- Ticket 48992 - Total init may fail if the pushed schema is rejected
- Ticket 48832 - Fix CI test suite for password min age
- Ticket 48983 - Configure and Makefile.in from new default paths work.
- Ticket 48983 - Configure and Makefile.in from new default paths work.
- Ticket 48983 - generate install path info from autotools scripts
- Ticket 48944 - on a read only replica invalid state info can accumulate
- Ticket 48766 - use a consumer maxcsn only as anchor if supplier is more advanced
- Ticket 48921 - CI Replication stress tests have limits set too low
- Ticket 48969 - nsslapd-auditfaillog always has an explicit path
- Ticket 48957 - Update repl-monitor to handle new status messages
- Ticket 48832 - Fix CI tests
- Ticket 48975 - Disabling CLEAR password storage scheme will crash server when setting a password
- Ticket 48369 - Add CI test suite
- Ticket 48970 - Serverside sorting crashes the server
- Ticket 48972 - remove old pwp code that adds/removes ACIs
- Ticket 48957 - set proper update status to replication agreement in case of failure
- Ticket 48950 - Add systemd warning to the LD_PRELOAD example in /etc/sysconfig/dirsrv
- provide backend dir in suffix template
- Ticket 48953 - Skip labelling and unlabelling ports during the test
- Ticket 48967 - Add CI test and refactor test suite
- Ticket 48967 - passwordMinAge attribute doesn't limit the minimum age of the password
- Fix jenkins warnings about unused vars
- Ticket 48402 - v3 allow plugins to detect a restore or import
- Ticket #48969 - nsslapd-auditfaillog always has an explicit path
- Ticket 48964 - cleanAllRUV changelog purging incorrectly processes all backends
- Ticket 48965 - Fix building rpms using rpm.mk
- Ticket 48965 - Fix generation of the pre-release version
- Bugzilla 1368956 - man page of ns-accountstatus.pl shows redundant entries for -p port option
- Ticket 48960 - Crash in import_wait_for_space_in_fifo().
- Ticket 48832 - Fix more CI test failures
- Ticket 48958 - Audit fail log doesn't work if audit log disabled.
- Ticket 48956 - ns-accountstatus.pl showing "activated" user even if it is inactivated
- Ticket 48954 - replication fails because anchorcsn cannot be found
- Ticket 48832 - Fix CI tests failures from jenkins server
- Ticket 48950 - Change example in /etc/sysconfig/dirsrv to use tcmalloc
- Coverity 12970 - Explicit null dereference
- Ticket 47988: Schema learning mechanism, in replication, unable to extend an existing definition
- Ticket 47996 - ldclt needs to support SSL Version range
- Ticket 47738 - use PL_strcasestr instead of strcasestr
- Ticket 47462 - Stop using DES in the reversible password encryption plug-in
- Ticket 47807 - SLAPI_REQUESTOR_ISROOT not set for extended operation plugins
- Ticket 47991 - upgrade script fails if /etc and /var are on different file systems
- Ticket 47989 - Windows Sync accidentally cleared raw_entry
- Ticket 47964 - v2 - Incorrect search result after replacing an empty attribute
- Ticket 47934 - nsslapd-db-locks modify not taking into account.
- Ticket 47617 - replication changelog trimming setting validation
- Ticket 47905 - Bad manipulation of passwordhistory
- Ticket 47973 - During schema reload sometimes the search returns no results
- Ticket 47981 - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes
- Ticket 47980 - Nested COS definitions can be incorrectly processed
- Ticket 47451 - Dynamic plugins - fixed thread synchronization
- Ticket 47750 - During delete operation do not refresh cache entry if it is a tombstone
- Ticket 47947 - start dirsrv after chrony on RHEL7 and Fedora
- fix jenkins warning
- Ticket 47526 - Additional fix for ticket 47526 v3
- Ticket 47451 - Add Dynamic Plugin CI Suite
- Ticket 47965 - Fix coverity issues (2014/12/16)
- Ticket 47451 - Fix jenkins errors
- Ticket 47451 - Dynamic Plugin - various fixes
- Ticket 47935 - Error: failed to open an LDAP connection to host 'example.org' port '389' as user 'cn=Directory Manager'. Error: unknown.
