Add release notes for v1.4.7

Signed-off-by: David Enyeart <enyeart@us.ibm.com>
hyperledger · May 14, 2020 · 51138b8 · 51138b8
1 parent a178051
commit 51138b8
Showing 1 changed file with 56 additions and 4 deletions.
diff --git a/release_notes/v1.4.7.md b/release_notes/v1.4.7.md
@@ -1,12 +1,64 @@
-v1.4.7 Release Notes - Date TBD, 2020
-=====================================
+v1.4.7 Release Notes - May 14, 2020
+===================================
 
 Fixes
 -----
 
-- **FAB-XXXXX: Title**
+- **FAB-17517: Only Initialize specified BCCSP provider**
 
-  Description
+  This fix ensures that only specified provider is initialized
+  based on ProviderName.
+  This fixes "Failed initializing PKCS11.BCCSP %!s(<nil>)" error
+  when the code compiled with PKCS11 or PLUGINS enabled expected
+  configuration to not be nil even when Provider is set to SW.  
+
+- **FAB-16951: Alternative mechanisms to find pkcs11 key**
+
+  This modification adds a parameter called AltID to the PKCS11 BCCSP configuration.
+  This change is required in situations where the HSM does not allow
+  modification of the CKA_ID after creation, for example when using AWS CloudHSM.
+
+- **FAB-17726: Properly handle malformed gossip envelopes**
+
+  If a malformed envelope is read from the stream, an error is propagated
+  synchronously up the stack.
+  Under very rare circumstances a race condition caused a nil pointer peer panic.
+
+- **FAB-16879: Add stack trace to couchdb http errors**
+
+  If there was an http error calling couchdb, no context was provided in the error message.
+  This change adds stack trace in addition to the http error message,
+  so that administrators can identify where the error was hit.
+
+- **FAB-17722: Validate HSM session and get new if invalid**
+
+  Previously the pkcs11 code was set to have a session cache and reuse sessions
+  if available in cache. If a session went bad (due to connection issues with HSM),
+  the session was not evicted from cache and would be reused.
+  If all sessions went bad, the client would never be able to recover and keep using bad sessions.
+
+- **FAB-17752: Return errors when creating keystore**
+
+  An error is now returned if BCCSP is not able to create keystore directory.
+
+- **FAB-17778: Fix policy support of multiple signatures from single organization**
+
+  Fix de-duplication logic to ensure sufficient number of signatures are received to satisfy
+  policies that require multiple signatures from the same organization.
+  This problem is rare since most users have policies that require signatures from different
+  organizations, not policies that require multiple signatures from the same organization.
+
+- **FAB-17728: Add delay to pkcs11 create session loop**
+
+  Previously there was no backoff when attempting to create a new session if one was not
+  available in the HSM session cache. This fix introduces a hardcoded backoff of 100ms
+  after each attempt up to 10.
+
+
+Dependency updates
+------------------
+- Bump Go to 1.13.9.
+- Bump Fabric baseimage to 0.4.20.
 
 
 Changes, Known Issues, and Workarounds