfurt Release
Integration

LoggingNot part of Frankfurt ReleaseNot part of Frankfurt Release
MSB

Features:

  • Registration of Frankfurt APIs to MSB

Security:

  • Migration from HTTP to HTTPS
  • Using none-root user to run processes inside containers
  • Upgrading version of some third-party dependencies 
Improved security and enabling access through MSB to Frankfurt APIs
Modeling

ETSI alignment support:

  • Support the ONBOARDING_PACKAGE directory for the original vendor ETSI package extraction
  • Enhance APIs for the SO SOL003/SOL005 Adapter
  • Support VNF package Subscription and Notification

Security
  • Use common secret template to generate DB credentials
  • SECCOM Password removal from OOM HELM charts
  • Enable micro-service access via MSB HTTPS

MultiCloud

Upgrade MultiCloud-StarlingX plugin to support onboarding and orchestration workload to StarlingX 3.0

Add containerized firewall as demo CNF to deploy over StarlingX 3.0

Decouple OpenStack HPA discovery logic from OpenStack Plugins

Enable the PoC of CNF orchestration to StarlingX 3.0

Flexibility to choose appropriate OpenStack HPA discovery logic during phase of deploying MultiCloud plugins

Music
  • Separate rest api from core api to improve adoptability for applications wishing to use music as a library.
  • Improved configuration of Cassandra connection to allow more flexibility with connection.
  • Thread safe locking to prevent multiple requests conflicting when creating a lock.
  • Lock clean up daemon to improve performance when there are stale locks present
  • Updating helm charts to spring boot version of music
  • Added support for https in MUSIC through AAF certificates
  • Benchmark the SQL-based plugin for MUSIC (mdbc) with TPC benchmarks that are widely used in the DB
  • Improved MUSIC performance through enhanced locking semantics, policies
Improved performance, usability and security. 
CLINot part of Frankfurt ReleaseNot part of Frankfurt Release
OOM

OOF

Use cases: 

  • Migration to new policy lifecycle APIs. Along with architectural enhancements, this enables catering to self-serving control loops. 
  • 5G Network Slicing: Supports optimized Slice/Slice Subnet selection, which is a fundamental step in E2E slice orchestration. 
  • CCVPN: Supports model-driven route optimization for OTN paths between two domains. 

Architectural enhancements: 

  • Re-architect Optimization Design Framework platform as independent optimization run-times and compile time libraries.
  • Allows easier on-boarding new (and custom) optimizers with limited impact on existing optimizers.
  • Enables run-time insertion of optimization models for the generic solvers. 

Security:

  • Non root processes for all OOF Pods
  • All connections move to https
  • Implemented SECCOM password retrieval recommendations

UUI
  1. 5G network GUI (Support the whole flow of creating 5G network slicing service):
    • Provide CSMF portal for the network slicing customers
    • Provide NSMF portal for the network slicing operators
    • Enhance the Monitor Module for monitoring 5G network slicing
  2. CCVPN GUI :
    • Support CCVPN-E-LINE over OTN Inter Domain Links
    • Support Multi-domain multi-layer Optical Service Orchestration
  3. Https: Update the frontend and backend service to https

Policy

Portal
  •  Angular Upgrade from 1.X to 7.0 - Portal and SDK (Backward Compatible)
  • Close HTTP Ports (Portal, SDK)
  • OParent 2.0 Migration & Self Release Jobs
  • Address Security Vulnerabilities from Nexus-IQ (Jars and Javascript libraries)
  • UI/TypeScript Test Coverage - (Portal Coverage 60% and SDK Coverage 63%)
  • Spring Boot Migration (Portal only/ Partially Completed)
  • Containers to run as Non-Root user
    • portal, portal-sdk, portal-widget

SDN-C
SDC

Third-party Operational Domain Manager

PNF software upgrade in R6 Frankfurt#TEST-CASE-2test-case-2

VSP Compliance and Validation Check within SDC (Frankfurt) - Phase 2

Consolidation of SDC user roles into a single designer role


SO
  • ETSI alignment improvements - Ericcson, Huawei, Samsung, Verizon
    • SOL005 adaptation
    • SOL003 adaptation
    • SOL002 adaptation
    • SOL004 - Using the ETSI catalog manager for the SDC models.
  • PNF orchestration Enhancements - Ericcson, Huawei, Nokia
    • PNF sotware upgrade  
    • PNF PNP enhancement  
  • CCVPN Enhancement
    • MDONS support -  Fujitsu
    • Eline support - Bell, Huawei, CMCC
  • 5G Slicing - ATT, Amdocs, CMCC, Huawei, Wipro
    • NSSMF Adapter implementation 
    • Support of Allocate, Deallocate, Activate and deactivate of the Core NSSMF.

VF-C
  • Migrate VF-C catalog to Modeing etsicatalog to  provide common ETSI catalog service
  • Support TOSCA based VNF validation for OVP&CVC 
  • Add VF-C CLI command to  improve the VF-C usability
  • Use common secret template to generate DB credentials
  • SECCOM Password removal from OOM HELM charts
  • Enable micro-service access via msb https

VID

Security

Adherence to ONAP Logging Spec v1.2
Update to Portal SDK v2.6
Use common secret template to generate DB credentials
Java 11 migration from JDK 8
And more...