- Ticket 47750 - Need to refresh cache entry after called betxn postop plugins
- Ticket 47942 - DS hangs during online total update
- Ticket 47960 - cookie_change_info returns random negative number if there was no change in a tree
- Ticket 47960 - cookie_change_info returns random negative number if there was no change in a tree
- Ticket 47722 - Using the filter file does not work
- Ticket 47636 - Error log levels not displayed correctly
- Ticket 47965 - Fix coverity issues (2014/11/24)
- Ticket 47969 - Fix coverity issue
- Ticket 47949 - logconv.pl -- support parsing/showing/reporting different protocol versions
- Ticket 47525 - Crash if setting invalid plugin config area for MemberOf Plugin
- Ticket 47970 - add lib389 testcase
- Ticket 47970 - Account lockout attributes incorrectly updated after failed SASL Bind
- Ticket 47969 - COS memory leak when rebuilding the cache
- Ticket 47967 - cos_cache_build_definition_list does not stop during server shutdown
- Ticket 47451 - Running a plugin task can crash the server
- Ticket 47963 - skip nested groups breaks memberof fixup task
- Ticket 47963 - RFE - memberOf - add option to skip nested group lookups during delete operations
- Ticket 47810 - RI plugin does not return result code if update fails
- Ticket 47950 - Bind DN tracking unable to write to internalModifiersName without special permissions
- Ticket 47958 - Memory leak in password admin if the admin entry does not exist
- Ticket 47952 - PasswordAdminDN attribute is not properly returned to client
- Ticket 47451 - Need to unregister tasks created by plugins
- Ticket 47928 - Disable SSL v3, by default.
- Ticket 47953 - Should not check aci syntax when deleting an aci
- Ticket 47948 - ldap_sasl_bind fails assertion (ld != NULL) if it is called from chainingdb_bind over SSL/startTLS
- Ticket 47945 - Add SSL/TLS version info to the access log
- Ticket 47939 - Malformed cookie for LDAP Sync makes DS crash
- Ticket 47937 - Crash in entry_add_present_values_wsi_multi_valued
- Ticket 47928 - CI test: added test cases for ticket 47928
- Ticket 47553 - Enhance ACIs to have more control over MODRDN operations
- Ticket 47889 - DS crashed during ipa-server-install on test_ava_filter
- Ticket 47895 - If no effective ciphers are available, disable security setting.
- Ticket 47838 - harden the list of ciphers available by default
- Ticket 47885 - did not always return a response control
- Ticket 47890 - minor memory leaks in utilities
- Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted.
- Ticket 47748 - Simultaneous adding a user and binding as the user could fail in the password policy check
- Ticket 47875 - dirsrv not running with old openldap
- Ticket 47885 - deref plugin should not return references with noc access rights
- Ticket 408 - create a normalized dn cache
- Ticket 571 - Empty control list causes LDAP protocol error is thrown (dup 47361)
- Ticket 408 - create a normalized dn cache
- Ticket 47699 - Propagate plugin precedence to all registered function types
- Ticket 525 - Replication retry time attributes cannot be added
- Ticket 47709 - package issue in 389-ds-base
- Ticket 47700 - Unresolved external symbol references break loading of the ACL plugin
- Ticket 47642 - Windows Sync group issues
- Ticket 525 - Replication retry time attributes cannot be added
- Ticket 47692 - single valued attribute replicated ADD does not work
- Ticket 47615 - Failed to compile the DS 389 1.3.2.3 version against Berkeley DB 4.2 version
- Ticket 47677 - Size returned by slapi_entry_size is not accurate
- Ticket 47693 - Environment variables are not passed when DS is started via service
- Ticket 47653 - Need a way to allow users to create entries assigned to themselves.
