389-ds-base-1.3.10.2-13.el7_9>t  DH`paim$ƨʮƍ(OqIh4L$X҇[/iz{kmV>6rR,MܕV+iQ8 V [}> IHr.M'kֱn<|`=͖r{SQus} do:z7`FXIfŪ51GT.355B1nJLϜXLKV(T$h.s&feE(կtBʨL[,vMFXg{BͲH@2v@WDa|q]f)ޅֺd_$aP=pB;2Rfu2K̵Wr}{ 78=ލ;-Gw`c+Hs\d,-B_l#Z5b]0w|GXGs[dsTĭLޮiO_Gc827(: ͠Ks{:cm#9f]AaI'vD9"o MNLwnK؞״c?T]P{&yrӌ^% ƈN4zX&kH>[.}Rs1E`(~?Մ=q&Hvwx?hHֹ?^&UNSlͼFw|Td>g?!΂J̭rRMuDz?zd  < .Ibho 7  yy y y y yy zydyyDy(7S04H(N8Xp9p:Yp>v?~@BGyHyI dyX 7Y 7Z ([ ,\ 8y]y^+"b.sd/8e/=f/@l/Bt/\yu5@yv;$:wWyx]xyyc\zC389-ds-base1.3.10.213.el7_9389 Directory Server (base)389 Directory Server is an LDAPv3 compliant server. The base package includes the LDAP server and command line utilities for server administration.ah"x86-02.bsys.centos.orgT9CentOSGPLv3+CentOS BuildSystem System Environment/Daemonshttps://www.port389.org/linuxx86_64output=/dev/null output2=/dev/null # reload to pick up any changes to systemd files /bin/systemctl daemon-reload >$output 2>&1 || : # find all instances instances="" # instances that require a restart after upgrade ninst=0 # number of instances found in total if [ -n "$DEBUGPOSTTRANS" ] ; then output=$DEBUGPOSTTRANS output2=${DEBUGPOSTTRANS}.upgrade fi # Create dirsrv user and group (if needed) USERNAME="dirsrv" ALLOCATED_UID=389 GROUPNAME="dirsrv" ALLOCATED_GID=389 HOMEDIR="/usr/share/dirsrv" getent group $GROUPNAME >/dev/null || /usr/sbin/groupadd -f -g $ALLOCATED_GID -r $GROUPNAME if ! getent passwd $USERNAME >/dev/null ; then if ! getent passwd $ALLOCATED_UID >/dev/null ; then /usr/sbin/useradd -r -u $ALLOCATED_UID -g $GROUPNAME -d $HOMEDIR -s /sbin/nologin -c "user for 389-ds-base" $USERNAME else /usr/sbin/useradd -r -g $GROUPNAME -d $HOMEDIR -s /sbin/nologin -c "user for 389-ds-base" $USERNAME fi fi # Reload our sysctl before we restart (if we can) sysctl --system &> $output; true echo looking for instances in /etc/dirsrv > $output 2>&1 || : instbase="/etc/dirsrv" for dir in $instbase/slapd-* ; do echo dir = $dir >> $output 2>&1 || : if [ ! -d "$dir" ] ; then continue ; fi case "$dir" in *.removed) continue ;; esac basename=`basename $dir` inst="dirsrv@`echo $basename | sed -e 's/slapd-//g'`" echo found instance $inst - getting status >> $output 2>&1 || : if /bin/systemctl -q is-active $inst ; then echo instance $inst is running >> $output 2>&1 || : instances="$instances $inst" else echo instance $inst is not running >> $output 2>&1 || : fi ninst=`expr $ninst + 1` done if [ $ninst -eq 0 ] ; then echo no instances to upgrade >> $output 2>&1 || : exit 0 # have no instances to upgrade - just skip the rest fi # shutdown all instances echo shutting down all instances . . . >> $output 2>&1 || : for inst in $instances ; do echo stopping instance $inst >> $output 2>&1 || : /bin/systemctl stop $inst >> $output 2>&1 || : done echo remove pid files . . . >> $output 2>&1 || : /bin/rm -f /var/run/dirsrv*.pid /var/run/dirsrv*.startpid # do the upgrade echo upgrading instances . . . >> $output 2>&1 || : DEBUGPOSTSETUPOPT=`/usr/bin/echo $DEBUGPOSTSETUP | /usr/bin/sed -e "s/[^d]//g"` if [ -n "$DEBUGPOSTSETUPOPT" ] ; then /usr/sbin/setup-ds.pl -l $output2 -$DEBUGPOSTSETUPOPT -u -s General.UpdateMode=offline >> $output 2>&1 || : else /usr/sbin/setup-ds.pl -l $output2 -u -s General.UpdateMode=offline >> $output 2>&1 || : fi # restart instances that require it for inst in $instances ; do echo restarting instance $inst >> $output 2>&1 || : /bin/systemctl start $inst >> $output 2>&1 || : done exit 0if [ $1 -eq 0 ]; then # Final removal # remove instance specific service files/links rm -rf /etc/systemd/system/dirsrv.target.wants/* > /dev/null 2>&1 || : fiif [ $1 = 0 ]; then # Final removal rm -rf /var/run/dirsrv fi;&# Wn"\9 ^\`]++mL 5e}__I.s*-.I Top<̨< h,PP~ hM+o8 ]N8( hM<=@ՐnoX,|g#F #,l j yi|\TGp3 6y 7w2') o <G~ 1A%: &.] *OG HH=n\+IMTJl y7nd GEYhm}(  l|r #7A" )i . ;@@BSB@ACAGD}IIqeBD 3 '" (  IjC2h Kf O !kpVOE N (^Xp:AA큤A큤A큤A큤A큤AA큤AA큤A큤A큤A큤A큤AA큤A큤AA큤AAAah"Gah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Gah"Aah"Aah"Aah"Qah"Aah"Aah"Qah"Qah"Qah"Qah"Aah"Qah"Qah"Qah"Aah"Aah"Aah"Qah"Aah"Gah"Gah"Gah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Mah"Qah"Pah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Pah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Qah"Pah"Qah"Qah"Qah"Qah"Qah"Rah"Aah"Qah"Qah"Aah"Qah"Qah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Qah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Gah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"Gah"^o ^o ^o ah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Aah"Gah"Gah"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@rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroot389-ds-base-1.3.10.2-13.el7_9.src.rpm389-ds-base389-ds-base(x86-64)config(389-ds-base)ldif2ldbmlibacctpolicy-plugin.so()(64bit)libacctusability-plugin.so()(64bit)libacl-plugin.so()(64bit)libaddn-plugin.so()(64bit)libattr-unique-plugin.so()(64bit)libautomember-plugin.so()(64bit)libback-ldbm.so()(64bit)libbitwise-plugin.so()(64bit)libchainingdb-plugin.so()(64bit)libcollation-plugin.so()(64bit)libcontentsync-plugin.so()(64bit)libcos-plugin.so()(64bit)libderef-plugin.so()(64bit)libdistrib-plugin.so()(64bit)libdna-plugin.so()(64bit)libhttp-client-plugin.so()(64bit)liblinkedattrs-plugin.so()(64bit)libmanagedentries-plugin.so()(64bit)libmemberof-plugin.so()(64bit)libpam-passthru-plugin.so()(64bit)libpassthru-plugin.so()(64bit)libpbe-plugin.so()(64bit)libposix-winsync-plugin.so()(64bit)libpwdstorage-plugin.so()(64bit)libreferint-plugin.so()(64bit)libreplication-plugin.so()(64bit)libretrocl-plugin.so()(64bit)libroles-plugin.so()(64bit)librootdn-access-plugin.so()(64bit)libschemareload-plugin.so()(64bit)libstatechange-plugin.so()(64bit)libsyntax-plugin.so()(64bit)libusn-plugin.so()(64bit)libviews-plugin.so()(64bit)libwhoami-plugin.so()(64bit)perl(DSCreate)perl(DSDialogs)perl(DSMigration)perl(DSUpdate)perl(DSUpdateDialogs)perl(DSUtil)perl(Dialog)perl(DialogManager)perl(DialogYesNo)perl(FileConn)perl(Inf)perl(Migration)perl(Resource)perl(Setup)perl(SetupDialogs)perl(SetupLog) @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    @  /bin/sh/bin/sh/bin/sh/bin/sh/usr/bin/env/usr/bin/perl/usr/bin/python/usr/bin/python2/usr/sbin/semanage389-ds-base-libsbind-utilsconfig(389-ds-base)cyrus-sasl-gssapicyrus-sasl-md5cyrus-sasl-plaingperftools-libslibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libcom_err.so.2()(64bit)libcrypt.so.1()(64bit)libcrypt.so.1(GLIBC_2.2.5)(64bit)libdb-5.3.so()(64bit)libdb-utilslibdl.so.2()(64bit)libdl.so.2(GLIBC_2.2.5)(64bit)libevent-2.0.so.5()(64bit)libicudata.so.50()(64bit)libicui18n.so.50()(64bit)libicuuc.so.50()(64bit)libk5crypto.so.3()(64bit)libkrb5.so.3()(64bit)liblber-2.4.so.2()(64bit)libldap-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libldaputil.so.0()(64bit)libns-dshttpd-1.3.10.2.so()(64bit)libnspr4.so()(64bit)libnss3.so()(64bit)libnss3.so(NSS_3.12)(64bit)libnss3.so(NSS_3.2)(64bit)libnss3.so(NSS_3.3)(64bit)libnss3.so(NSS_3.4)(64bit)libnss3.so(NSS_3.9.2)(64bit)libnunc-stans.so.0()(64bit)libpam.so.0()(64bit)libpam.so.0(LIBPAM_1.0)(64bit)libpcre.so.1()(64bit)libplc4.so()(64bit)libplds4.so()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libsasl2.so.3()(64bit)libsds.so.0()(64bit)libsemanage-pythonlibslapd.so.0()(64bit)libssl3.so()(64bit)libssl3.so(NSS_3.14)(64bit)libssl3.so(NSS_3.2)(64bit)libssl3.so(NSS_3.7.4)(64bit)libsvrcore.so.0()(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)libtcmalloc.so.4()(64bit)nssnss-toolsopenldap-clientsperl(:MODULE_COMPAT_5.16.3)perl(Archive::Tar)perl(Carp)perl(Config)perl(Cwd)perl(DB)perl(DB_File)perl(DSCreate)perl(DSMigration)perl(DSUpdate)perl(DSUtil)perl(Dialog)perl(DialogManager)perl(DynaLoader)perl(Exporter)perl(File::Basename)perl(File::Copy)perl(File::Path)perl(File::Spec)perl(File::Spec::Functions)perl(File::Temp)perl(FileConn)perl(Getopt::Long)perl(Getopt::Std)perl(IO::File)perl(IO::Uncompress::AnyUncompress)perl(Inf)perl(MIME::Base64)perl(Migration)perl(Mozilla::LDAP::API)perl(Mozilla::LDAP::Conn)perl(Mozilla::LDAP::LDIF)perl(Mozilla::LDAP::Utils)perl(NetAddr::IP::Util)perl(POSIX)perl(Resource)perl(Scalar::Util)perl(Setup)perl(SetupLog)perl(Socket)perl(Sys::Hostname)perl(Time::Local)perl(lib)perl(sigtrap)perl(strict)perl(vars)perl(warnings)perl-Mozilla-LDAPperl-NetAddr-IPperl-Socketpolicycoreutils-pythonpython-ldaprpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PartialHardlinkSets)rpmlib(PayloadFilesHavePrefix)rtld(GNU_HASH)selinux-policysvrcoresystemd-libssystemd-unitssystemd-unitssystemd-unitsrpmlib(PayloadIsXz)1.3.10.2-13.el7_91.3.10.2-13.el7_93.343.0.4-14.6.0-14.0.4-14.0-13.13.1-1374.1.35.2-1selinux-policy-base3.9.84.11.3aHw`+``7@__@_"^@^?@^@^@^@^oj@^\@^\@^=Q@]]W]nU]A]:\Q\\P\g\@\\@\\mA@[@[@[[:@[[-[~[~[m~@[W[U@[L[L[L[L[0@[0@[+@[@ZZZyZyZk@Z`@ZX@Z*~Z }YZ@YZ@YZ@Y@YB@Y*@Y˒Y˒Y@Y6@Y$$@Y@Y i@Y i@Y i@Y i@XQ@XQ@X@X9@XP@XX@X@X@X2@W@W@Wu@W@Wt@W.