openPDC v2.6
Note: This is not the latest version.
Official stable release of version 2.6 of the openPDC (v2.6.13).
NOTE: if you are upgrading from a prior version of the openPDC, you must migrate your existing configuration to use the latest database schema when the Configuration Setup Utility is run after the installation completes - this version includes schema updates.
Note: the PMU Connection Tester is no longer automatically included with the installer package and will need to be installed separately:
https://github.com/GridProtectionAlliance/PMUConnectionTester/releases
Security Fixes:
Security scans of older release versions of the openPDC have identified vulnerabilities related to the version of SQLite that was being used. The vulnerability only applies when a SQLite database is being used as the primary configuration, however, because these older dependencies were distributed with the GSF dependent products, a higher level of concern is warranted. The current openPDC release version 2.6 corrects all SQLite vulnerabilities that have been idenfied, specifically by updating the included sqlite3.exe and System.Data.SQLite.dll files to their latest versions. Older versions of the openPDC can safely delete these files from the product installation folders for deployments that do not depend upon SQLite. The corrected CVE list is as follows: CVE-2015-3717, CVE-2018-8740, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-3417, CVE-2015-5895, CVE-2017-10989, CVE-2015-6607, CVE-2016-6153, CVE-2018-8740
Also, security scans of openPDC may report CVE-2018-14041 based on the included version of Boostrap, specifically version 3.3.7, however the vulnerability only applies when the Bootstrap JavaScript files tooltip.js, collapse.js or scrollspy.js are accessible and in use. Since these JavaScript files are not included, neither via physical deployment nor as emebdded resources, the vulnerability does not apply to openPDC or any other GPA product based on the Grid Solutions Framework that includes web-based features.
New Updates and Improvements
- Upgraded included SQLite assemblies to version 1.0.109 to clear associated CVEs (see above)
- Restored old code for looking up a user's groups as a fallback strategy when the new (recommended) code fails - this will help with any authentication issues that can occur when certain AD environments reject user authentication (per last openPDC release)
- Fixed error that would occur with new SQL Server configuration setups that was causing user to have to go back and retry the step so setup would continue successfully
- Updated configuration setup utility so that it would not use connection string pooling for SQL Server connections during configuration
- Improved Dyanmic Calaculator adapter functionality
- Added Database Notifier adapter that will execute a database expression based on a user defined expression / condition (similar to existing Email Notifier adapter)
- Added configuration option to allow manual enabling or disabling use of FIPS cryptographic modules. Defaults to
Auto
which reads FIPS setting from registry. - Improved operation and integration of openPDC DNP3 adapters and updated core libraries to current version as available from https://www.automatak.com/opendnp3/
- Fixed DataPublisher subscribe requests to propagate any input measurement changes to the routing tables
- Fixed input wizard in openPDC Manager to apply the selected PDC vendor device ID to the concentrator on save
- Fixed Latitude and Longitude fields in openPDC Manager so that trailing zeros don't cause validation errors on the Device page.
- Added validation to the openPDC Manager routine that updates the connection strings after the user updates a connection string parameter in the custom adapter screens
- Added "L" option in openPDC Manager to phasor identifiers of line-to-line configurations
- Updated SQLite data provider strings to target latest version
- Added code to properly detach from the StatisticsEngine.Calculated event in DataSubscriber.cs
- Modified order of operations in DataPublisher.HandleSubscribeRequest to fix the issue of subscribers not receiving cached measurements upon subscription
- Improved Modbus configuration screen integration within openPDC UI Manager
- Added IEEE C37.118.2 tab to the status flag reference in the openPDC Manager
- Fixed minor issues with Postgres deployments
- Fixed parameter parsing for PublishInterval in unsynchronized data subscriber
- Updated StatHistorianReportGenerator to lookup for device status table and include nightly stats when available
- Fixed NULL comparisons in SQL trigger for tracking changes to Device records for all SQL scripts
- Improved DeviceStatus page in web UI for device monitoring
- Fixed layout options for screens in the HistorianView tool
- Added new web-based openPDC and device monitoring APIs for Grafana dashboards
- Added dashboard plugins for openPDC monitoring from openHistorian hosted Grafana visualizations
- Fixed web-based login issues with IE
- Modified IE subscriptions on DeviceStatus page to be throttled (IE was slower than other browsers)
- Cleaned up default settings for web-based authentication failure redirections
- Added current version number to setup UI screens