- Ticket 471 - logconv.pl tool removes the access logs contents if "-M" is not correctly used
- Ticket 47374 - flush.pl is not included in perl5
- Ticket 47649 - Server hangs in cos_cache when adding a user entry
- Ticket 443 - Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error
- Ticket 47638 - Overflow in nsslapd-disk-monitoring-threshold on 32bit platform
- Ticket 47641 - 7-bit check plugin not checking MODRDN operation
- Ticket 342 - better error message when cache overflows
- Ticket 47516 - replication stops with excessive clock skew
- Ticket 47620 - Unable to delete protocol timeout attribute
- Ticket 408 - Fix crash when disabling/enabling the setting
- Ticket 47629 - random crashes related to sync repl
- Ticket 47571 - targetattr ACIs ignore subtype
- Ticket 47660 - config_set_allowed_to_delete_attrs: Valgrind reports Invalid read
- Revert "Ticket 47653 - Need a way to allow users to create entries assigned to themselves"
- Ticket 447 - Possible to add invalid attribute to nsslapd-allowed-to-delete-attrs
- Ticket 47653 - Need a way to allow users to create entries assigned to themselves
- Ticket 47647 - remove bogus definition in 60rfc3712.ldif
- Ticket 47634 - support AttributeTypeDescription USAGE userApplications distributedOperation dSAOperation
- Ticket 47645 - reset stack, op fields to NULL - clean up stacks at shutdown - free unused plugin config entries
- Ticket 47517 - memory leak in range searches and other various leaks
- ticket 47550 - wip (cherry picked from commit 82377636267787be5182457d619d5a0b662d2658)
- Ticket 47550 - logconv: failed logins: Use of uninitialized value in numeric comparison at logconv.pl line 949
- Ticket 47513 - tmpfiles.d references /var/lock when they should reference /run/lock
- Ticket 47551 - logconv: -V does not produce unindexed search report
- Ticket 47490 - Schema replication between DS versions may overwrite newer base schema
- Ticket 48 - Active Directory has certain uids which are reserved and will cause a Directory Server replica initialization of an AD server to abort.
- Ticket 53 - Need to update supported locales
- Ticket 54 - locale "nl" not supported by collation plugin
- Ticket 77 - [RFE] Add ACI support for ldapi
- Ticket 123 - Enhancement request: "whoami" extended operation
- Ticket 153 - Schema file parsing overly picky?
- Ticket 182 - Pwd retry counters replication not enabled by default, and enabling it could lead to undesired results
- Ticket 197 - rhds82 rfe - BDB backend - clear free page files to reduce changelog size
- Ticket 205 - rhds81 rfe - snmp counters index strings for multiple network interfaces with ip addr and tcp port pairs
- Ticket 208 - [RFE] Roles with explicit scoping in RHDS
- Ticket 283 - Expose slapi_eq_* API
- Ticket 314 - ChainOnUpdate: "cn=directory manager" can modify userRoot on consumer without changes being chained or replicated. Directory integrity compromised.
- Ticket 411 - [RFE] mods optimizer
- Ticket 415 - winsync doesn't sync DN valued attributes if DS DN value doesn't exist
- Ticket 428 - posix winsync should support ADD user/group entries from DS to AD
- Ticket 460 - support multiple subtrees and filters
- Ticket 512 - improve performance of vattr code
- Ticket 513 - recycle operation pblocks
- Ticket 514 - investigate connection locking
- Ticket 521 - modrdn + NSMMReplicationPlugin - Consumer failed to replay change
- Ticket 564 - Is ldbm_txn_ruv_modify_context still required ?
- Ticket 568 - using transaction batchval violates durability
- Ticket 569 - examine replication code to reduce amount of stored state information
- Ticket 586 - selinux errors with /usr/sbin/setup-ds-admin.pl
- Ticket 589 - [RFE] Support RFC 4527 Read Entry Controls
- Ticket 601 - multi master replication allows schema violation
- Ticket 602 - replication inconsistency if attribute is modified several times in one operaion
- Ticket 607 - Replication issue: Entry can diverge betwen servers
- Ticket 609 - nsDS5BeginReplicaRefresh attribute accepts any value and it doesn't throw any error when server restarts.