@W~W~W@W@Ws@Ws@Wi,@Wi,@W_W^@W - 1.3.10.2-13Thierry Bordaz - 1.3.10.2-12Thierry Bordaz - 1.3.10.2-11Mark Reynolds - 1.3.10.2-10Mark Reynolds - 1.3.10.2-9Mark Reynolds - 1.3.10.2-8Mark Reynolds - 1.3.10.2-7Mark Reynolds - 1.3.10.2-6Mark Reynolds - 1.3.10.2-5Mark Reynolds - 1.3.10.2-4Mark Reynolds - 1.3.10.2-3Mark Reynolds - 1.3.10.2-2Mark Reynolds - 1.3.10.2-1Mark Reynolds - 1.3.10.1-7Mark Reynolds - 1.3.10.1-6Mark Reynolds - 1.3.10.1-5Mark Reynolds - 1.3.10.1-4Mark Reynolds - 1.3.10.1-3Mark Reynolds - 1.3.10.1-2Mark Reynolds - 1.3.10.1-1Mark Reynolds - 1.3.9.1-10Mark Reynolds - 1.3.9.1-9Mark Reynolds - 1.3.9.1-8Mark Reynolds - 1.3.9.1-7Mark Reynolds - 1.3.9.1-6Mark Reynolds - 1.3.9.1-5Mark Reynolds - 1.3.9.1-4Mark Reynolds - 1.3.9.1-3Mark Reynolds - 1.3.9.1-2Mark Reynolds - 1.3.9.1-1Mark Reynolds - 1.3.8.4-18Mark Reynolds - 1.3.8.4-17Mark Reynolds - 1.3.8.4-16Mark Reynolds - 1.3.8.4-15Mark Reynolds - 1.3.8.4-14Mark Reynolds - 1.3.8.4-13Mark Reynolds - 1.3.8.4-12Mark Reynolds - 1.3.8.4-11Mark Reynolds - 1.3.8.4-10Mark Reynolds - 1.3.8.4-9Mark Reynolds - 1.3.8.4-8Mark Reynolds - 1.3.8.4-7Mark Reynolds - 1.3.8.4-6Mark Reynolds - 1.3.8.4-5Mark Reynolds - 1.3.8.4-4Mark Reynolds - 1.3.8.4-3Mark Reynolds - 1.3.8.4-2Mark Reynolds - 1.3.8.4-1Mark Reynolds - 1.3.8.2-1Mark Reynolds - 1.3.7.5-18Mark Reynolds - 1.3.7.5.17Mark Reynolds - 1.3.7.5-16Mark Reynolds - 1.3.7.5-15Mark Reynolds - 1.3.7.5-14Mark Reynolds - 1.3.7.5-13Mark Reynolds - 1.3.7.5-12Mark Reynolds - 1.3.7.5-11Mark Reynolds - 1.3.7.5-10Mark Reynolds - 1.3.7.5-9Mark Reynolds - 1.3.7.5-8Mark Reynolds - 1.3.7.5-7Mark Reynolds - 1.3.7.5-6Mark Reynolds - 1.3.7.5-5Mark Reynolds - 1.3.7.5-4Mark Reynolds - 1.3.7.5-3Mark Reynolds - 1.3.7.5-2Mark Reynolds - 1.3.7.5-1Mark Reynolds - 1.3.6.1-16Mark Reynolds - 1.3.6.1-15Mark Reynolds - 1.3.6.1-14Mark Reynolds - 1.3.6.1-13Mark Reynolds - 1.3.6.1-12Mark Reynolds - 1.3.6.1-11Mark Reynolds - 1.3.6.1-10Mark Reynolds - 1.3.6.1-9Mark Reynolds - 1.3.6.1-8Mark Reynolds - 1.3.6.1-7Mark Reynolds - 1.3.6.1-6Mark Reynolds - 1.3.6.1-5Mark Reynolds - 1.3.6.1-4Mark Reynolds - 1.3.6.1-3Mark Reynolds - 1.3.6.1-2Mark Reynolds - 1.3.6.1-1Noriko Hosoi - 1.3.5.10-12Noriko Hosoi - 1.3.5.10-11Noriko Hosoi - 1.3.5.10-10Noriko Hosoi - 1.3.5.10-9Noriko Hosoi - 1.3.5.10-8Noriko Hosoi - 1.3.5.10-7Noriko Hosoi - 1.3.5.10-6Noriko Hosoi - 1.3.5.10-5Noriko Hosoi - 1.3.5.10-4Noriko Hosoi - 1.3.5.10-3Noriko Hosoi - 1.3.5.10-2Noriko Hosoi - 1.3.5.10-1Noriko Hosoi - 1.3.5.9-1Noriko Hosoi - 1.3.5.8-1Noriko Hosoi - 1.3.5.7-1Noriko Hosoi - 1.3.5.6-1Noriko Hosoi - 1.3.5.5-1Noriko Hosoi - 1.3.5.4-1Noriko Hosoi - 1.3.5.3-1Noriko Hosoi - 1.3.5.2-1Noriko Hosoi - 1.3.4.0-19Noriko Hosoi - 1.3.4.0-18Noriko Hosoi - 1.3.4.0-17Noriko Hosoi - 1.3.4.0-16Noriko Hosoi - 1.3.4.0-15Noriko Hosoi - 1.3.4.0-14Noriko Hosoi - 1.3.4.0-13Noriko Hosoi - 1.3.4.0-12Noriko Hosoi - 1.3.4.0-11Noriko Hosoi - 1.3.4.0-10Noriko Hosoi - 1.3.4.0-9Noriko Hosoi - 1.3.4.0-8Noriko Hosoi - 1.3.4.0-7Noriko Hosoi - 1.3.4.0-6Noriko Hosoi - 1.3.4.0-5Noriko Hosoi - 1.3.4.0-4Noriko Hosoi - 1.3.4.0-3Noriko Hosoi - 1.3.4.0-2Noriko Hosoi - 1.3.4.0-1Noriko Hosoi - 1.3.3.1-19Noriko Hosoi - 1.3.3.1-18Noriko Hosoi - 1.3.3.1-17Noriko Hosoi - 1.3.3.1-16Noriko Hosoi - 1.3.3.1-15Noriko Hosoi - 1.3.3.1-14Noriko Hosoi - 1.3.3.1-13Noriko Hosoi - 1.3.3.1-12Noriko Hosoi - 1.3.3.1-11Noriko Hosoi - 1.3.3.1-10Noriko Hosoi - 1.3.3.1-9Noriko Hosoi - 1.3.3.1-8Noriko Hosoi - 1.3.3.1-7Noriko Hosoi - 1.3.3.1-6Noriko Hosoi - 1.3.3.1-5Noriko Hosoi - 1.3.3.1-4Rich Megginson - 1.3.3.1-3Noriko Hosoi - 1.3.3.1-2Noriko Hosoi - 1.3.3.1-1Noriko Hosoi - 1.3.1.6-26Noriko Hosoi - 1.3.1.6-25Noriko Hosoi - 1.3.1.6-24Noriko Hosoi - 1.3.1.6-23Noriko Hosoi - 1.3.1.6-22Noriko Hosoi - 1.3.1.6-21Noriko Hosoi - 1.3.1.6-20Noriko Hosoi - 1.3.1.6-19Noriko Hosoi - 1.3.1.6-18Noriko Hosoi - 1.3.1.6-17Daniel Mach - 1.3.1.6-16Noriko Hosoi - 1.3.1.6-15Noriko Hosoi - 1.3.1.6-14Daniel Mach - 1.3.1.6-13Noriko Hosoi - 1.3.1.6-12Rich Megginson - 1.3.1.6-11Rich Megginson - 1.3.1.6-10Noriko Hosoi - 1.3.1.6-9Noriko Hosoi - 1.3.1.6-8Rich Megginson - 1.3.1.6-7Rich Megginson - 1.3.1.6-6Rich Megginson - 1.3.1.6-5Noriko Hosoi - 1.3.1.6-4Rich Megginson - 1.3.1.6-3Noriko Hosoi - 1.3.1.6-2Noriko Hosoi - 1.3.1.6-1Noriko Hosoi - 1.3.1.5-1Noriko Hosoi - 1.3.1.4-1Rich Megginson - 1.3.1.3-1Jan Safranek - 1.3.1.2-2Noriko Hosoi - 1.3.1.2-1Noriko Hosoi - 1.3.1.1-1Noriko Hosoi - 1.3.1.0-1Noriko Hosoi - 1.3.0.5-1Mark Reynolds - 1.3.0.4-1Noriko Hosoi - 1.3.0.3-1Parag Nemade - 1.3.0.2-2Noriko Hosoi - 1.3.0.2-1Noriko Hosoi - 1.3.0.1-1Noriko Hosoi - 1.3.0.0-1Noriko Hosoi - 1.3.0-0.3.rc3Noriko Hosoi - 1.3.0-0.2.rc2Noriko Hosoi - 1.3.0-0.1.rc1Mark Reynolds - 1.3.0.a1-1Rich Megginson - 1.2.11.15-1Rich Megginson - 1.2.11.14-1Rich Megginson - 1.2.11.13-1Rich Megginson - 1.2.11.12-1Mark Reynolds - 1.2.11.11-1Mark Reynolds - 1.2.11.10-1Mark Reynolds - 1.2.11.9-1Mark Reynolds - 1.2.11.8-1Fedora Release Engineering - 1.2.11.7-2.2Petr Pisar - 1.2.11.7-2.1Rich Megginson - 1.2.11.7-2Rich Megginson - 1.2.11.7-1Rich Megginson - 1.2.11.6-1Rich Megginson - 1.2.11.5-2Rich Megginson - 1.2.11.5-1Petr Pisar - 1.2.11.4-1.1Rich Megginson - 1.2.11.4-1Rich Megginson - 1.2.11.3-1Rich Megginson - 1.2.11.2-1Rich Megginson - 1.2.11.1-1Rich Megginson - 1.2.11-0.1.a1Noriko Hosoi - 1.2.10.4-4Noriko Hosoi - 1.2.10.4-3Rich Megginson - 1.2.10.4-2Rich Megginson - 1.2.10.4-1Rich Megginson - 1.2.10.3-1Rich Megginson - 1.2.10.2-1Noriko Hosoi - 1.2.10.1-2Rich Megginson - 1.2.10.1-1Rich Megginson - 1.2.10.0-1Noriko Hosoi - 1.2.10-0.10.rc1.2Petr Pisar - 1.2.10-0.10.rc1.1Rich Megginson - 1.2.10-0.10.rc1Rich Megginson - 1.2.10-0.9.a8Rich Megginson - 1.2.10-0.8.a7Rich Megginson - 1.2.10-0.7.a7Fedora Release Engineering - 1.2.10-0.6.a6.1Rich Megginson - 1.2.10-0.6.a6Rich Megginson - 1.2.10-0.5.a5Rich Megginson - 1.2.10-0.4.a4Rich Megginson - 1.2.10.a3-0.3Rich Megginson - 1.2.10.a2-0.2Rich Megginson - 1.2.10.a1-0.1Rich Megginson - 1.2.9.10-2Rich Megginson - 1.2.9.10-1Rich Megginson - 1.2.9.9-1Rich Megginson - 1.2.9.8-1Rich Megginson - 1.2.9.7-1Rich Megginson - 1.2.9.6-1Rich Megginson - 1.2.9.5-1Rich Megginson - 1.2.9.4-1Rich Megginson - 1.2.9.3-1Rich Megginson - 1.2.9.2-1Rich Megginson - 1.2.9.1-2Rich Megginson - 1.2.9.1-1Petr Sabata - 1.2.9.0-1.2Petr Sabata - 1.2.9.0-1.1Rich Megginson - 1.2.9.0-1Rich Megginson - 1.2.9-0.2.a2Marcela Mašláňová - 1.2.9-0.1.a1.2Marcela Mašláňová - 1.2.9-0.1.a1.1Rich Megginson - 1.2.9-0.1.a1Rich Megginson - 1.2.8.3-1Rich Megginson - 1.2.8.2-1Rich Megginson - 1.2.8.1-1Rich Megginson - 1.2.8.0-1Rich Megginson - 1.2.8-0.10.rc5Rich Megginson - 1.2.8-0.9.rc4Rich Megginson - 1.2.8-0.8.rc2Caolán McNamara - 1.2.8-0.7.rc1Rich Megginson - 1.2.8-0.6.rc1Rich Megginson - 1.2.8-0.5.a3Rich Megginson - 1.2.8-0.4.a3Rich Megginson - 1.2.8-0.3.a3Fedora Release Engineering - 1.2.8-0.2.a2.1Rich Megginson - 1.2.8-0.2.a2Nathan Kinder - 1.2.8-0.1.a1Rich Megginson - 1.2.7.5-1Rich Megginson - 1.2.7.4-2Rich Megginson - 1.2.7.4-1Rich Megginson - 1.2.7.3-1Rich Megginson - 1.2.7.2-1Rich Megginson - 1.2.7.1-2Rich Megginson - 1.2.7.1-1Nathan Kinder - 1.2.7-2Nathan Kinder - 1.2.7-1Rich Megginson - 1.2.7-0.6.a5Rich Megginson - 1.2.7-0.5.a4Rich Megginson - 1.2.7-0.4.a3Rich Megginson - 1.2.7-0.3.a3Rich Megginson - 1.2.7-0.2.a2Rich Megginson - 1.2.7-0.1.a1Rich Megginson - 1.2.6.1-3Rich Megginson - 1.2.6.1-2Rich Megginson - 1.2.6.1-1Rich Megginson - 1.2.6-1Rich Megginson - 1.2.6-0.11.rc7Rich Megginson - 1.2.6-0.10.rc6Rich Megginson - 1.2.6-0.9.rc3Rich Megginson - 1.2.6-0.8.rc3Rich Megginson - 1.2.6-0.7.rc2Nathan Kinder - 1.2.6-0.6.rc1Rich Megginson - 1.2.6-0.5.rc1Marcela Maslanova - 1.2.6-0.4.a4.1Rich Megginson - 1.2.6-0.4.a4Nathan Kinder - 1.2.6-0.4.a3Caolán McNamara - 1.2.6-0.3.a2Rich Megginson - 1.2.6-0.2.a2Nathan Kinder - 1.2.6-0.1.a1Rich Megginson - 1.2.5-1Rich Megginson - 1.2.5-0.5.rc4Rich Megginson - 1.2.5-0.4.rc3Rich Megginson - 1.2.5-0.3.rc2Rich Megginson - 1.2.5-0.2.rc1Rich Megginson - 1.2.5-0.1.a1Rich Megginson - 1.2.4-1Rich Megginson - 1.2.3-1Caolán McNamara - 1.2.2-2Rich Megginson - 1.2.2-1Tomas Mraz - 1.2.1-5Noriko Hosoi - 1.2.1-4Rich Megginson - 1.2.1-3Fedora Release Engineering - 1.2.1-2Rich Megginson - 1.2.1-1Rich Megginson - 1.2.0-4Rich Megginson - 1.2.0-3Rich Megginson - 1.2.0-2Rich Megginson - 1.2.0-1Noriko Hosoi - 1.1.3-7Noriko Hosoi - 1.1.3-6Rich Megginson - 1.1.3-5Rich Megginson - 1.1.3-4Rich Megginson - 1.1.3-3Rich Megginson - 1.1.3-2Rich Megginson - 1.1.3-1Rich Megginson - 1.1.2-1Rich Megginson - 1.1.1-2Rich Megginson - 1.1.1-1Rich Megginson - 1.1.0.1-4Tom "spot" Callaway - 1.1.0.1-3Tom "spot" Callaway - 1.1.0.1-3Rich Megginson - 1.1.0.1-2Rich Megginson - 1.1.0.1-1Fedora Release Engineering - 1.1.0-5Rich Megginson - 1.1.0-4Release Engineering - 1.1.0-3Rich Megginson - 1.1.0-2.0Rich Megginson - 1.1.0-1.2Rich Megginson - 1.1.0-1.1Rich Megginson - 1.1.0-0.3.20070720Nathan Kinder - 1.1.0-0.2.20070320Rich Megginson - 1.1.0-0.1.20070320Rich Megginson - 1.1.0-0.1.20070223Rich Megginson - 1.1.0-0.1.20070213Rich Megginson - 1.1.0-1.el4.20070209Rich Megginson - 1.1.0-1.el4.20070207Rich Megginson - 1.1.0-1.el4.20070129Rich Megginson - 1.1.0-8.el4.20070125Rich Megginson - 1.1.0-7.el4.20070125Rich Megginson - 1.1.0-6.el4.20070125Rich Megginson - 1.1.0-5.el4.20070125Rich Megginson - 1.1.0-4.el4.20070119Rich Megginson - 1.1.0-3.el4.20070119Rich Megginson - 