Current StreamBase 10.6.4 Release Notes

These are the release notes for the TIBCO StreamBase® component of TIBCO® Streaming 10.6.4.

New Features

TIBCO® Streaming 10.6.4 adds the following updates and new features:

TIBCO® Streaming Now Bundles Java 11.0.18

On all supported operating systems, the TIBCO Streaming installation kit provides the runtime components of Oracle JDK version 11.0.18 in a subdirectory of the StreamBase installation directory, for private use to run StreamBase program fragments and applications from within StreamBase Studio. As before, StreamBase detects and prefers a system-installed JDK, and uses the bundled JDK as a fallback. See further details about the JDK requirements of this release in the JDK entry of the Supported Configurations page.

UMDF Adapter Now Uses New Version Of FIX Antenna Java

From this release, UMDF adapter uses version 2.24.1 for FIX messages and and version 2.14.26 for FAST messages.

Jetty Upgraded

The Jetty web server version was upgraded to 9.4.48 to address security issues in the previously supported version. The upgrade applies, for example, to the TIBCO StreamBase® Web Server Request adapter and the TIBCO StreamBase® Web Server Response adapter, as well as for developing your own applications that require Jetty.

Changes in Functionality

This release includes the following changes in functionality.

Launching Panel in Studio Preference Settings Now has Minimal as Default Logging Option.

Fragment and Application Output in Launching Panel has changed the default logging option from Concise to Minimal so it only shows logging message.

Connectivity Wizard in Studio Now has a Browse Button to Search for the Settings File in other Directories.

In Connectivity wizard while creating a new project using settings from a previously created project can now browse Settings file in the file system using the Browse button.

The Path Portion of the OIDC Issuer URL is Now Used When Constructing the URL for the OIDC Provider's Configuration Document

For an OIDC issuer URL of https://example.com/tenant-id the URL used to download the OIDC provider's configuration document will be https://example.com/tenant-id/.well-known/openid-configuration. In previous releases, the path component was ignored and the the URL used would have been https://example.com/.well-known/openid-configuration.

Deprecated and Removed Features

The following features are deprecated as of StreamBase 10.6.4.

FIX-based adapters' support for QuickFIX/J engine

Currently all FIX-based adapters offers a choice between using QuickFIX/J engine or TIBCO's own High-Performance FIX (HPFIX) engine. Going forward, HPFIX should be used as support for QuickFIX/J will be remove in an upcoming version of the product.

TIBCO® Artifact Management Server Deprecated

TIBCO® ModelOps is a new offering that builds on the capabilities of TIBCO® Artifact Management Server with more sophisticated governance and artifact management capabilities. TIBCO® Artifact Management Server remains supported for the 10.6 LTS release support period, which ends on May 31, 2025.

Migration and Compatibility

Not applicable.

StreamBase Known Limitations

This section describes known limitations as of the current release of the TIBCO StreamBase® component of TIBCO® Streaming. Each item includes a tracking number, description, and workarounds when possible.

Known limitations for using the EventFlow debugger are described separately, in the Limitations, Tips, and Tricks section of the Using the EventFlow Debugger page.

SB‑51163 Alibaba Fastjson Mitigation of Vulnerability CWE-502
Description

Streaming 10.6 includes a version of Alibaba Fastjson with a vulnerability classified as CWE-502. In Streaming 10.6.2 and later, all Fastjson parser instances are put into a safe mode that mitigates the vulnerability. The safe mode turns off the Fastjson feature that is vulnerable to such attacks. However, the vulnerability will still be flagged in tools that report dependency vulnerabilities.

Workaround You can suppress the vulnerability in such tools as the OWASP Dependency Check Maven plugin.
SB‑49471 The epdev offline maven command shows benign errors.
Description

Running the epdev offline maven command can show a number or Maven errors. However, the process does complete and work as expected. The display of these errors is expected to be corrected in an upcoming release.

Workaround None.
SB‑49208 Project names with underlines cause problems for application projects with Docker and Kubernetes or Helm support.
Description

Studio-generated StreamBase Application projects that elect the Docker and Kubernetes options generate a Docker image without errors, but fail to deploy in Docker.

Workaround Start over with a new project name without underlines.

StreamBase Resolved Issues

This section provides a list of errors corrected in release 10.6.4 of the TIBCO StreamBase® component of TIBCO® Streaming.

Fixed in 10.6.4
Number Resolution
TIBCO StreamBase® 10.6.4 incorporates all fixes resolved in the release 10.0.0 series through 10.6.3 and all fixes resolved in the release 7.7.0 series through 7.7.8.
SB-52421 Earlier, Linux users were unable to open a command prompt because the desktop environment can't be determined. From this release onwards, they can set the system property streambase.ide.openshell-forcecommandstring to the command they want to run.
SB-52618 When connecting to URIs, the WebSocket Client Read Adapter checks for ws versus wss protocols and configures the SSL accordingly.
SB-52691 Earlier, Bloomberg B-pipe input adapter could not subscribe to market depth data. This has been resolved from this release.
SB-52668 When two JMS adapters subscribe to same destination, JMS ended up with invalid ACK. This has been fixed by changing JMSSubscription to create a unique ID in its constructor.
SB-52599 Substituted JMS adapter configuration values were not displayed correctly in the visual editor. Now onwards, there will be a warning dialog window titled error loading configuration file.
SB-52561 Osi Pi can now set interval for interpolated rangeType.
SB-52518 The tooltip for Consumer Options Acknowledge Mode in the JMS Configuration File Editor has been updated.
SB-52271 JMSSubscription leak when using the JMS Request/Reply operator is fixed.
SB-51634 Earlier,Container restart used to hang in JMSSubscription sendOutput. The send calls are now gated on the shouldConsume flag.
SB-52897 Previously, when user checked off the Include node snapshots checkbox to create a node snapshot in the TIBCO StreamBase Studio Support Wizard, the resulting archive zip did not have the node snapshot of the running project.