- Ticket 615 - High contention on cos cache lock
- Ticket 617 - Possible to add invalid ACI value
- Ticket 626 - Possible to add nonexistent target to ACI
- Ticket 630 - The backend name provided to bak2db is not validated
- Ticket 47306 - execute index_add_mods only for indexed attributes
- Ticket 47310 - Attribute "dsOnlyMemberUid" not allowed when syncing nested posix groups from AD with posixWinsync
- Ticket 47313 - Indexed search with filter containing '&' and "!" with attribute subtypes gives wrong result
- Ticket 47314 - Winsync should support range retrieval
- Ticket 47316 - Search against 'view' is always reported as unindexed
- Ticket 47317 - should set LDAP_OPT_X_SASL_NOCANON to LDAP_OPT_ON by default
- Ticket 47319 - make connection buffer size adjustable
- Ticket 47320 - put conn on work_q not poll list if conn has buffered more_data
- Ticket 47323 - resurrected entry is not correctly indexed
- Ticket 47326 - idl switch does not work
- Ticket 47329 - Improve slapi_back_transaction_begin() return code when transactions are not available
- Ticket 47331 - Self entry access ACI not working properly
- Ticket 47337 - mep_pre_op: Unable to fetch origin entry
- Ticket 47340 - Deleting a separator ',' in 7-bit check plugin arguments makes the server fail to start with segfault
- Ticket 47350 - Allow search to look up 'in memory RUV'
- Ticket 47354 - Indexed search are logged with 'notes=U' in the access logs
- Ticket 47358 - backend performance - introduce optimization levels
- Ticket 47360 - Delete attribute could crash the server
- Ticket 47363 - 7-bit checking is not necessary for userPassword
- Ticket 47370 - DS crashes with some 7-bit check plugin configurations
- Ticket 47371 - Some updates of "passwordgraceusertime" are useless when updating "userpassword"
- Ticket 47372 - make old-idl tunable
- Ticket 47381 - nsslapd-db-transaction-batch-val turns to -1
- Ticket 47382 - Add a warning message when a connection hits the max number of threads
- Ticket 47384 - Plugin library path validation
- Ticket 47387 - improve logconv.pl performance with large access logs
- Ticket 47388 - [RFE] Support 'Content Synchronization Operation' (SyncRepl) - RFC 4533
- Ticket 47389 - Non-directory manager can change the individual userPassword's storage scheme
- Ticket 47394 - remove-ds.pl should remove /var/lock/dirsrv
- Ticket 47400 - MMR stress test with dna enabled causes a deadlock
- Ticket 47411 - Replace substring search with plain search in referint plugin
- Ticket 47416 - IPA replica's - "SASL encrypted packet length exceeds maximum allowed limit"
- Ticket 47423 - 7-bit check plugin does not work for userpassword attribute
- Ticket 47425 - should only call windows_update_done if repl agmt type is windows
- Ticket 47426 - move compute_idletimeout out of handle_pr_read_ready
- Ticket 47433 - With SeLinux, ports can be labelled per range. setup-ds.pl or setup-ds-admin.pl fail to detect already ranged labelled ports
- Ticket 47463 - IDL-style can become mismatched during partial restoration
- Ticket 47487 - enhance retro changelog
- Ticket 47502 - updates to ruv entry are written to retro changelog
- Ticket 47504 - idlistscanlimit per index/type/value
- Ticket 47505 - get rid of valueset_add_valuearray_ext
- Ticket 47520 - Fix various issues with logconv.pl
- Ticket 47522 - Password administrators should be able to violate password policy
- Ticket 47531 - 1.3.2 with mozldap - need to redo sasl_io_recv
- Ticket 47532 - 1.3.2 with mozldap - crashes in new operation work_q
- Ticket 47539 - Disabling DNA plug-in throws error 53
- Ticket 47543 - mozldap - fix compiler warnings
Ticket 47513 - Set localrundir outside of the "with-fhs" block
Ticket 47513 - Refine the check for @localrundir@
Ticket 47510 - remove unnecessary typedef
Ticket 47510 - Repl Sync does not compile against MozLDAP libraries
Ticket #47534 - RUV tombstone search with scope "one" doesn`t work
Ticket 47510 - 389-ds-base does not compile against MozLDAP libraries
Ticket #47523 - Set up replcation/agreement before initializing the sub suffix, the sub suffix is not found by ldapsearch
Ticket 47528 - 389-ds-base built with mozldap can crash from invalid free
Ticket #47504 idlistscanlimit per index/type/value
Ticket 47513 - tmpfiles.d references /var/lock when they should reference /run/lock
Ticket #47492 - PassSync removes User must change password flag on the Windows side
Ticket 47509 - CLEANALLRUV doesnt run across all replicas
Ticket #47516 replication stops with excessive clock skew
6829200 Coverity fix - 11952 - for Ticket 47512
Ticket 47512 - backend txn plugin fixup tasks should be done in a txn
(cherry picked from commit 1edb272d2c60a2e00e2e426094bdad2ad0c87102)
(cherry picked from commit a41e44d78d365c3b15b7c5303930808a97b2e5f3)
- Ticket 449 - Allow macro aci keywords to be case-insensitive
- Ticket 47489 - Under specific values of nsDS5ReplicaName, replication may get broken or updates missing
- Ticket 47507 - automember rebuild task not working as expected
Ticket #47455 - valgrind - value mem leaks, uninit mem usage
- fix breakage in slapi-nis introduced with the previous fix
Ticket 47500 - start-dirsrv/restart-dirsrv/stop-disrv do not register with systemd correctly
- Bug 1002215 - CVE-2013-4283 389-ds-base: ns-slapd crash due to bogus DN
- Ticket 47488 - Users from AD sub OU does not sync to IPA
- Ticket 47461 - logconv.pl - Use of comma-less variable list is deprecated
- Ticket 47473 - setup-ds.pl doesn't lookup the "root" group correctly
- Ticket 47435 - Very large entryusn values after enabling the USN plugin and the lastusn value is negative.