1.1.0-2.el4.20070119Rich Megginson - 1.1.0-1.el4.cvs20070119Rich Megginson - 1.1-0.1.cvs20070115Dennis Gilmore - 1.1-0.1.cvs20070108Rich Megginson - 1.0.99-16Rich Megginson - 1.0.99-15Rich Megginson - 1.0.99-14Rich Megginson - 1.0.99-13Rich Megginson - 1.0.99-12Rich Megginson - 1.0.99-11Rich Megginson - 1.0.99-10Rich Megginson - 1.0.99-9Rich Megginson - 1.0.99-8Rich Megginson - 1.0.99-7Rich Megginson - 1.0.99-6Rich Megginson - 1.0.99-5Rich Megginson - 1.0.99-4Rich Megginson - 1.0.99-3Rich Megginson - 1.0.99-2Rich Megginson - 1.0.99-1- Bump version to 1.3.10.2-13 - Resolves: Bug 2005399 - Internal unindexed searches in syncrepl - Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed - Resolves: Bug 2005434 - ACIs are being evaluated against the Replication Manager account in a replication context. - Resolves: Bug 2005435 - A connection can be erroneously flagged as replication conn during evaluation of an aci with ip bind rule- Bump version to 1.3.10.2-12- Bump version to 1.3.10.2-11 - Resolves: Bug 1953673 - Add new access log keywords for time spent in work queue and actual operation time - Resolves: Bug 1931182 - information disclosure during the binding of a DN- Bump version to 1.3.10.2-10 - Resolves: Bug 1909342 - DS crash in deref plugin while dereferencing an entry that exists but that is not returned by internal search - Resolves: Bug 1921856 - “write” permission of ACI changes ns-slapd’s behavior on search operation - Resolves: Bug 1881968 - Replication Lag under high load- Bump version to 1.3.10.2-9 - Resolves: Bug 1905450 - Internal unindexed search crashes the server- Bump version to 1.3.10.2-8 - Resolves: Bug 1904145 - group rdn with leading space char and add fails error 21 invalid syntax and delete fails error 32 - Resolves: Bug 1902042 - Entries conflict not resolved by replication- Bump version to 1.3.10.2-7 - Resolves: Bug 1870624 - RHDS - allow more than 1 empty AttributeDescription for ldapsearch, without the risk of denial of service - Resolves: Bug 1876028 - errors log with incorrectly formatted message parent_update_on_childchange on PARENTUPDATE_DEL - Resolves: Bug 1860008 - On ADD replication URP issue internal searches with filter containing unescaped chars- Bump version to 1.3.10.2-6 - Resolves: Bug 1839085 - IPA: Winsync not honoring parameters winSyncDirectoryFilter and winSyncWindowsFilter- Bump version to 1.3.10.2-5 - Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions- Bump version to 1.3.10.2-4 - Resolves: Bug 1837105 - Check for clock errors and time skew- Bump version to 1.3.10.2-3 - Resolves: Bug 1824930 - ipa ns-slapd 3 threads deadlock, db pages, state_change lock, write vattr lock - Resolves: Bug 1837477 - ns-slapd hangs during CleanAllRUV tests- Bump version to 1.3.10.2-2 - Resolves: Bug 1820433 - Invalid defaults.inf, missing key db_home_dir - Resolves: Bug 1801327 - intermittent SSL hang with rhds - Resolves: Bug 1807537 - wildcards in rootdn-allow-ip attribute are not accepted - Resolves: Bug 1827284 - Memory leak in indirect COS- Bump version to 1.3.10.2-1 - Resolves: Bug 1724761 - Entry cache contention during base search - Resolves: Bug 1515319 - nsDS5ReplicaId cant be set to the old value it had before - Resolves: Bug 1700987 - 389-base-ds expected file permissions in package don't match final runtime permissions - Resolves: Bug 1762901 - cenotaph errors on modrdn operations - Resolves: Bug 1772616 - Typo in the replication debug message "error 0 for oparation 561" - Resolves: Bug 1781276 - Regression: NSS has interop problems as server when using limited cipher list - Resolves: Bug 1787921 - Crash on startup: Bus error in __env_faultmem.isra.1.part.2 - Resolves: Bug 1759142 - No error returned when adding an entry matching filters for a non existing automember group - Resolves: Bug 1763365 - ns-slapd is crashing while restarting ipactl - Resolves: Bug 1769418 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10 - Resolves: Bug 1775165 - ldclt core dumped when run with -e genldif option - Resolves: Bug 1796558 - Memory leak in ACI using IP subject - Resolves: Bug 1769296 - cl-dump exit code is 0 even if command fails with invalid arguments- Bump version to 1.3.10.1-7 - Resolves: Bug 1803023 - Several memory leaks reported by Valgrind (fix regression)- Bump version to 1.3.10.1-6 - Resolves: Bug 1801694 - ns-slapd is crashing while restarting ipactl - Resolves: Bug 1803023 - Several memory leaks reported by Valgrind for 389-ds 1.3.9.1-10 - Resolves: Bug 1803052 - Memory leak in ACI using IP subject - Resolves: Bug 1801703 - Regression: NSS has interop problems as server when using limited cipher list - Resolves: Bug 1809160 - Entry cache contention during base search- Bump version to 1.3.10.1-5 - Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache(cont)- Bump version to 1.3.10.1-4 - Resolves: Bug 1765106 - ipa-server-install is failing with ipapython.admintool: ERROR failed to create DS instance Command- Bump version to 1.3.10.1-3 - Resolves: Bug 1756182 - ns-slapd crash on concurrent SASL BINDs, connection_call_io_layer_callbacks must hold hold c_mutex - Resolves: Bug 1749236 - etime displayed has an order of magnitude 10 times smaller than it should be - Resolves: Bug 1758109 - AddressSanitizer: heap-use-after-free in import_free_job - Resolves: Bug 1676948 - After audit log file is rotated, DS version string is logged after each update - Resolves: Bug 1749595 - Extremely slow LDIF import with ldif2db- Bump version to 1.3.10.1-2 - Resolves: Bug 1748199 - EMBARGOED CVE-2019-14824 389-ds-base: 389-ds and IDM: allows authenticated unprivileged user to retrieve content of userPassword field for any user - Resolves: Bug 1610234 - nsslapd-defaultnamingcontext does not change when the assigned suffix got deleted - Resolves: Bug 1723545 - Directory Server 10 not RFC 4511 compliant - Resolves: Bug 1724914 - LDAP server returning controltype in different sequence - Resolves: Bug 1739182 - CleanAllRUV task limit not enforced - Resolves: Bug 1744623 - DB Deadlock on modrdn appears to corrupt database and entry cache - Resolves: Bug 1685059 - After running cl-dump dbdir/cldb/*ldif.done are not deleted- Bump version to 1.3.10.1-1 - Resolves: Bug 1639342 - Replace error by warning in the state machine defined in repl5_inc_run - Resolves: Bug 1691931 - memory leak in automember plugin - Resolves: Bug 1662461 - Log the actual base DN when the search fails with "invalid attribute request" - Resolves: Bug 1732053 - etime can contain invalid nanosecond value - Resolves: Bug 1546739 - consistency in the replication error codes while setting nsds5replicaid=65535- Bump version to 1.3.9.1-10 - Resolves: Bug 1668457 - CVE-2019-3883 389-ds-base: DoS via hanging secured connections- Bump version to 1.3.9.1-9 - Resolves: Bug 1713361 - Update defaults.inf (fix missing first commit) - Resolves: Bug 1716267 - dse.ldif strip-off string after 1023 character- Bump version to 1.3.9.1-8 - Resolves: Bug 1702740 - ns-slapd craches on IPA Servers throughout the customer's topology - Resolves: Bug 1715091 - ds-replcheck does not always print a Result summary - Resolves: Bug 1713361 - Update defaults.inf - Resolves: Bug 1708215 - maxlogsperdir accepting negative values - Resolves: Bug 1701092 - segfault when using pam passthru and addn plugins together- Bump version to 1.3.9.1-7 - Resolves: Bug 1704314 - [abrt] [faf] 389-ds-base: objset_find(): /usr/sbin/ns-slapd killed by 11 - Resolves: Bug 1629055 - ds-replcheck unreliable, showing false positives - Resolves: Bug 1710848 - ACI's with IPv4 and IPv6 bind rules do not work for IPv6 clients- Bump version to 1.3.9.1-6 - Resolves: Bug 1705125 - ipa-replica-install with 389-ds-base-1.3.9.1-5.el7 - Resolves: Bug 1643772 - ds-replcheck should validate suffix exists and it's replicated - Resolves: Bug 1647133 - Log warn instead of ERR when aci target does not exist. - Resolves: Bug 1639192 - Request to add passwordSendExpiringTime in password policy objectclass- Bump version to 1.3.9.1-5 - Resolves: Bug 1630513 - Customer requesting -y option for ds-replcheck - Resolves: Bug 1668457 - CVE-2019-3883 389-ds-base: DoS via hanging secured connections - Resolves: Bug 1695014 - Clarify the ability to change the NOFILE limit - Resolves: Bug 1615155 - extended search fails to match entries - Resolves: Bug 1652984 - Subtree password policy overrides a user-defined password policy- Bump version to 1.3.9.1-4 - Resolves: Bug 1601241 - ns-slapd - Crash when using bak2db.pl to restore a single database. - Resolves: Bug 1623935 - upgrade of 389-ds-base could remove replication agreements. - Resolves: Bug 1627846 - Contention on virtual attribute lookup (parts 2 & 3)- Bump version to 1.3.9.1-3 - Resolves: Bug 1651279 - The dirsrv user is no longer created with uid 389 - Resolves: Bug 1542469 - Why does the mep_origination entry toggle from tombstone/not_tombstone - Resolves: Bug 1689313 - OPERATIONS ERROR when trying to delete a group with automember members - Resolves: Bug 1673472 - the warning about skew time could last forever. - Resolves: Bug 1680245 - Error in