Bug fixes

Refresh after Add VF Module fails
Generates different VF module name during scale out
And many more...

For an end-user VID is easier to use.

For a system admin, VID is easier to deploy and manage.

VNFSDK

Security:

HTTPS is enabled for VTP and Marketplace REST Services

Non-Root user is enabled for container

Direct Vulnerability issues are resolved 

Features:

VTP REST API is contributed into TMF Test API specification 704-710 / 913 v19.5

VTP Portal is incubated.

Along with CLI, enabled VNF lifecycle testing.



VNFRQTS
  • Updated Virtual-Function Event Streaming (VES) Event Listener specification to version 7.1.1
  • Significant updates to VNF security requirements

VVP

OVP testsuite

  • Migrated OVP VNF Life-cycle validation testsuite to VVP test-engine repo from integration repo.

Preload Plugin Capability

  • Enhanced VVP validation script for a pluggable preload template creation. Users can write their own plugin to generate preload templates when executing the vvp validation scripts.

ONAP client

  • Created python client to interact with various onap applications. Currently used by OVP VNF testsuite to model and instantiate a VNF for lifecycle badging.



BenchmarkAmar: Looks inactive
Infrastructure ImprovementsAmar: See integration updates

...

SubcommitteeKey UpdatesBenefits
Arch SubcommitteeNo new updates
Security Subcommittee

ONAP security continued to improve in the Frankfurt release.

  • Automated integration tests of security best practices resulting in the discovery and removal of many vulnerabilities.
  • Eliminated all but 3 of the 21 ONAP CVEs improving the security posture of the Frankfurt release.
  • Increased Kubernetes security by running all pods as a non-root identity except for those documented.
  • Significant progress in converting HTTP ports to HTTPS, with external HTTP interfaces documented.
  • Upgrades of open source dependencies to latest versions resulting in a decrease of vulnerabilities in some projects; CLAMP eliminated all direct dependencies vulnerabilities.
  • Progress with Java 11 migration for few projects, with strong commitment to complete migration in the Guilin release.  
  • Collaborated with ODL creating an ONAP customized image with fewer vulnerabilities.
  • Implementation of Sonar Cloud and meeting code coverage scanning targets resulting in code security improvements. 

Modeling SubcommitteeSee above
Standards HarmonizationSee Prague slides 
Other Activities
OVPOngoing
CDS

Design Time

  • CDS GUI Designer Client [New] - Phase 1 of 3
    • Package List Search
    • Package Creation
      • Meta Data Definition 
      • Template & Mapping Management
      • Script Management
      • Imports
      • Designer Mode
      • Scripting Mode

Run Time 

  1. Enable Blueprint Processor Rolling Upgrade leveraging Hezelcast
  2. Add PY-Executor 3.6 Microservice 
  3. Add Error Catalog Library & integration with Blueprint processor
  4. Certify the blueprint processor imperative workflow orchestration for provisioning activities. 
  5. Prioritization Service
  6. CLI Executor 
  7. Bootstrap API for loading models, dictionary & CBA
  8. Audit Service 
  9. Added gRPC TLC Service & Properties Implementation 








ONAP Component integration 

  1. CLAMP integration with CDS via REST API for cba action specification retrieval for a given CBA Name & Version. 
  2. Policy integration with CDS Blueprint processor microservice for LCM action execution. 
  3. SO Controller Execution Building Block integration with CDS for controller action execution in generic.



Use Case: 

  1. E2E Automation for instantiation& Post instantiation via SO building & CDS for vLB VNF 
  2. Control Loop of vFW VNF use case with Config Modify via DCAE, CLAMP  Policy, CDS
  3. PNF Plug & Play with Netconf execution using CDS CBA package
  4. PNF Software upgrade using CDS CBA Package
  5. E2E Automation for instantiation via SO building, MultiCloud & CDS for CNF. 
  6. 5G NRM Integration using CDS Package. 


Design Time

  1. Simplify the CBA Package creation/.management via CDS UI.






Run Time

  1. Upgrade clients individually with no interruptions to other clients
  2. Support a python executor 3.6 to execute python scripts via the CDS package. 
  3. Have a consistent way of report errors for all the CDS components and microservices. 
  4. Enable operation/designer for creating custom workflow and embedding customer workflow to the CDS CBA Package for parallel or sequential execution thus enabling faster delivery product to market. 
  5. CDS should provide Correlation-based message prioritization based on Kafka Stream Consumption.
  6. Enable operations to execute any CLI based commands for PNF & VNF. 
  7. CDS load model types, dictionaries, and CBA multiple times based on cluster size. This commits avoid autoloading, and provides an API to bootstrap, if necessary.
  8. Allows external components to trigger action(s) based on CDS execution and also gives visibility on every requests that was sent to CDS.


ONAP Component integration 

  1. Render the CBA Action in Clamp GUI without code changes. 
  2. ONAP management of lifecycle action in generic & model-driven mechanism. 
  3. ONAP Orchestration of controller execution model-driven mechanism. 
  4. Control loop usecases that need to take remediation actions from Policy Framework are able to launch any type of CBA Blueprint execution in CDS.


Use Case

  • Pivot to a model-driven implement of provisioning & controller management using a network intent package via CDS implement for all the use cases. 


.



NOTE: 

  • Controller Design Studio [CDS]
  • Controller Blueprint Archive [CBA]

...