- Ticket 47424 - Replication problem with add-delete requests on single-valued attributes
- Ticket 47367 - (phase 2) ldapdelete returns non-leaf entry error while trying to remove a leaf entry
- Ticket 47367 - (phase 1) ldapdelete returns non-leaf entry error while trying to remove a leaf entry
- Ticket 47421 - memory leaks in set_krb5_creds
- Ticket 346 - version 4 Slow ldapmodify operation time for large quantities of multi-valued attribute values
- Ticket 47369 version2 - provide default syntax plugin
- Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold
- Ticket 47399 - RHDS denies MODRDN access if ACI list contains any DENY rule
- Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold
- Ticket 47428 - Memory leak in 389-ds-base 1.2.11.15
- Ticket 47392 - ldbm errors when adding/modifying/deleting entries
- Ticket 47385 - Disk Monitoring is not triggered as expected.
- Ticket 47410 - changelog db deadlocks with DNA and replication
- Ticket 47374 - flush.pl is not included in perl5
- Ticket 47391 - deleting and adding userpassword fails to update the password (additional fix)
- Ticket 47393 - Attribute are not encrypted on a consumer after a full initialization
- Ticket 47395 47397 - v2 correct behaviour of account policy if only stateattr is configured or no alternate attr is configured
- Ticket 47396 - crash on modrdn of tombstone
- Ticket 47400 - MMR stress test with dna enabled causes a deadlock
- Ticket 47409 - allow setting db deadlock rejection policy
- Ticket 47419 - Unhashed userpassword can accidentally get removed from mods
- Ticket 47420 - An upgrade script 80upgradednformat.pl fails to handle a server instance name incuding '-'
- Ticket 332 - Command line perl scripts should attempt most secure connection type first
- Ticket 342 - better error message when cache overflows
- Ticket 417 - RFE - forcing passwordmustchange attribute by non-cn=directory manager
- Ticket 419 - logconv.pl - improve memory management
- Ticket 422 - 389-ds-base - Can't call method "getText"
- Ticket 433 - multiple bugs in start-dirsrv, stop-dirsrv, restart-dirsrv scripts
- Ticket 458 - RFE - Make it possible for privileges to be provided to an admin user to import an LDIF file containing hashed passwords
- Ticket 471 - logconv.pl tool removes the access logs contents if "-M" is not correctly used
- Ticket 487 - Possible to add invalid attribute values to PAM PTA plugin configuration
- Ticket 502 - setup-ds.pl script should wait if "semanage.trans.LOCK" presen
- Ticket 505 - use lock-free access name2asi and oid2asi tables (additional)
- Ticket 508 - lock-free access to FrontendConfig structure
- Ticket 511 - allow turning off vattr lookup in search entry return
- Ticket 525 - Introducing a user visible configuration variable for controlling replication retry time
- Ticket 528 - RFE - get rid of instance specific scripts
- Ticket 529 - dn normalization must handle multiple space characters in attributes
- Ticket 532 - RUV is not getting updated for both Master and consumer
- Ticket 533 - only scan for attributes to decrypt if there are encrypted attrs configured
- Ticket 534 - RFE: Add SASL mappings fallback
- Ticket 537 - Improvement of range search
- Ticket 539 - logconv.pl should handle microsecond timing
- Ticket 543 - Sorting with attributes in ldapsearch gives incorrect result
- Ticket 545 - Segfault during initial LDIF import: str2entry_dupcheck()
- Ticket 547 - Incorrect assumption in ndn cache
- Ticket 550 - posix winsync will not create memberuid values if group entry become posix group in the same sync interval
- Ticket 551 - Multivalued rootdn-days-allowed in RootDN Access Control plugin always results in access control violation
- Ticket 552 - Adding rootdn-open-time without rootdn-close-time to RootDN Acess Control results in inconsistent configuration
- Ticket 558 - Replication - make timeout for protocol shutdown configurable
- Ticket 561 - disable writing unhashed#user#password to changelog
- Ticket 563 - DSCreate.pm: Error messages cannot be used in the if expression since they could be localized.