memberof-plugin cause failures in ipa group-mod - Resolves: Bug 1482596 - referint update should discard any changes if mep update fails- Bump version to 1.3.9.1-2 - Resolves: Bug 1417340 - entry cache is not cleaned up if an operation is aborted - Resolves: Bug 1603140 - Export produces a non-importable ldif file - Resolves: Bug 1518320 - ns-slapd: crash in entrycache_add_int - Resolves: Bug 1680245 - Error in memberof-plugin cause failures in ipa group-mod - Resolves: Bug 1589144 - shadowWarning is not generated if passwordWarning is lower than 86400 seconds (1 day)* Bump version to 1.3.9.1-1 - Resolves: Bug 1438144 - [RFE] Include autounmembering feature in IPA - Resolves: Bug 1645359 - Rebase 389-ds-base in RHEL 7.7 to 1.3.9 - Resolves: Bug 1561769 - [RFE] revise the "transient error" message in a replication agreement's last update status - Resolves: Bug 1563999 - Is it possible for Directory server to reject the current password only? - Resolves: Bug 1597202 - PassSync not setting pwdLastSet attribute in Active Directory after Pw update from LDAP sync for normal user - Resolves: Bug 1601241 - ns-slapd - Crash when using bak2db.pl to restore a single database - Resolves: Bug 1629055 - ds-replcheck unreliable, showing false positives - Resolves: Bug 1630513 - Customer requesting -y option for ds-replcheck - Resolves: Bug 1639192 - Request to add passwordSendExpiringTime in password policy objectclass - Resolves: Bug 1643587 - default of "nsslapd-errorlog-maxlogsperdir: 1" causing huge log files - Resolves: Bug 1643772 - ds-replcheck should validate suffix exists and it's replicated - Resolves: Bug 1647133 - Log warn instead of ERR when aci target does not exist. - Resolves: Bug 1653163 - certmap fails when Issuer DN has comma in name - Resolves: Bug 1602001 - cannot add cenotaph in read only consumer - Resolves: Bug 1589144 - shadowWarning is not generated if passwordWarning is lower than 86400 seconds (1 day) - Resolves: Bug 1600631 - In repicated topology a single-valued attribute can diverge - Resolves: Bug 1626375 - on-line re-initialization hangs - Resolves: Bug 1627846 - Contention on virtual attribute lookup - Resolves: Bug 1642838 - after certain failed import operation, impossible to replay an import operation - Resolves: Bug 1647099 - audit logs does not capture the operation where nsslapd-lookthroughlimit is modified - Resolves: Bug 1648922 - during MODRDN referential integrity can fail erronously while updating large groups - Resolves: Bug 1652984 - Subtree password policy overrides a user-defined password policy - Resolves: Bug 1663829 - import task should not be deleted after import finishes to be able to query the status. - Resolves: Bug 1623935 - upgrade of 389-ds-base could remove replication agreements - Resolves: Bug 1622049 - db2bak.pl does not work with LDAPS, but ok with STARTTLS - Resolves: Bug 1633488 - fixup-memberof.pl -D cn=<> -w - -b <> -P LDAP fails with ldap_start_tls error - Resolves: Bug 1451460 - error messages during ldif2db after enabling encryption on an attribute - Resolves: Bug 1627512 - After RHEL 7.6 HTB update, unable to set nsslapd-cachememsize (RHDS 10) to custom value- Bump version to 1.3.8.4-18 - Resolves: Bug 1638516 - CRIT - list_candidates - NULL idl was recieved from filter_candidates_ex- Bump version to 1.3.8.4-17 - Resolves: Bug 1643875 - ns-slapd: crash in entrycache_add_int- Bump version to 1.3.8.4-16 - Resolves: Bug 1638513 - Message: "CRIT - list_candidates - NULL idl was recieved from filter_candidates_ext." should not be critical- Bump version to 1.3.8.4-15 - Resolves: Bug 1624004 - Fix regression in last patch- Bump version to 1.3.8.4-14 - Resolves: Bug 1624004 - potential denial of service attack- Bump version to 1.3.8.4-13 - Resolves: Bug 1623949 - Crash in delete_passwdPolicy when persistent search connections are terminated unexpectedly- Bump version to 1.3.8.4-12 - Resolves: Bug 1616412 - filter optimization fix causes regression(fix reverted)- Bump version to 1.3.8.4-11 - Resolves: Bug 1614820 - Server crash through modify command with large DN- Bump verison to 1.3.8.4-10 - Resolves: Bug 1614501 - Disable nunc-stans by default - Resolves: Bug 1607078 - ldapsearch with server side sort crashes the ldap server- Bump version to 1.3.8.4-9 - Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user "dirsrv" if there is an already existing user with the UID/GID 389 on the machine.- Bump version to 1.3.8.4-8 - Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user "dirsrv" if there is an already existing user with the UID/GID 389 on the machine.- Bump version to 1.3.8.4-7 - Resolves: Bug 1595766 - backout this fix for now because it breaks FreeIPA (removed patch file all together)- Bump version to 1.3.8.4-6 - Resolves: Bug 1595766 - backout this fix for now because it breaks FreeIPA- Bump version to 1.3.8.4-5 - Resolves: Bug 1595766 - CVE-2018-10871 389-ds-base: replication and the Retro Changelog plugin store plaintext password by default- Bump version to 1.3.8.4-4 - Resolves: Bug 1597384 - Async operations can hang when the server is running nunc-stans - Resolves: Bug 1598186 - A search with the scope "one" returns a non-matching entry - Resolves: Bug 1598718 - import fails if backend name is "default" - Resolves: Bug 1598478 - If a replica is created with a bindDNGroup, this group is taken into account only after bindDNGroupCheckInterval seconds - Resolves: Bug 1525256 - Invalid SNMP MIB for 389 DS - Resolves: Bug 1597518 - ds-replcheck command returns traceback errors against ldif files having garbage content when run in offline mode- Bump version to 1.3.8.4-3 - Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user "dirsrv" if there is an already existing user with the UID/GID 389 on the machine.- Bump version to 1.3.8.4-2 - Resolves: Bug 1594484 - setup-ds.pl not able to handle/create the user "dirsrv" if there is an already existing user with the UID/GID 389 on the machine.- Bump version to 1.3.8.4-1 - Resolves: Bug 1560653 - Rebase 389-ds-base in RHEL 7.6 to 1.3.8- Bump version to 1.3.8.2-1 - Resolves: Bug 1560653 - Rebase 389-ds-base in RHEL 7.6 to 1.3.8- Bump version to 1.3.7.5-18 - Resolves: Bug 1539082 - Fix memory leak- Bump version to 1.3.7.5.17 - Resolves: Bug 1539082 - Child entry cenotaphs should not prevent the deletion of the parent - Resolves: Bug 1540106 - CVE-2018-1054 - remote Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8 - Resolves: Bug 1535538 - CVE-2017-15135 - Authentication bypass due to lack of size check in slapi_ct_memcmp- Bump version to 1.3.7.5-16 - Resolves: Bug 1542645 - Outgoing secure connection is failing with recent OpenLDAP- Bump version to 1.3.7.5-15 - Resolves: Bug 1533828 - Server allows to set nsds5replicaid=65535 in the existing replica entry - Resolves: Bug 1535515 - local password policies should use the same defaults as the global policy - Resolves: Bug 1541108 - Allow CRL handling to be configurable for outgoing connections- Bump version to 1.3.7.5-14 - Resolves: Bug 1519406 - New defects found in 389-ds-base-1.3.7.5-3.el7 (fix regression in -13)- Bump version to 1.3.7.5-13 - Resolves: Bug 1533828 - Server allows to set nsds5replicaid=65535 in the existing replica entry - Resolves: Bug 1519406 - New defects found in 389-ds-base-1.3.7.5-3.el7 - Resolves: Bug 1534379 - CVE-2017-15134: Remote DoS via search filters in slapi_filter_sprintf in slapd/util.c - Resolves: Bug 1533571 - memberof: schema violation error message is confusing as memberof will likely repair target entry - Resolves: Bug 1535515 - local password policies should use the same defaults as the global policy- Bump version to 1.3.7.5-12 - Resolves: Bug 1459946 - GetEffectiveRights gives false-negative with ACIs containing targetfilter - Resolves: Bug 1507194 - cleanallruv could break replication if anchor csn in ruv originated in deleted replica - Resolves: Bug 1517788 - password policy: minimum token length fails when the token length is equal to attribute length - Resolves: Bug 1518287 - heap-use-after-free in csn_as - Resolves: Bug 1531153 - Indexing of internationalized matching rules is failing - Resolves: Bug 1517383 - ns-slapd segfaults with ERR - connection_release_nolock_ext - conn=0 fd=0 Attempt to release connection that is not acquired - Resolves: Bug 1523183 - search with CoS attribute is getting slower after modifying/adding CosTemplate - Resolves: Bug 1457315 - cmocka tests are not executed during rpm build - Resolves: Bug 1516309 - After cleanALLruv, replication is looping on keep alive DEL- Bump version to 1.3.7.5-11 - Resolves: Bug 1518069 - heap-buffer-overflow in ss_unescape - Resolves: Bug 1516676 - gssapi authentication fails after upgrading 389-ds-base - Resolves: Bug 1511885 - Automatically load /usr/lib/sysctl.d/70-dirsrv.conf after installing 389-ds-base - Resolves: Bug 1517980 - stack-buffer-overflow in slapi_pblock_get- Bump version to 1.3.7.5-10 - Resolves: Bug 1464463 - Replication fails to start with CBCA (Certificate-Based Client Authentication) while FIPS mode is enabled. - Resolves: