[FAB-16414] Release fabric-ca v1.4.3

Change-Id: Ieacd63c9b2a079b1cbabd1a540406bd569995ab3 Signed-off-by: David Enyeart <enyeart@us.ibm.com>
hyperledger · Aug 26, 2019 · 55a322d · 55a322d
1 parent 3e29f1a
commit 55a322d
Show file tree

Hide file tree

Showing 3 changed files with 59 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,12 @@
+## v1.4.3
+Mon Aug 26 15:40:49 EDT 2019
+
+* [3e29f1a](https://github.com/hyperledger/fabric-ca/commit/3e29f1a) Remove hardcoded ver on multiarch script
+* [c49e7d3](https://github.com/hyperledger/fabric-ca/commit/c49e7d3) [FABCI-401] Disable AnsiColor Wrapper
+* [64bdb20](https://github.com/hyperledger/fabric-ca/commit/64bdb20) [FABC-867] Fix GoImports
+* [017cea8](https://github.com/hyperledger/fabric-ca/commit/017cea8) FABC-862 Update mysql driver
+* [c66adbe](https://github.com/hyperledger/fabric-ca/commit/c66adbe) [FAB-16000](https://jira.hyperledger.org/browse/FAB-16000) Prepare for next fabric-ca rel (1.4.3)
+
 ## v1.4.2
 Wed Jul 17 14:55:08 EDT 2019
 

diff --git a/Makefile b/Makefile
@@ -31,7 +31,7 @@
 PROJECT_NAME = fabric-ca
 BASE_VERSION = 1.4.3
 PREV_VERSION = 1.4.2
-IS_RELEASE = false
+IS_RELEASE = true
 
 ARCH=$(shell go env GOARCH)
 MARCH=$(shell go env GOOS)-$(shell go env GOARCH)

diff --git a/release_notes/v1.4.3.txt b/release_notes/v1.4.3.txt
@@ -0,0 +1,49 @@
+v1.4.3 Release Notes - August 26, 2019
+--------------------------------------
+
+What's New in Hyperledger Fabric CA v1.4.3
+------------------------------------------
+
+No new features.
+
+
+Important Fixes
+---------------
+
+None.
+
+
+Changes, Known Issues, and Workarounds
+--------------------------------------
+
+Go MySQL driver updated to version 2019-05-10T10:23:35Z.
+
+
+Known Vulnerabilities
+---------------------
+FABC-174 Commands can be manipulated to delete identities or affiliations
+
+This vulnerability can be resolved in one of two ways:
+
+1) Use HTTPS (TLS) so that the authorization header is not in clear text.
+
+2) The token generation/authentication mechanism was improved to optionally prevent
+token reuse. In v1.4 a more secure token can be used by setting environment variable:
+
+FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false
+
+However, it cannot be set to false until all clients have
+been updated to generate the more secure token and tolerate
+FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false.
+The Fabric CA client has been updated in v1.4 to generate the more secure token.
+The Fabric SDKs will be updated by v2.0 timeframe to generate the more secure token,
+at which time the default for Fabric CA server will change to:
+FABRIC_CA_SERVER_COMPATIBILITY_MODE_V1_3=false
+
+Resolved Vulnerabilities
+------------------------
+None.
+
+
+For the full list of improvements and fixes, refer to the release change log:
+https://github.com/hyperledger/fabric-ca/blob/release-1.4/CHANGELOG.md#v143