- Ticket 565 - turbo mode and replication - allow disable of turbo mode
- Ticket 571 - server does not accept 0 length LDAP Control sequence
- Ticket 574 - problems with dbcachesize disk space calculation
- Ticket 583 - dirsrv fails to start on reboot due to /var/run/dirsrv permissions
- Ticket 585 - Behaviours of "db2ldif -a <filename>" and "db2ldif.pl -a <filename>" are inconsistent
- Ticket 587 - Replication error messages in the DS error logs
- Ticket 588 - Create MAN pages for command line scripts
- Ticket 600 - Server should return unavailableCriticalExtension when processing a badly formed critical control
- Ticket 603 - A logic error in str2simple
- Ticket 604 - Required attribute not checked during search operation
- Ticket 608 - Posix Winsync plugin throws "posix_winsync_end_update_cb: failed to add task entry" error message
- Ticket 611 - logconv.pl missing stats for StartTLS, LDAPI, and AUTOBIND
- Ticket 612 - improve dbgen rdn generation, output
- Ticket 613 - ldclt: add timestamp, interval, nozeropad, other improvements
- Ticket 616 - High contention on computed attribute lock
- Ticket 618 - Crash at shutdown while stopping replica agreements
- Ticket 620 - Better logging of error messages for 389-ds-base
- Ticket 621 - modify operations without values need to be written to the changelog
- Ticket 622 - DS logging errors "libdb: BDB0171 seek: 2147483648: (262144 * 8192) + 0: No such file or directory
- Ticket 631 - Replication: "Incremental update started" status message without consumer initialized
- Ticket 633 - allow nsslapd-nagle to be disabled, and also tcp cork
- Ticket 47299 - allow cmdline scripts to work with non-root user
- Ticket 47302 - get rid of sbindir start/stop/restart slapd scripts
- Ticket 47303 - start/stop/restart dirsrv scripts should report and error if no instances
- Ticket 47304 - reinitialization of a master with a disabled agreement hangs
- Ticket 47311 - segfault in db2ldif(trigger by a cleanallruv task)
- Ticket 47312 - replace PR_GetFileInfo with PR_GetFileInfo64
- Ticket 47315 - filter option in fixup-memberof requires more clarification
- Ticket 47325 - Crash at shutdown on a replica aggrement
- Ticket 47330 - changelog db extension / upgrade is obsolete
- Ticket 47336 - logconv.pl -m not working for all stats
- Ticket 47341 - logconv.pl -m time calculation is wrong
- Ticket 47343 - 389-ds-base: Does not support aarch64 in f19 and rawhide
- Ticket 47347 - Simple paged results should support async search
- Ticket 47348 - add etimes to per second/minute stats
- Ticket 47349 - DS instance crashes under a high load
- Ticket 47308 - unintended information exposure when anonymous access is set to rootdse
- Ticket 628 - crash in aci evaluation
- Ticket 627 - ns-slapd crashes sporadically with segmentation fault in libslapd.so
- Ticket 634 - Deadlock in DNA plug-in Ticket #576 - DNA: use event queue for config update only at the start up
- Ticket 632 - 389-ds-base cannot handle Kerberos tickets with PAC
- Ticket 623 - cleanAllRUV task fails to cleanup config upon completion
- Bug 912964 - CVE-2013-0312 389-ds: unauthenticated denial of service vulnerability in handling of LDAPv3 control data
- Ticket 570 - DS returns error 20 when replacing values of a multi-valued attribute (only when replication is enabled)
- Ticket 490 - Slow role performance when using a lot of roles
- Ticket 590 - ns-slapd segfaults while trying to delete a tombstone entry
- Ticket 549 - DNA plugin no longer reports additional info when range is depleted
- Ticket 541 - need to set plugin as off in ldif template
- Ticket 541 - RootDN Access Control plugin is missing after upgrade
- Trac Ticket #497 - Escaped character cannot be used in the substring search filter
- Ticket 509 - lock-free access to be->be_suffixlock
- Trac Ticket #522 - betxn: upgrade is not implemented yet
- Ticket #322 - Create DOAP description for the 389 Directory Server project
- Trac Ticket #499 - Handling URP results is not corrrect
- Ticket 509 - lock-free access to be->be_suffixlock