Bug 1465383 - Segmentation fault in valueset_array_to_sorted_quick - Resolves: Bug 1510865 - python-ldap is not a dependency of 389-ds-base - Resolves: Bug 1513467 - IPA upgrade fails for latest ipa package - Resolves: Bug 1192099 - IPA server replication broken, after DS stop-start, due to changelog reset - Resolves: Bug 1445188 - Misleading error message - Incoming BER Element was 3 bytes - Resolves: Bug 1498980 - heap corruption during import - Resolves: Bug 1511462 - scope one searches give incorrect results - Resolves: Bug 1514033 - opened connection are hanging, no longer poll- Bump version to 1.3.7.5-9 - Resolves: Bug 1271208 - Fix copy and paste error- Bump version to 1.3.7.5-8 - Resolves: Bug 1509016 - cleanallruv task is not logging any information- Bump version to 1.3.7.5-7 - Resolves: Bug 1474100 - Use of uninitialized value in string ne at /usr/bin/logconv.pl - Resolves: Bug 1506425 - Improve valueset sort performance during valueset purging - Resolves: Bug 1505046 - [abrt] 389-ds-base: SLL_Next(): ns-slapd killed by SIGSEGV - Resolves: Bug 1271208 - nsds5ReplicaProtocolTimeout attribute accepts negative values- Bump version to 1.3.7.5-6 - Resolves: Bug 1488836 - directory server fails to start because maxdisksize - Resolves: Bug 1474100 - Use of uninitialized value in string ne at /usr/bin/logconv.pl - Resolves: Bug 1447308 - Add option to show full un-ellipsized output in status-dirsrv - Resolves: Bug 1438526 - Server allows to set any nsds5replicaid in the existing replica entry - Resolves: Bug 1185774 - Missing warning for invalid replica backoff configuration- Bump version to 1.3.7.5-5 - Resolves: Bug 1476207 - Enabling instance service doesn't work - Resolves: Bug 1434335 - Errors log filled with attrlist_replace - attr_replace - Resolves: Bug 1453155 - unable to retrieve specific cosAttribute when subtree password policy is configured - Resolves: Bug 1459965 - repl-monitor - matches null string many times in regex - Resolves: Bug 1463204 - Adding a database entry fails if the same database was deleted after an import - Resolves: Bug 1469567 - Activating roles returns error 16 - Resolves: Bug 1498773 - Installation of ipa fails with crash in topology plugin - Resolves: Bug 1501058 - [memberOf Plugin] bulk deleting users causes deadlock when there are multiple backends - Resolves: Bug 1352121 - [RFE] allow to enable MemberOf plugin in dedicated consumer- Bump version to 1.3.7.5-4 - Fix coverity warnings from convscan - Improve atomics- Bump version to 1.3.7.5-3 - specfile remove cap_net_bind_service+ep from ns-slapd- Bump version to 1.3.7.5-2 - specfile updates: add asan support, make nunc-stans default, and general cleanup- Bump version to 1.3.7.5-1 - Resolves: Bug 1470169 - Rebase 389-ds-base in RHEL 7.5 to 1.3.7- Bump version to 1.3.6.1-16 - Resolves: Bug 1444938 - nsslapd-allowed-sasl-mechanisms doesn't reset to default values without a restart - Resolves: Bug 1447015 - Adjust db2bak.pl help and man page to reflect changes introduced to the script - Resolves: Bug 1450896 - Manual resetting of nsslapd-dbcachesize using ldapmodify - Resolves: Bug 1454921 - Fixup memberof task throws error "memberof_fix_memberof_callback: Weird - Resolves: Bug 1456774 - ipa-replica server fails to upgrade- Bump version to 1.3.6.1-15 - Resolves: Bug 1429770 - ds-logpipe.py crashes for non-existing users - Resolves: Bug 1444938 - nsslapd-allowed-sasl-mechanisms doesn't reset to default values without a restart - Resolves: Bug 1450896 - Manual resetting of nsslapd-dbcachesize using ldapmodify - Resolves: Bug 1357682 - RHDS fails to start with message: "Failed to delete old semaphore for stats file" - Resolves: Bug 1452739 - Zero value of nsslapd-cache-autosize-split makes dbcache to be equal 0- Bump version to 1.3.6.1-14 - Resolves: Bug 1450910 - Modifying "nsslapd-cache-autosize" parameter using ldapmodify command is failing. - Resolves: Bug 1450893 - When nsslapd-cache-autosize is not set in dse.ldif, ldapsearch does not show the default value - Resolves: Bug 1449098 - ns-slapd crashes in role cache creation - Resolves: Bug 1441522 - AddressSanitizer: heap-use-after-free in libreplication-plugin.so - Resolves: Bug 1437492 - "ERR - cos-plugin - cos_cache_query_attr - cos attribute krbPwdPolicyReference failed schema check" in error log - Resolves: Bug 1429770 - ds-logpipe.py crashes for non-existing users - Resolves: Bug 1451657 - -v option is not working for db2ldif.pl- Bump version to 1.3.6.1-13 - Resolves: Bug 1444938 - Fix backport issue from build 1.3.6.1-10 (part 2)- Bump version to 1.3.6.1-12 - Resolves: Bug 1444938 - Fix backport issue from build 1.3.6.1-10- Bump version to 1.3.6.1-11 - Resolves: Bug 1410207 - Utility command had better use INFO log level for the output - Resolves: Bug 1049190 - Better input argument validation and error messages for db2index and db2index.pl- Bump version to 1.3.6.1-10 - Resolves: Bug 1444938 - nsslapd-allowed-sasl-mechanisms doesn't reset to default val - Resolves: Bug 1111400 - logconv.pl lists sasl binds with no dn as anonymous - Resolves: Bug 1377452 - Integer overflow in performance counters - Resolves: Bug 1441790 - ldapserch for nsslapd-errorlog-level returns incorrect values - Resolves: Bug 1444431 - ERR - symload_report_error - Netscape Portable Runtime error -5975 - Resolves: Bug 1447015 - Adjust db2bak.pl help and man page to reflect changes introduced to the script- Bump version to 1.3.6.1-9 - Resolves: Bug 1442880 - setup-ds-admin.pl -u with nsslapd-localhost changed - Resolves: Bug 1443682 - util_info_sys_pages should be able to detect memory restrictions in a cgroup- Bump version to 1.3.6.1-8 - Resolves: Bug 1432016 - Possible deadlock while installing an ipa replica - Resolves: Bug 1438029 - Overflow in memberof- Bump version to 1.3.6.1-7 - Resolves: bug 1394899 - RHDS should ignore passwordMinAge if "password must reset" is set(fix crash regression) - Resolves: bug 1381326 - dirsrv-snmp.service is provided by 389-ds-base instead of 389-ds-base-snmp - Resolves: bug 1049190 - Better input argument validation and error messages for db2index and db2index.pl.- Bump version to 1.3.6.1-6 - Resolves: bug 1437006 - EMBARGOED CVE-2017-2668 389-ds-base: Remote crash via crafted LDAP messages - Resolves: bug 1341689 - dbmon.sh / cn=monitor] nsslapd-db-pages-in-use is increasing - Resolves: bug 1394899 - RHDS should ignore passwordMinAge if "password must reset" is set - Resolves: bug 1397288 - typo in logconv.pl man page - Resolves: bug 1436994 - incorrect pathes in pkg-config files - Resolves: bug 1396448 - Add a hard dependency for >=selinux-policy-3.13.1-75- Bump version to 1.3.6.1-5 - Resolves: bug 1377452 - Integer overflow in counters and monitor - Resolves: bug 1425907 - Harden password storage scheme - Resolves: bug 1431207 - ns-slapd killed by SIGABRT- Bump version to 1.3.6.1-4 - Resolves: bug 1379424 - Reset-agmt-update-staus-and-total-init - Resolves: bug 1394000 - dbmon.sh-fails-if-you-have-nsslapd-requi.patch - Resolves: bug 1417344 - targetattr-wildcard-evaluation-is-incorr.patch - Resolves: bug 1429770 - ds-logpipe.py-crashes-for-non-existing-u.patch - Resolves: bug 1433697 - Fix-double-free-in-_cl5NewDBFile-error-path.patch - Resolves: bug 1433996 - retrocl-can-crash-server-at-shutdown.patch - Resolves: bug 1434967 - rpm-would-not-create-valid-pkgconfig-fi.patch - Resolves: bug 1417338 - To-debug-DB_DEADLOCK-condition-allow-to.patch - Resolves: bug 1433850 - Deleting-suffix-can-hang-server.patch- Bump version to 1.3.6.1-3 - Fix spec file to include the tests- Bump version to 1.3.6.1-2 - Resolves: bug 1431877 - 389-1.3.6.1-1.el7 covscan errors - Resolves: bug 1432206 - content sync plugin can hang server shutdown - Resolves: bug 1432149 - sasl external binds fail in 1.3.6.1- Bump version to 1.3.6.1-1 - Resolves: bug 1388567 - Rebase 389-ds-base to 1.3.6 in RHEL-7.4- Release 1.3.5.10-12 - Resolves: bug 1384785 - Replica install fails with old IPA master sometimes during replication process (DS 48992) - Resolves: bug 1388501 - 389-ds-base is missing runtime dependency - bind-utils (DS 48328) - Resolves: bug 1388581 - Replication stops working only when fips mode is set to true (DS 48909) - Resolves: bug 1390342 - ns-accountstatus.pl shows wrong status for accounts inactivated by Account policy plugin (DS 49014) - Resolves: bug 1390343 - trace args debug logging must be more restrictive (DS 49009)- Release 1.3.5.10-11 - Resolves: bug 1321124 - Replication changelog can incorrectly skip over updates- Release 1.3.5.10-10 - Resolves: bug 1370300 - set proper update status to replication agreement in case of failure (DS 48957) - Resolves: bug 1209094 - Allow logging of rejected changes (DS 48969)- Release 1.3.5.10-9 - Resolves: bug 1364190 - Change example in /etc/sysconfig/dirsrv to use tcmalloc (DS 48950) - Resolves: bug 1366828 - audit on failure doesn't work if attribute nsslapd-auditlog-logging-enabled is NOT enabled (DS 48958) - Resolves: bug 1368520 - Crash in import_wait_for_space_in_fifo() (DS 48960) - Resolves: bug 1368956 - man page