FIXICC Release Notes

Critical bugs and fixes

• [UI] [Agent] Critical vulnerabilities of Apache Log4j 1.2.16 were gotten rid of.

Critical bugs and fixes

The following CRITICAL bug has been fixed:

• [UI][Agent] Apache Log4j library is updated to 2.17.0 (Apache Log4j2 versions 2.0-beta7 through 2.17.0 are vulnerable to a remote code execution (RCE) attack).

Improvements and New Features 

• [UI] Browse FIXEdge Java sessions logs.

Critical bugs and fixes

The following bugs have been fixed:

• [UI] Server configuration is changed if a different username is used during connection to FIXEdge/FIXEdge Java.

• [Agent] Fixicc-agent service didn't start automatically on Linux OS after rebooting a machine.

• [Agent] Fixicc-agent removed StorageRecoveryStrategy, IncomingMessagesLimit, OutgoingQueueSizeLimit and IncomingThroughputLimit parameters from CreateAcceptor request during routing it to FIXEdge.

• [UI] Active controls for FIXEDge Java according to user permissions.

Critical bugs and fixes

The following bugs have been fixed:

• [Agent] FIXICC-agent removing the StorageRecoveryStrategy, IncomingMessagesLimit, OutgoingQueueSizeLimit and IncomingThroughputLimit parameters from the CreateAcceptor request during routing to FIXEdge.

• [UI] A server's session counters in the server's tree have invalid values that don't match the real picture. 

Improvements and New Features 

• [UI] Support of the FIXEdge Java server was added.

  • FIX Integrated Control Center is able to monitor and manage FIX sessions (including scheduled ones) for the FIXEdge Java server. Please see the documentation here.

Critical bugs and fixes

The following bugs have been fixed:

• [UI] Fixed a memory leaks, related to server tree updating

• [UI] Fixed deadlock on connecting to the Agent

Critical bugs and fixes

The following bugs have been fixed:

• FIXICC shows state of the session right after FIXEdge start incorrectly 

Critical bugs and fixes

The following bugs have been fixed:

• [UI] 'Send Logout' checkbox in the 'Remove Session(s)' dialog is enabled for non-active sessions.

• [Agent, UI] Value for session' property field "Received messages count" is populated incorrectly

Improvements and New Features 

• [Agent, UI]  New fields to monitor async queue in FIXEdge were added

• [Agent] Updated OSHI library up to the latest 3.5.0 version. OSHI is JNA-based (native) library that provides information about FIXEdge system resources.

• [Agent] Updated Spring dependencies up to 5.0.5.RELEASE version.

• [Agent] Updated Apache Shiro dependencies up to 1.4.0 version.

• [Agent] Updated YAJSW dependencies up to 12.12 version.

• [Agent] Updated Jasypt dependencies up to 1.9.2 version.

• [Agent] Library updates address the following vulnerabilities: CVE-2014-0074, CVE-2016-4437, CVE-2015-3253, CVE-2010-1622, CVE-2013-6429, CVE-2013-4152, CVE-2013-7315, CVE-2014-0054, CVE-2014-9970

• [UI] The parameter 'Socket operation priority' has been extended with 'Direct Send' value. See How to use SocketPriority parameter for more information.

• [Agent] The version of FIX Admin Protocol has been updated to 3.15.

• [Agent, UI]  JRE in package has been updated to 1.8.0_162 version.

Improvements and New Features 

• [Agent] FIXICC Agent packages were improved (package structure and configuration files were updated) for tightly integration with FIXEdge server

Improvements and New Features 

• [Agent, UI]  Fixed session polling mechanism

The following bugs have been fixed:

• The bug with starting FIXICC Agent using runConsole script has been fixed

Improvements and New Features 

• [Agent, UI]  JRE in package has been updated to 1.8.0_141 version 

• [Agent] Generation of redundant logging in case of FIXEdge is down has been removed.