- Ticket 456 - improve entry cache sizing
- Trac Ticket #531 - loading an entry from the database should use str2entry_f
- Trac Ticket #536 - Clean up compiler warnings for 1.3
- Trac Ticket #531 - loading an entry from the database should use str2entry_fast
- Ticket 509 - lock-free access to be->be_suffixlock
- Ticket 527 - ns-slapd segfaults if it cannot rename the logs
- Ticket 395 - RFE: 389-ds shouldn't advertise in the rootDSE that we can handle a sasl mech if we really can't
- Ticket 216 - disable replication agreements
- Ticket 518 - dse.ldif is 0 length after server kill or machine kill
- Ticket 393 - Change in winSyncInterval does not take immediate effect
- Ticket 20 - Allow automember to work on entries that have already been added
- Coverity Fixes
- Ticket 349 - nsViewFilter syntax issue in 389DS 1.2.5
- Ticket 337 - improve CLEANRUV functionality
- Fix for ticket 504
- Ticket 394 - modify-delete userpassword
- minor fixes for bdb 4.2/4.3 and mozldap
- Trac Ticket #276 - Multiple threads simultaneously working on connection's private buffer causes ns-slapd to abort
- Fix for ticket 465: cn=monitor showing stats for other db instances
- Ticket 507 - use mutex for FrontendConfig lock instead of rwlock
- Fix for ticket 510 Avoid creating an attribute just to determine the syntax for a type, look up the syntax directly by type
- Coverity defect: Resource leak 13110
- Ticket 517 - crash in DNA if no dnaMagicRegen is specified
- Trac Ticket #520 - RedHat Directory Server crashes (segfaults) when moving ldap entry
- Trac Ticket #519 - Search with a complex filter including range search is slow
- Trac Ticket #500 - Newly created users with organizationalPerson objectClass fails to sync from AD to DS with missing attribute error
- Trac Ticket #311 - IP lookup failing with multiple DNS entries
- Trac Ticket #447 - Possible to add invalid attribute to nsslapd-allowed-to-delete-attrs
- Trac Ticket #443 - Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error
- Ticket #503 - Improve AD version in winsync log message
- Trac Ticket #190 - Un-resolvable server in replication agreement produces unclear error message
- Coverity fixes
- Trac Ticket #391 - Slapd crashes when deleting backends while operations are still in progress
- Trac Ticket #448 - Possible to set invalid macros in Macro ACIs
- Trac Ticket #498 - Cannot abaondon simple paged result search
- Coverity defects
- Trac Ticket #494 - slapd entered to infinite loop during new index addition
- Fixing compiler warnings in the posix-winsync plugin
- Coverity defects
- Ticket 147 - Internal Password Policy usage very inefficient
- Ticket 495 - internalModifiersname not updated by DNA plugin
- Revert "Ticket 495 - internalModifiersname not updated by DNA plugin"
- Ticket 495 - internalModifiersname not updated by DNA plugin
- Ticket 468 - if pam_passthru is enabled, need to AC_CHECK_HEADERS([security/pam_appl.h])
- Ticket 486 - nsslapd-enablePlugin should not be multivalued
- Ticket 488 - Doc: DS error log messages with typo
- Trac Ticket #451 - Allow db2ldif to be quiet
- Ticket #491 - multimaster_extop_cleanruv returns wrong error codes
- Ticket #481 - expand nested posix groups
- Trac Ticket #455 - Insufficient rights to unhashed#user#password when user deletes his password
- Ticket #446 - anonymous limits are being applied to directory manager
Ticket #173 ds-logpipe.py script's man page and script help should be updated for -t option.
Ticket #196 RFE: Interpret IPV6 addresses for ACIs, replication, and chaining
Ticket #218 RFE - Make RIP working with Replicated Entries
Ticket #328 make sure all internal search filters are properly escaped
Ticket #329 389-admin build fails on F-18 with new apache
Ticket #344 deadlock in replica_write_ruv
Ticket #351 use betxn plugins by default
Ticket #352 make cos, roles, views betxn aware
Ticket #356 logconv.pl - RFE - track bind info
Ticket #365 Audit log - clear text password in user changes
Ticket #370 Opening merge qualifier CoS entry using RHDS console changes the entry.