of ns-accountstatus.pl shows redundant entries for -p port option - Resolves: bug 1369537 - passwordMinAge attribute doesn't limit the minimum age of the password (DS 48967) - Resolves: bug 1369570 - cleanallruv changelog cleaning incorrectly impacts all backends (DS 48964) - Resolves: bug 1369425 - ACI behaves erratically (DS 48972) - Resolves: bug 1370300 - set proper update status to replication agreement in case of failure (DS 48957) - Resolves: bug 1209094 - Allow logging of rejected changes (DS 48969) - Resolves: bug 1371283 - Server Side Sorting crashes the server. (DS 48970) - Resolves: bug 1371284 - Disabling CLEAR password storage scheme will crash server when setting a password (DS 48975)- Release 1.3.5.10-8 - Resolves: bug 1321124 - Replication changelog can incorrectly skip over updates (DS 48954) - Resolves: bug 1364190 - Change example in /etc/sysconfig/dirsrv to use tcmalloc (DS 48950) - Resolves: bug 1366561 - ns-accountstatus.pl giving error even "No such object (32)" (DS 48956)- Release 1.3.5.10-7 - Resolves: bug 1316580 - dirsrv service doesn't ask for pin when pin.txt is missing (DS 48450) - Resolves: bug 1360976 - fixing a compiler warning- Release 1.3.5.10-6 - Resolves: bug 1326077 - Page result search should return empty cookie if there is no returned entry (DS 48928) - Resolves: bug 1360447 - nsslapd-workingdir is empty when ns-slapd is started by systemd (DS 48939) - Resolves: bug 1360327 - remove-ds.pl deletes an instance even if wrong prefix was specified (DS 48934) - Resolves: bug 1349815 - DS logs have warning:ancestorid not indexed for all CS subsystems (DS 48940) - Resolves: bug 1329061 - 389-ds-base-1.3.4.0-29.el7_2 "hang" (DS 48882) - Resolves: bug 1360976 - EMBARGOED CVE-2016-5405 389-ds-base: Password verification vulnerable to timing attack - Resolves: bug 1361134 - When fine-grained policy is applied, a sub-tree has a priority over a user while changing password (DS 48943) - Resolves: bug 1361321 - Duplicate collation entries (DS 48936) - Resolves: bug 1316580 - dirsrv service doesn't ask for pin when pin.txt is missing (DS 48450) - Resolves: bug 1350799 - CVE-2016-4992 389-ds-base: Information disclosure via repeat- Release 1.3.5.10-5 - Resolves: bug 1333184 - (389-ds-base-1.3.5) Fixing coverity issues. (DS 48919)- Release 1.3.5.10-4 - Resolves: bug 1209128 - [RFE] Add a utility to get the status of Directory Server instances (DS 48144) - Resolves: bug 1333184 - (389-ds-base-1.3.5) Fixing coverity issues. (DS 48919) - Resolves: bug 1350799 - CVE-2016-4992 389-ds-base: Information disclosure via repeat - Resolves: bug 1354660 - flow control in replication also blocks receiving results (DS 48767) - Resolves: bug 1356261 - Fixup tombstone task needs to set proper flag when updating (DS 48924) - Resolves: bug 1355760 - ns-slapd crashes during the deletion of backend (DS 48922) - Resolves: bug 1353629 - DS shuts down automatically if dnaThreshold is set to 0 in a MMR setup (DS 48916) - Resolves: bug 1355879 - nunc-stans: ns-slapd crashes during startup with SIGILL on AMD Opteron 280 (DS 48925)- Release 1.3.5.10-3 - Resolves: bug 1354374 - Fixing the tarball version in the sources file.- Release 1.3.5.10-2 - Resolves: bug 1353714 - If a cipher is disabled do not attempt to look it up (DS 48743) - Resolves: bug 1353592 - Setup-ds.pl --update fails - regression (DS 48755) - Resolves: bug 1353544 - db2bak.pl task enters infinitive loop when bak fs is almost full (DS 48914) - Resolves: bug 1354374 - Upgrade to 389-ds-base >= 1.3.5.5 doesn't install 389-ds-base-snmp (DS 48918)- Release 1.3.5.10-1 - Resolves: bug 1333184 - (389-ds-base-1.3.5) Fixing coverity issues. (DS 48905)- Release 1.3.5.9-1 - Resolves: bug 1349571 - Improve MMR replication convergence (DS 48636) - Resolves: bug 1304682 - "stale" automember rule (associated to a removed group) causes discrepancies in the database (DS 48637) - Resolves: bug 1314956 - moving an entry cause next on-line init to skip entry has no parent, ending at line 0 of file "(bulk import)" (DS 48755) - Resolves: bug 1316731 - syncrepl search returning error 329; plugin sending a bad error code (DS 48904) - Resolves: bug 1346741 - ns-slapd crashes during the shutdown after adding attribute with a matching rule (DS 48891) - Resolves: bug 1349577 - Values of dbcachetries/dbcachehits in cn=monitor could overflow. (DS 48899) - Resolves: bug 1272682 - nunc-stans: ns-slapd killed by SIGABRT (DS 48898) - Resolves: bug 1346043 - repl-monitor displays colors incorrectly for the time lag > 60 min (DS 47538) - Resolves: bug 1350632 - ns-slapd shutdown crashes if pwdstorageschema name is from stack. (DS 48902)- Release 1.3.5.8-1 - Resolves: bug 1290101 - proxyauth support does not work when bound as directory manager (DS 48366)- Release 1.3.5.7-1 - Resolves: bug 1196282 - substring index with nssubstrbegin: 1 is not being used with filters like (attr=x*) (DS 48109) - Resolves: bug 1303794 - Import readNSState.py from RichM's repo (DS 48449) - Resolves: bug 1290101 - proxyauth support does not work when bound as directory manager (DS 48366) - Resolves: bug 1338872 - Wrong result code display in audit-failure log (DS 48892) - Resolves: bug 1346043 - repl-monitor displays colors incorrectly for the time lag > 60 min (DS 47538) - Resolves: bug 1346741 - ns-slapd crashes during the shutdown after adding attribute with a matching rule (DS 48891) - Resolves: bug 1347407 - By default aci can be read by anonymous (DS 48354) - Resolves: bug 1347412 - cn=SNMP,cn=config entry can be read by anonymous (DS 48893)- Release 1.3.5.6-1 - Resolves: bug 1273549 - [RFE] Improve timestamp resolution in logs (DS 47982) - Resolves: bug 1321124 - Replication changelog can incorrectly skip over updates (DS 48766, DS 48636) - Resolves: bug 1233926 - "matching rules" in ACI's "bind rules not fully evaluated (DS 48234) - Resolves: bug 1346165 - 389-ds-base-1.3.5.5-1.el7.x86_64 requires policycoreutils-py- Release 1.3.5.5-1 - Resolves: bug 1018944 - [RFE] Enhance password change tracking (DS 48833) - Resolves: bug 1344414 - [RFE] adding pre/post extop ability (DS 48880) - Resolves: bug 1303794 - Import readNSState.py from RichM's repo (DS 48449) - Resolves: bug 1257568 - /usr/lib64/dirsrv/libnunc-stans.so is owned by both -libs and -devel (DS 48404) - Resolves: bug 1314956 - moving an entry cause next on-line init to skip entry has no parent, ending at line 0 of file "(bulk import)" (DS 48755) - Resolves: bug 1342609 - At startup DES to AES password conversion causes timeout in start script (DS 48862) - Resolves: bug 1316328 - search returns no entry when OR filter component contains non readable attribute (DS 48275) - Resolves: bug 1280456 - setup-ds should detect if port is already defined (DS 48336) - Resolves: bug 1312557 - dirsrv service fails to start when nsslapd-listenhost is configured (DS 48747) - Resolves: bug 1326077 - Page result search should return empty cookie if there is no returned entry (DS 48752) - Resolves: bug 1340307 - Running db2index with no options breaks replication (DS 48854) - Resolves: bug 1337195 - Regression introduced in matching rules by DS 48746 (DS 48844) - Resolves: bug 1335492 - Modifier's name is not recorded in the audit log with modrdn and moddn operations (DS 48834) - Resolves: bug 1316741 - ldctl should support -H with ldap uris (DS 48754)- release 1.3.5.4-1 - Resolves: bug 1334455 - db2ldif is not taking into account multiple suffixes or backends (DS 48828) - Resolves: bug 1241563 - The "repl-monitor" web page does not display "year" in date. (DS 48220) - Resolves: bug 1335618 - Server ram sanity checks work in isolation (DS 48617) - Resolves: bug 1333184 - (389-ds-base-1.3.5) Fixing coverity issues. (DS 48837)- release 1.3.5.3-1 - Resolves: bug 1209128 - [RFE] Add a utility to get the status of Directory Server instances (DS 48144) - Resolves: bug 1332533 - ns-accountstatus.pl gives error message on execution along with results. (DS 48815) - Resolves: bug 1332709 - password history is not updated when an admin resets the password (DS 48813) - Resolves: bug 1333184 - (389-ds-base-1.3.5) Fixing coverity issues. (DS 48822) - Resolves: bug 1333515 - Enable DS to offer weaker DH params in NSS (DS 48798)- release 1.3.5.2-1 - Resolves: bug 1270020 - Rebase 389-ds-base to 1.3.5 in RHEL-7.3 - Resolves: bug 1288229 - many attrlist_replace errors in connection with cleanallruv (DS 48283) - Resolves: bug 1315893 - License tag does not match actual license of code (DS 48757) - Resolves: bug 1320715 - DES to AES password conversion fails if a backend is empty (DS 48777) - Resolves: bug 190862 - [RFE] Default password syntax settings don't work with fine-grained policies (DS 142) - Resolves: bug 1018944 - [RFE] Enhance password change tracking (DS 548) - Resolves: bug 1143066 - The dirsrv user/group should be created in rpm %pre, and ideally with fixed uid/gid (DS 48285) - Resolves: bug 1153758 - [RFE] Support SASL/GSSAPI when ns-slapd is behind a load-balancer (DS 48332) - Resolves: bug 1160902 - search, matching rules and filter error "unsupported