• [Agent] Version of library used for PID monitoring has been downgraded to work with older versions of OS

The following bugs have been fixed:

• [Agent] PID Monitoring was migrated from sigar to oshi 

• [Agent] Corresponding changes in the configuration files were made.

[Agent]  

• Wrapper library (yajsw) has been updated to 12.08 version 

• Netty library in the yajsw has been updated to 4.0.37 version to fix security issue 

Improvements and New Features 

[Agent, UI]  JRE in package has been updated to 1.8.0_131 version 

[Agent] LDAP-authentication mechanism was optimized. 

Optional changes in configuration files 

[Agent]  conf\security.ldap.sample.properties: 

This change allows to optimize LDAP query. 

 Bugfixes 

All known issues for FIXICC 2.10.1 related to scheduler are fixed: 

• [UI] Text does not wrap in Scheduler entry window. 

• [UI] FIXICC doesn't reflect the changes in schedule for particular FIX Session if the schedule was edited. 

• [UI] Validation issues in Scheduler entry window. 

• [UI] Schedule with incorrect parameter (minutes) is created. 

[UI] The tooltip in the Edit/Add Schedule windows has a typo. 

[Agent, UI] New session schedule management functionality has been introduced:

• ability to schedule the launch and termination of sessions at pre-defined times and dates. 

• use CRON expressions for sessions schedule.

• ability to specify days off for sessions schedule.

• ability to specify time zone for sessions schedule.

• ability to assign one schedule to multiple sessions.

FIXICC User Guide has been extended with description of new session schedule management functionality. See New-style Scheduler tab and Schedules level for details.

The following is a list of known issues left in the current version which will be fixed in the nearest releases:

• Schedule parameters validation doesn't work properly.

• FIXICC doesn't reflect the changes in schedule for particular FIX Session if the schedule has been edited.

• FIXICC is unable to display the FIX session schedule if the FIX session is inactive.

• [UI] Using space after comma has been added for "Masked Fields" field. 

• [UI] "Hide Logon Credentials" checkbox and "Masked Fields" field have been added to the template.

The following bugs have been fixed:

• [UI] Session is not saved if Session ID is not in format <SenderCompID>-<TargetCompID>.

The following bugs have been fixed:

• [UI] Whitespace in the SenderCompID or TargetCompID causes error in FIXEdge.

The following bugs have been fixed:

• [Agent] Admin session of fixicc-agent tries to reconnect while FIXEdge is stopping.

• [UI] Session between FIXICC and fixicc-agent disconnects with a delay.

• [Agent] Support of "Null" value has been added to Storage Type values for sessions.

• [Agent] FIX Admin Protocol has been updated to version 3.11.

• [UI/Agent] Possibility to configure HiddenLogonCredentials and MaskedTags has been added to FIXICC.

• [Agent] FIX Admin Protocol has been updated to version 3.9.

The following bugs have been fixed:

• [UI] Linux version of FIXICC GUI can't load license from 'etc' folder.

• [Agent] Possibility to reconnect has been added for Admin session.

Optional changes in configuration files

agent.properties

• [UI/Agent] FIXICC and FIXICC Agent don't require the license file.

The following bugs have been fixed:

• [UI] Unable to open session details.

The following bugs have been fixed:

• [UI] FIX Session status doesn't update properly in FIXICC GUI .

• [UI] Possibility to customize, save and import FIXICC view has been added.

• [UI/Agent] New column SessionQualifier has been added to list of sessions.

• [Agent] Updated FIX Admin Protocol to version 3.7.

The following bugs have been fixed:

• [Agent] Updated YAJSW to version 12.04. Issue with running on linux.