Ticket #372 Setting nsslapd-listenhost or nsslapd-securelistenhost breaks ACI processing
Ticket #386 Overconsumption of memory with large cachememsize and heavy use of ldapmodify
Ticket #402 unhashedTicket #userTicket #password in entry extension
Ticket #408 Create a normalized dn cache
Ticket #453 db2index with -tattrname:type,type fails
Ticket #461 fix build problem with mozldap c sdk
Ticket #462 add test for include file mntent.h
Ticket #463 different parameters of getmntent in Solaris
Trac Ticket #470 - 389 prevents from adding a posixaccount with userpassword after schema reload
Ticket 477 - CLEANALLRUV if there are only winsync agmts task will hang
Ticket 457 - dirsrv init script returns 0 even when few or all instances fail to start
Ticket 473 - change VERSION.sh to have console version be major.minor
Ticket 475 - Root DN Access Control - improve value checking for config
Trac Ticket #466 - entry_apply_mod - ADD: Failed to set unhashed#user#password to extension
Ticket 474 - Root DN Access Control - days allowed not working correctly
Ticket 467 - CLEANALLRUV abort task should be able to ignore down replicas
0b79915 fix compiler warnings in ticket 374 code
Ticket 452 - automember rebuild task adds users to groups that do not match the configuration scope
Ticket 450 - CLEANALLRUV task gets stuck on winsync replication agreement
Ticket 386 - large memory growth with ldapmodify(heap fragmentation)
this patch doesn't fix the bug - it allows us to experiment with
different values of mxfast
Ticket #374 - consumer can go into total update mode for no reason
1) plugin config ldif must contain pluginid, etc. during upgrade or it
will fail due to schema errors
2) posix winsync should have a lower precedence (25) than the default (50)
so that it will be run first
3) posix winsync should support the Winsync API v3 - the v2 functions are
just stubs for now - but the precedence cb is active
8e5087a Coverity defects - 13089: Dereference after null check ldbm_back_delete
- Trac Ticket #437 - variable dn should not be used in ldbm_back_delete
- ba1f5b2 fix coverity resource leak in windows_plugin_add
- e3e81db Simplify program flow: change while loops to for
- a0d5dc0 Fix logic errors: del_mod should be latched (might not be last mod), and avoid skipping add-mods (int value 0)
- 0808f7e Simplify program flow: make adduids/moduids/deluids action blocks all similar
- 77eb760 Simplify program flow: eliminate unnecessary continue
- c9e9db7 Memory leaks: unmatched slapi_attr_get_valueset and slapi_value_new
- a4ca0cc Change "return"s in modGroupMembership to "break"s to avoid leaking
- d49035c Factorize into new isPosixGroup function
- 3b61c03 coverity - posix winsync mem leaks, null check, deadcode, null ref, use after free
- 33ce2a9 fix mem leaks with parent dn log message, setting winsync windows domain
- Ticket #440 - periodic dirsync timed event causes server to loop repeatedly
- Ticket #355 - winsync should not delete entry that appears to be out of scope
- Ticket 436 - nsds5ReplicaEnabled can be set with any invalid values.
- 487932d coverity - mbo dead code - winsync leaks, deadcode, null check, test code
- 2734a71 CLEANALLRUV coverity fixes
- Ticket #426 - support posix schema for user and group sync
- Ticket #430 - server to server ssl client auth broken with latest openldap
Ticket 429 - added nsslapd-readonly to DS schema
Ticket 403 - fix CLEANALLRUV regression from last commit
Trac Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values
Ticket #425 - support multiple winsync plugins
Ticket 403 - cleanallruv coverity fixes
Ticket 407 - memory leak in dna plugin
Ticket 403 - CLEANALLRUV feature
Ticket 413 - "Server is unwilling to perform" when running ldapmodify on nsds5ReplicaStripAttrs
3168f04 Coverity defects
5ff0a02 COVERITY FIXES
Ticket #388 - Improve replication agreement status messages
0760116 Update the slapi-plugin documentation on new slapi functions, and added a slapi function for checking on shutdowns
Ticket #369 - restore of replica ldif file on second master after deleting two records shows only 1 deletion
Ticket #409 - Report during startup if nsslapd-cachememsize is too small
Ticket #412 - memberof performance enhancement
12813: Uninitialized pointer read string_values2keys
Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values
Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values
Ticket #410 - Referential integrity plug-in does not work when update interval is not zero
Ticket #406 - Impossible to rename entry (modrdn) with Attribute Uniqueness plugin enabled
Ticket #405 - referint modrdn not working if case is different
Ticket 399 - slapi_ldap_bind() doesn't check bind results
