Releases: Consensys/tessera
Tessera 0.10.3
Enhancements
- Use picocli for main cli #946
- Key vault Integration - Adding support for AWS Secrets Manager #947
- Create Generic key vault configuration #948
- Change partyinfo request to be asynchronous #953
- Support relative paths in unix domain file uris. #966
- Configurable p2p polling interval #969
- Separate P2P and Resend clients - To prevent resend timeout on large volumes #982
Fixes
- Allow url update for existing key when remote node validation is OFF #952
- Allow CLI overrides of encryptor config and map fields #962
- Enforce whitelist if discovery disabled #975
- Remove whitelist filter on Q2TRestApp endpoints #992
Upgrade
- Bump jetty version #968
- Change build files and artefacts to java 11 #978
- Install fixed versions for apline libs #981
Special thanks to @Emi14 and @vgeorgescu from IHS Markit (https://ihsmarkit.com) for AWS Key Management Integration contribution.
tessera-app-0.10.3-app.jar
tessera-simple-0.10.3-app.jar
data-migration-0.10.3-cli.jar
config-migration-0.10.3-cli.jar
enclave-jaxrs-0.10.3-server.jar
azure-key-vault-0.10.3-all.jar
hashicorp-key-vault-0.10.3-all.jar
aws-key-vault-0.10.3-all.jar
Tessera 0.10.2
Enhancements
- Support alternative elliptical curves for Tessera keygen #915
- Disallow CORS to be configured on anything but ThirdParty server #917
- New partyinfo API('keys') on ThirdParty server #918
- Deprecate grpc as Tessera P2P protocol #926
- New API to return local nodes public keys #936
- Remove ability to provide key passwords directly in config to improve security #941
Fixes
- Server to reject client-initiated ssl renegotiation #930
- Only prompt for key passwords on CLI if the pwd is not already given #937
Security
- Option to exclude cipher suites in ssl config #940
tessera-app-0.10.2-app.jar
tessera-simple-0.10.2-app.jar
data-migration-0.10.2-cli.jar
config-migration-0.10.2-cli.jar
azure-key-vault-0.10.2-all.jar
hashicorp-key-vault-0.10.2-all.jar
enclave-jaxrs-0.10.2-server.jar
Tessera 0.10.1
Enhancements
- Remote Enclave to update Transaction Manager when new keys are added real time #861
- Introduce PicoCLI for parsing CLI arguments #875
- Simplify CLI execution result handling #902
Fixes
- Set Transactional boundary correctly for
resendmethod #898 - Add self when sending 'raw' transactions #896
- Fix
Versionapi to return current running Tessera version #899 - Prevent duplicate push requests arrive at receiving tessera by closing jaxrs esponses #882
- Print more useful error msgs to syserr for service provider errors #858
Upgrades
- Azure Key Vault: Use latest client library version #890
- Update Jackson version to fix a security vulnerability #888
- Update H2 DB version to 1.4.200 #910
Special thanks to @vdamle for his time on testing 'recovery' scenario fix in this release.