• [UI] IndexOutOfBoundsException in FIXICC GUI when changing sessions list

• [Agent] Possibility to enable SSL to accept SSL/TLS connections

• [Agent] Updated FIX Admin Protocol to version 3.3. Disable DTD in XML(security issues)

• [UI] Implementation of calendars functionality in FIXICC and FIXAgent

Optional changes in configuration files

• Changes due  Possibility to enable SSL to accept SSL/TLS connections  (please see  FIXICC Release Notes for detailed instructions):

The following bugs have been fixed:

• [Agent] Sometimes FIXICC-Agent doesn't show the correct status when running in Linux

• [Agent] FIX Admin Protocol has been updated to version 3.1

• [UI, Agent] "Listen Port" column has been added to the list of servers

• [UI] FIXICC has been migrated to the new version of NetBeans RCP platform (version 802)

• [UI, Agent] JRE in the package has been updated to JRE 1.8.0_65

• [UI] A new button "Clean Logs" has been added in FIXICC

• [UI] WebStart has been removed from the package

• [UI] Possibility to create and to configure SSL sessions from FIXICC has been added

Mandatory changes

• In order to have a "Clean Logs"  functionality (a new button on UI) it's necessary to add a new parameter:
  [+] CleanLogsFile = bin/FixEdge1.clean.sh
  If "Clean Logs" functionality is not required  then this parameter is not required too.
  
  

Optional changes

• The variable ServerHome can be specified as ".." in Linux or "." in Windows instead of "${ServerHome}":
  [-] ServerHome = ${ServerHome}
  [+] ServerHome = .. (in Linux)
  or
  [+] ServerHome = . (in Windows)
  
  

• The path to pid file has been removed:
  [-] PidFile = FixEdge.pid
  as it is ignored now. FIXEdge's pid-file is firstly searched using FIXEdge.properties settings (FixEdge1.FIXICC.PIDFile), if this property is not found  then it assumes that pid-file is located under FIXEdge's log directory.
  
  

• The password mask in conf/log4j.properties inside FIXICC-Agent has been changed:
  [-] log4j.appender.file.layout.MaskPattern3.Pattern=assword = (.*?)\n
  [-] log4j.appender.file.layout.MaskPattern3.Mask=assword = *****\n
  [+] log4j.appender.file.layout.MaskPattern3.Pattern=[P|p]assword = (.*?)\n
  [+] log4j.appender.file.layout.MaskPattern3.Mask=Password = *****\n
  
  

  wrapper.conf

• FIXICC-Agent log and YAJSW service log have been divided into different files:
  [-] wrapper.logfile=${wrapper_home}/logs/fixicc-agent.log 

  [+] wrapper.logfile=${wrapper_home}/logs/wrapper.log
  
  

• In order to prevent issues with root privileges: conf/wrapper.conf:
  [+] wrapper.daemon.pid.dir = $ {wrapper_home}/logs

• Fixicc-agent on windows don't start with default configuration in security.properties file 

• Passwords being written to logs in plain text

• Fixicc-agent log contains SCM Revision

conf/log4j.properties:

[+] log4j.appender.file.layout.MaskPattern3=com.epam.fixicc.log4Wrapper.MaskPatternRegex
[+] log4j.appender.file.layout.MaskPattern3.Pattern=assword = (.*?)\n
[+] log4j.appender.file.layout.MaskPattern3.Mask=assword = *****\n

[+] log4j.logger.org.apache.shiro.config=INFO, file
[+] log4j.logger.org.apache.commons.beanutils=INFO, file

• On Windows FIXICC Agent is not started using startService.bat. 

• On Windows FIXEdge + FIXICC components intalled into Program Files generate errors. 

• FIX Admin Protocol was updated to version 3.0

• Username and Password are optional for admin session FIXICC Agent. If those properties are absent agent is trying to find Username and/or Password properties in engine.properties. If engine.properties also doesn't contain credentials, FIXICC Agent tries to connect without them.

• YAJWS was updated from version 11.09 to version 11.11 to fix bug with FIXEdge + FIXICC components intalled into path that contains whitespace.

• Remove all security sensitive data from agent configuration files. 
  - SSLConfigFile property added to agent.properties for specifying SSL arguments in separate file.
  - contextFactory.systemPasswordFile property support added to security.properties for specifying LDAP password in separate file.