type 0xA9" (DS 48016) - Resolves: bug 1186512 - High memory fragmentation observed in ns-slapd; OOM-Killer invoked (DS 48377, 48129) - Resolves: bug 1196282 - substring index with nssubstrbegin: 1 is not being used with filters like (attr=x*) (DS 48109) - Resolves: bug 1209094 - [RFE] Allow logging of rejected changes (DS 48145, 48280) - Resolves: bug 1209128 - [RFE] Add a utility to get the status of Directory Server instances (DS 48144) - Resolves: bug 1210842 - [RFE] Add PIDFile option to systemd service file (DS 47951) - Resolves: bug 1223510 - [RFE] it could be nice to have nsslapd-maxbersize default to bigger than 2Mb (DS 48326) - Resolves: bug 1229799 - ldclt-bin killed by SIGSEGV (DS 48289) - Resolves: bug 1249908 - No validation check for the value for nsslapd-db-locks. (DS 48244) - Resolves: bug 1254887 - No man page entry for - option '-u' of dbgen.pl for adding group entries with uniquemembers (DS 48290) - Resolves: bug 1255557 - db2index creates index entry from deleted records (DS 48252) - Resolves: bug 1258610 - total update request must not be lost (DS 48255) - Resolves: bug 1258611 - dna plugin needs to handle binddn groups for authorization (DS 48258) - Resolves: bug 1259624 - [RFE] Provide a utility to detect accounts locked due to inactivity (DS 48269) - Resolves: bug 1259950 - Add config setting to MemberOf Plugin to add required objectclass got memberOf attribute (DS 48267) - Resolves: bug 1266510 - Linked Attributes plug-in - wrong behaviour when adding valid and broken links (DS 48295) - Resolves: bug 1266532 - Linked Attributes plug-in - won't update links after MODRDN operation (DS 48294) - Resolves: bug 1267750 - pagedresults - when timed out, search results could have been already freed. (DS 48299) - Resolves: bug 1269378 - ds-logpipe.py with wrong arguments - python exception in the output (DS 48302) - Resolves: bug 1271330 - nunc-stans: Attempt to release connection that is not acquired (DS 48311) - Resolves: bug 1272677 - nunc stans: ns-slapd killed by SIGTERM - Resolves: bug 1272682 - nunc-stans: ns-slapd killed by SIGABRT - Resolves: bug 1273142 - crash in Managed Entry plugin (DS 48312) - Resolves: bug 1273549 - [RFE] Improve timestamp resolution in logs (DS 47982) - Resolves: bug 1273550 - Deadlock between two MODs on the same entry between entry cache and backend lock (DS 47978) - Resolves: bug 1273555 - deadlock in mep delete post op (DS 47976) - Resolves: bug 1273584 - lower password history minimum to 1 (DS 48394) - Resolves: bug 1275763 - [RFE] add setup-ds.pl option to disable instance specific scripts (DS 47840) - Resolves: bug 1276072 - [RFE] Allow RHDS to be setup using a DNS CNAME alias for General.FullMachineName (DS 48328) - Resolves: bug 1278567 - SimplePagedResults -- abandon could happen between the abandon check and sending results (DS 48338) - Resolves: bug 1278584 - Share nsslapd-threadnumber in the case nunc-stans is enabled, as well. (DS 48339) - Resolves: bug 1278755 - deadlock on connection mutex (DS 48341) - Resolves: bug 1278987 - Cannot upgrade a consumer to supplier in a multimaster environment (DS 48325) - Resolves: bug 1280123 - acl - regression - trailing ', (comma)' in macro matched value is not removed. (DS 48344) - Resolves: bug 1290111 - [RFE] Support for rfc3673 '+' to return operational attributes (DS 48363) - Resolves: bug 1290141 - With exhausted range, part of DNA shared configuration is deleted after server restart (DS 48362) - Resolves: bug 1290242 - SimplePagedResults -- in the search error case, simple paged results slot was not released. (DS 48375) - Resolves: bug 1290600 - The 'eq' index does not get updated properly when deleting and re-adding attributes in the same ldapmodify operation (DS 48370) - Resolves: bug 1295947 - 389-ds hanging after a few minutes of operation (DS 48406, revert 48338) - Resolves: bug 1296310 - ldclt - segmentation fault error while binding (DS 48400) - Resolves: bug 1299758 - CVE-2016-0741 389-ds-base: Worker threads do not detect abnormally closed connections causing DoS [rhel-7.3] - Resolves: bug 1301097 - logconv.pl displays negative operation speeds (DS 48446) - Resolves: bug 1302823 - Crash in slapi_get_object_extension (DS 48536) - Resolves: bug 1303641 - heap corruption at schema replication. (DS 48492) - Resolves: bug 1307151 - keep alive entries can break replication (DS 48445) - Resolves: bug 1310848 - Supplier can skip a failing update, although it should retry. (DS 47788) - Resolves: bug 1314557 - change severity of some messages related to "keep alive" enties (DS 48420) - Resolves: bug 1316580 - dirsrv service doesn't ask for pin when pin.txt is missing (DS 48450) - Resolves: bug 1316742 - no plugin calls in tombstone purging (DS 48759) - Resolves: bug 1319329 - [RFE] add nsslapd-auditlog-logging-enabled: off to template-dse.ldif (DS 48145) - Resolves: bug 1320295 - If nsSSL3 is on, even if SSL v3 is not really enabled, a confusing message is logged. (DS 48775) - Resolves: bug 1326520 - db2index uses a buffer size derived from dbcachesize (DS 48383) - Resolves: bug 1328936 - objectclass values could be dropped on the consumer (DS 48799) - Resolves: bug 1287475 - [RFE] response control for password age should be sent by default by RHDS (DS 48369) - Resolves: bug 1331343 - Paged results search returns the blank list of entries (DS 48808)- release 1.3.4.0-19 - Resolves: bug 1228823 - async simple paged results issue (DS 48299, DS 48192) - Resolves: bug 1266944 - ns-slapd crash during ipa-replica-manage del (DS 48298)- release 1.3.4.0-18 - Resolves: bug 1259949 - Fractional replication evaluates several times the same CSN (DS 48266, DS 48284)- release 1.3.4.0-17 - Resolves: bug 1259949 - A backport error (coverity -- unused variable 'init_retry')- release 1.3.4.0-16 - Resolves: bug 1243970 - In MMR, double free coould occur under some special condition (DS 48276, DS 48226) - Resolves: bug 1259949 - Fractional replication evaluates several times the same CSN (DS 48266) - Resolves: bug 1241723 - cleanallruv - fix regression with server shutdown (DS 48217) - Resolves: bug 1264224 - segfault in ns-slapd due to accessing Slapi_DN freed in pre bind plug-in (DS 48188)- release 1.3.4.0-15 - Resolves: bug 1258996 - Complex filter in a search request doen't work as expected. (regression) (DS 48265) - Resolves: bug 1179370 - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes (DS 47981)- release 1.3.4.0-14 - Resolves: bug 1246389 - wrong password check if passwordInHistory is decreased. (DS 48228) - Resolves: bug 1255851 - Shell CLI fails with usage errors if an argument containing white spaces is given (DS 48254) - Resolves: bug 1256938 - Unable to dereference unqiemember attribute because it is dn [#UID] not dn syntax (DS 47757)- release 1.3.4.0-13 - Resolves: bug 1245519 - remove debug logging from retro cl (DS 47831)- release 1.3.4.0-12 - Resolves: bug 1252133 - replica upgrade failed in starting dirsrv service (DS 48243) - Resolves: bug 1254344 - Server crashes in ACL_LasFindFlush during shutdown if ACIs contain IP addresss restrictions (DS 48233)- release 1.3.4.0-11 - Resolves: bug 1249784 - ipa-dnskeysyncd unhandled exception on named-pkcs11 start (DS 48249) - Resolves: bug 1252082 - removing chaining database links trigger valgrind read error (DS 47686) - Resolves: bug 1252207 - bashisms in 389-ds-base admin scripts (DS 47511) - Resolves: bug 1252533 - Man pages and help for remove-ds.pl doesn't display "-a" option (DS 48245) - Resolves: bug 1252781 - Slapd crashes reported from latest builds (DS 48250)- release 1.3.4.0-10 - Resolves: bug 1245519 - Fix coverity issues (DS 47931)- release 1.3.4.0-9 - Resolves: bug 1240876 - verify_db.pl doesn't verify DB specified by -a option. (DS 48215) - Resolves: bug 1245235 - winsync lastlogon attribute not syncing between IPA & Windows 2008. (DS 48232) - Resolves: bug 1245519 - Deadlock with retrochangelog, memberof plugin (DS 47931) - Resolves: bug 1246389 - wrong password check if passwordInHistory is decreased. (DS 48228) - Resolves: bug 1247811 - logconv autobind handling regression caused by 47446 (DS 48231) - Resolves: bug 1250177 - Investigate betxn plugins to ensure they return the correct error code (DS 47810)- release 1.3.4.0-8 - Resolves: bug 1160243 - [RFE] allow logconv.pl -S/-E switches to work even when exact/same timestamps are not present in access log file (DS 47910) - Resolves: bug 1172037 - winsync range retrieval gets only 5000 values upon initialization (DS 48010) - Resolves: bug 1242531 - logconv.pl should handle *.tar.xz, *.txz, *.xz log files (DS 48224) - Resolves: bug 1243950 - When starting a replica agreement a deadlock can occur with an op updating nsuniqueid index (DS 48179) - Resolves: bug 1243970 - In MMR, double free coould occur under some special condition (DS 48226) - Resolves: bug 1244926 - Crash while triming the retro changelog (DS 48206)- release 1.3.4.0-7 - Resolves: bug 1235060 - Fix coverity issues - 07/14/2015 (DS 48203) - Resolves: bug 1242531 - redux - logconv.pl should handle *.tar.xz, *.txz, *.xz