Releases: holodeck-b2b/Holodeck-B2B
Holodeck B2B 7.0.0
This major update adds support for the use of the Diffie-Helman key agreement and ConcatKDF algorithms to establish the symmetric encryption key. The Certificate Manager now also has the option to provide the key store passwords through a system or environment variable.
Furthermore it includes many changes in the internal architecture with the main change a reworked architecture for storing message meta-data and payload content.
For more details on what changed, see the CHANGELOG.
Holodeck B2B 6.1.1
This release contains fixes for a problem in the processing of received messages that contain whitespace in the WS-Security header and orphaned payload meta-data.
Furthermore it contains updates to improve the logging of Receipt and Error Signal processing.
Holodeck B2B 6.1.0
This update includes fixes for several issues to improve the reliability of the message exchanges. It also introduces a new submission log that contains the meta-data of each successfully submitted message to the Holodeck B2B Core in a structured format.
See the CHANGELOG for more details.
Holodeck B2B 6.0.1
This major update introduces a lot of internal changes mainly focusing on stability and resource management. The changes most interesting to users are:
- Possibility to only define the Service type to be used in the P-Mode and provide the name during submission of a message.
- Fixes in the Reception Awareness Feature to improve handling of retries and Receipts.
- Interfaces for the Persistency Provider, Event Processor, P-Mode storage and Certificate Manager now include a
shutdown()method to allow for resource clean-up. - Support for a-synchronous delivery of messages and for redelivery (to be implemented by the delivery method).
See the CHANGELOG for more details.
Holodeck B2B 5.3.3
This update includes changes and fixes to the Reception Awareness Feature to improve the handling of retries and Receipts.
Holodeck B2B 5.3.2
This updates update the log4j version to 2.17.0 to mitigate security issues found in the log4j 2.15.0 and 2.16.0
Holodeck B2B 5.3.1
This release contains several fixes including an update of Log4j to mitigate CVE-2021-44228, see also issue #123.
Some other new features:
- Message properties are now used in P-Mode matching.
- Worker pool management by the core, including 'on the fly' reconfiguration.
- Receiving of messages with over 30 signed attachments is now possible.
- A new SUSPENDED processing state was added for outgoing messages that encounter an internal error.
- Support for Apache Commons Deamon in jvm mode
See the CHANGELOG for more details.
Holodeck B2B 5.0.3
This patch release fixes a major bug [#112] which caused the routing information to be missing in asynchronously sent multi-hop Signal Messages. Therefore updating to this release is only necessary when you are running in a multi-hop network.
Holodeck B2B 5.0.2
This patch release includes a newer version (1.0.1) of the file back-end which fixes issues in the single_xml delivery format and uses a temporary extension when writing the meta-data file to disk to prevent premature reading by the back-end application. See also the issues on the file back-end project.
Holodeck B2B 5.0.1
Holodeck B2B 5.0 has new and changed functionality to allow easier creation of domain and deployment based enhancements. This includes:
- A default user interface that supports basic monitoring of a running Holodeck B2B instance. The UI is available both
using a command line and GUI application. - Support for asynchronous Two-Way AS4 P-Modes.
- Support for additional P-Mode validators for the same type of P-Mode. P-Mode validators are now loaded using the Java
SPI mechanism and all applicable validators are used to check a P-Mode before loading it. Two new methods were added
inorg.holodeckb2b.interfaces.pmode.validation.IPModeValidatorto support the new mechanism. - Configuration parameter to indicate whether the Holodeck B2B Core should fall back to default Event Processor
implementation in case the custom implementation cannot be loaded/initialised. - New interfaces related to trust validation of certificates in
org.holodeckb2b.interfaces.security.trust. Notably
the new specification of the Holodeck B2B Certificate Manager which is now a separate component independent of the
Security Provider. Also new interfaces and methods are defined to communicate the results of trust validation checks
between components including the newISignatureVerifiedWithWarningevent to signal trust issues on signature
verification. - Signature policy check in Core Processing that received User Messages are signed when indicated in P-Mode that
they should be. Violation of this rule will generate an PolicyNonCompliance error.
Besides new functionality this release also includes fixes for issues found in earlier releases. See the change log for a complete overview.