tessera-app-0.10.1-app.jar
tessera-simple-0.10.1-app.jar
data-migration-0.10.1-cli.jar
config-migration-0.10.1-cli.jar
azure-key-vault-0.10.1-all.jar
hashicorp-key-vault-0.10.1-all.jar
enclave-jaxrs-0.10.1-server.jar
Tessera 0.10.0
Enhancements
- Jasypt Encryption #845 – DB password encryption. For instructions follow here
- Add node validation #741 - This feature is turned OFF. This is a BREAKABLE change and if enabled all nodes in the network should be on the same version of Tessera. This prevents DOS attack #649 on network. To enable this feature follow instructions in our configuration page
- Add feature toggle configuration & configurable key validation #825
- Split rest endpoints and improve modularisation #817
Fixes
- Monitoring fixes/improvements #744
- Stop throwing exception on network sync calls #843
- Add empty party info response for older version nodes to consume #847
- Read key password from CLI #765
Sample configuration for this release can be found here
tessera-app-0.10.0-app.jar
data-migration-0.10.0-cli.jar
config-migration-0.10.0-cli.jar
azure-key-vault-0.10.0-all.jar
hashicorp-key-vault-0.10.0-all.jar
enclave-jaxrs-0.10.0-server.jar
Tessera 0.9.4
Tessera 0.9.3
Enhancement
Exclude self from unseen parties list in SyncPoller #688
Add filter to decorate headers to support CORS #712
CORS domain filter #715
Identity fortification #717
Fixes
Fix #705 out of memory error thrown by Files.readAllBytes #710
Refactor data migration to lazily load results #719
Close streams after they are used #721
Allow override passwords to be applied to keys #723
Load resource stream over file #733
Security
Upgrade bouncycastle library to latest version #686
Security alert jetty version #711
tessera-app-0.9.3-app.jar
data-migration-0.9.3-cli.jar
config-migration-0.9.3-cli.jar
azure-key-vault-0.9.3-all.jar
hashicorp-key-vault-0.9.3-all.jar
enclave-jaxrs-0.9.3-server.jar
Tessera 0.9.2
Fixes
Protect recipient list on resend #766
Add jpa pagination for retrieving all transaction query #781
Links to Release Binaries
tessera-app-0.9.2-app.jar
data-migration-0.9.2-cli.jar
config-migration-0.9.2-cli.jar
azure-key-vault-0.9.2-all.jar
hashicorp-key-vault-0.9.2-all.jar
enclave-jaxrs-0.9.2-server.jar
Tessera 0.9.1
Fixes:
Fix for BouncyCastle library dependency version conflict #736
Links to Release Binaries
tessera-app-0.9.1-app.jar
data-migration-0.9.1-cli.jar
config-migration-0.9.1-cli.jar
azure-key-vault-0.9.1-all.jar
hashicorp-key-vault-0.9.1-all.jar
enclave-jaxrs-0.9.1-server.jar
Tessera 0.9 Release
Config changes
Please check here for needed configuration changes.
Enhancements
Enclave as distinct service #512
Retrieve node key pair information using admin API #635
Allow for TLS keystore passwords to be given as environment variables #647
Disable transaction sync ('resend') by default #634
Improving security #673 #661 #656
Use jetty instead of grizzly web server #640
Centralise vault environment variable name definitions #651
Improve acceptance tests coverage #619 #605 #630
Travis release automation #606 #620
Cleanup Tessera shutdown #660
Fixes
Fail Quorum /send API if even one recipient gives unsuccessful response #611
Resend publish payload fix #614
Fix random transaction data to never be zero #662
Align data migration tool with current version of Tessera #671
Resend should also restore missing transactions for an originating node #579 #608
Require client authentication on the server side when ssl enabled #661
Links to Release Binaries
tessera-app-0.9-app.jar
data-migration-0.9-cli.jar
config-migration-0.9-cli.jar
azure-key-vault-0.9-all.jar
hashicorp-key-vault-0.9-all.jar
enclave-jaxrs-0.9-server.jar
Tessera 0.8 Release
Enhancements
- Support Private raw transactions #536
- External Key store integration - Microsoft Azure (Cloud) and HashiCorp (non-cloud) #538 #565 #574 #587
- New PartyInfo API - To fetch network information #583 #584
- New Admin App for node management #543 #596
- Java 9+ Jigsaw Compatibility #557
Fixes
- Restrict to valid Argon2 algorithms only #531
- Add general jdbc exporter for non H2 and sqlite use cases #545
- Add auto create table config option #551
- Make self-send check more robust #571
- Fix locked key missing password message #580
- Remove the requirement for at least one peer #577 #578 #581
- Switch around the logic for finding the key to decrypt a payload with #592
- Prevent peer duplication #582
Note: If you are upgrading existing Tessera database, please run only the CREATE scripts for 'ENCRYPTED_RAW_TRANSACTION' table from db scripts attached.
tessera-app-0.8-app.jar
config-migration-0.8.jar
db script to create raw transaction table