log files (DS 48224)- release 1.3.4.0-6 - Resolves: bug 1240845 - cleanallruv should completely clean changelog (DS 48208) - Resolves: bug 1095603 - Any negative LDAP error code number reported as Illegal error by ldclt. (DS 47799) - Resolves: bug 1168675 - Inconsistent behaviour of DS when LDAP Sync is used with an invalid cookie (DS 48013) - Resolves: bug 1241723 - cleanAllRUV hangs shutdown if not all of the replicas are online (DS 48217) - Resolves: bug 1241497 - crash in ns-slapd when deleting winSyncSubtreePair from sync agreement (DS 48216) - Resolves: bug 1240404 - Silent install needs to properly exit when INF file is missing (DS 48119) - Resolves: bug 1240406 - Remove warning suppression in 1.3.4 (DS 47878) - Resolves: bug 1242683 - Winsync fails when AD users have multiple spaces (two)inside the value of the rdn attribute (DS 48223) - Resolves: bug 1160243 - logconv.pl - validate start and end time args (DS 47910) - Resolves: bug 1242531 - logconv.pl should handle *.tar.xz, *.txz, *.xz log files (DS 48224) - Resolves: bug 1230996 - CI test: fixing test cases for ticket 48194 (DS 48194)- release 1.3.4.0-5 - Resolves: bug 1235060 - Fix coverity issues (DS 48203)- release 1.3.4.0-4 - Resolves: bug 1240404 - setup-ds.pl does not log invalid --file path errors the same (DS 48119) - Resolves: bug 1240406 - setup -u stops after first failure (DS 47878)- release 1.3.4.0-3 - Resolves: bug 1228823 - async simple paged results issue (DS 48192) - Resolves: bug 1237325 - reindex off-line twice could provoke index corruption (DS 48212) - Resolves: bug 1238790 - ldapsearch on nsslapd-maxbersize returns 0 instead of current value (DS 48214)- release 1.3.4.0-2 - Resolves: bug 1235060 - Fix coverity issues - Resolves: bug 1235387 - Slow replication when deleting large quantities of multi-valued attributes (DS 48195)- Release 1.3.4.0-1 (rebase) - Enable nunc-stans for x86_64. - Resolves: bug 1034325 - Linked attributes betxnpreoperation - transaction not aborted when linked entry does not exit (DS 47640) - Resolves: bug 1052755 - Retro Changelog Plugin accepts invalid value in nsslapd-changelogmaxage attribute (DS 47669) - Resolves: bug 1096409 - RHDS keeps on logging write_changelog_and_ruv: failed to update RUV for unknown (DS 47801) - Resolves: bug 1145378 - Adding an entry with an invalid password as rootDN is incorrectly rejected (DS 47900) - Resolves: bug 1145382 - Bad manipulation of passwordhistory (DS 47905) - Resolves: bug 1154147 - Uniqueness plugin: should allow to exclude some subtrees from its scope (DS 47927) - Resolves: bug 1171358 - Make ReplicaWaitForAsyncResults configurable (DS 47957) - Resolves: bug 1171663 - MODDN fails when entry doesn't have memberOf attribute and new DN is in the scope of memberOfExcludeSubtree (DS 47526) - Resolves: bug 1174457 - [RFE] memberOf - add option to skip nested group lookups during delete operations (DS 47963) - Resolves: bug 1178640 - db2bak.pl man page should be improved. (DS 48008) - Resolves: bug 1179370 - COS cache doesn't properly mark vattr cache as invalid when there are multiple suffixes (DS 47981) - Resolves: bug 1180331 - Local Password Policies for Nested OU's not honoured (DS 47980) - Resolves: bug 1180776 - nsslapd-db-locks modify not taking into account (DS 47934) - Resolves: bug 1181341 - nsslapd-changelogtrim-interval and nsslapd-changelogcompactdb-interval are not validated (DS 47617) - Resolves: bug 1185882 - ns-activate.pl fails to activate account if it was disabled on AD (DS 48001) - Resolves: bug 1186548 - ns-slapd crash in shutdown phase (DS 48005) - Resolves: bug 1189154 - DNS errors after IPA upgrade due to broken ReplSync (DS 48030) - Resolves: bug 1206309 - winsync sets AccountUserControl in AD to 544 (DS 47723) - Resolves: bug 1210845 - slapd crashes during Dogtag clone reinstallation (DS 47966) - Resolves: bug 1210850 - add an option '-u' to dbgen.pl for adding group entries with (DS 48025) - Resolves: bug 1210852 - aci with wildcard and macro not correctly evaluated (DS 48141)- release 1.3.3.1-19 - Resolves: bug 1230996 - nsSSL3Ciphers preference not enforced server side (DS 48194)- release 1.3.3.1-18 - Resolves: bug 1228823 - async simple paged results issue (DS 48146, DS 48192)- release 1.3.3.1-17 - Resolves: bug 1226510 - idm/ipa 389-ds-base entry cache converges to 500 KB in dblayer_is_cachesize_sane (DS 48190)- release 1.3.3.1-16 - Resolves: bug 1212894 - CVE-2015-1854 389ds-base: access control bypass with modrdn- release 1.3.3.1-15 - Setting correct build tag 'rhel-7.1-z-candidate'- release 1.3.3.1-14 - Resolves: bug 1189154 - DNS errors after IPA upgrade due to broken ReplSync (DS 48030) Fixes spec file to make sure all the server instances are stopped before upgrade - Resolves: bug 1186548 - ns-slapd crash in shutdown phase (DS 48005)- release 1.3.3.1-13 - Resolves: bug 1183655 - Fixed Covscan FORWARD_NULL defects (DS 47988)- release 1.3.3.1-12 - Resolves: bug 1182477 - Windows Sync accidentally cleared raw_entry (DS 47989) - Resolves: bug 1180325 - upgrade script fails if /etc and /var are on different file systems (DS 47991 ) - Resolves: bug 1183655 - Schema learning mechanism, in replication, unable to extend an existing definition (DS 47988)- release 1.3.3.1-11 - Resolves: bug 1080186 - During delete operation do not refresh cache entry if it is a tombstone (DS 47750)- release 1.3.3.1-10 - Resolves: bug 1172731 - CVE-2014-8112 password hashing bypassed when "nsslapd-unhashed-pw-switch" is set to off - Resolves: bug 1166265 - DS hangs during online total update (DS 47942) - Resolves: bug 1168151 - CVE-2014-8105 information disclosure through 'cn=changelog' subtree - Resolves: bug 1044170 - Allow memberOf suffixes to be configurable (DS 47526) - Resolves: bug 1171356 - Bind DN tracking unable to write to internalModifiersName without special permissions (DS 47950) - Resolves: bug 1153737 - logconv.pl -- support parsing/showing/reporting different protocol versions (DS 47949) - Resolves: bug 1171355 - start dirsrv after chrony on RHEL7 and Fedora (DS 47947) - Resolves: bug 1170707 - cos_cache_build_definition_list does not stop during server shutdown (DS 47967) - Resolves: bug 1170708 - COS memory leak when rebuilding the cache (DS - Ticket 47969) - Resolves: bug 1170709 - Account lockout attributes incorrectly updated after failed SASL Bind (DS 47970) - Resolves: bug 1166260 - cookie_change_info returns random negative number if there was no change in a tree (DS 47960) - Resolves: bug 1012991 - Error log levels not displayed correctly (DS 47636) - Resolves: bug 1108881 - rsearch filter error on any search filter (DS 47722) - Resolves: bug 994690 - Allow dynamically adding/enabling/disabling/removing plugins without requiring a server restart (DS 47451) - Resolves: bug 1162997 - Running a plugin task can crash the server (DS 47451) - Resolves: bug 1166252 - RHEL7.1 ns-slapd segfault when ipa-replica-install restarts (DS 47451) - Resolves: bug 1172597 - Crash if setting invalid plugin config area for MemberOf Plugin (DS 47525) - Resolves: bug 1139882 - coverity defects found in 1.3.3.x (DS 47965)- release 1.3.3.1-9 - Resolves: bug 1153737 - Disable SSL v3, by default. (DS 47928) - Resolves: bug 1163461 - Should not check aci syntax when deleting an aci (DS 47953)- release 1.3.3.1-8 - Resolves: bug 1156607 - Crash in entry_add_present_values_wsi_multi_valued (DS 47937) - Resolves: bug 1153737 - Disable SSL v3, by default (DS 47928, DS 47945, DS 47948) - Resolves: bug 1158804 - Malformed cookie for LDAP Sync makes DS crash (DS 47939)- release 1.3.3.1-7 - Resolves: bug 1153737 - Disable SSL v3, by default (DS 47928)- release 1.3.3.1-6 - Resolves: bug 1151287 - dynamically added macro aci is not evaluated on the fly (DS 47922) - Resolves: bug 1080186 - Need to move slapi_pblock_set(pb, SLAPI_MODRDN_EXISTING_ENTRY, original_entry->ep_entry) prior to original_entry overwritten (DS 47897) - Resolves: bug 1150694 - Encoding of SearchResultEntry is missing tag (DS 47920) - Resolves: bug 1150695 - ldbm_back_modify SLAPI_PLUGIN_BE_PRE_MODIFY_FN does not return even if one of the preop plugins fails. (DS 47919) - Resolves: bug 1139882 - Fix remaining compiler warnings (DS 47892) - Resolves: bug 1150206 - result of dna_dn_is_shared_config is incorrectly used (DS 47918)- release 1.3.3.1-5 - Resolves: bug 1139882 - coverity defects found in 1.3.3.x (DS 47892)- release 1.3.3.1-4 - Resolves: bug 1080186 - Creating a glue fails if one above level is a conflict or missing (DS 47750) - Resolves: bug 1145846 - 389-ds 1.3.3.0 does not adjust cipher suite configuration on upgrade, breaks itself and pki-server (DS 47908) - Resolves: bug 1117979 - harden the list of ciphers available by default (phase 2) (DS 47838) - provide enabled ciphers as search result (DS 47880)- release 1.3.3.1-3 - Resolves: bug 1139882 - coverity defects found in 1.3.3.1- release 1.3.3.1-2 - Resolves: bug 1079099 - Simultaneous adding a user and binding as the user could fail in the password policy check (DS 47748) - Resolves: bug 1080186 - Creating a glue fails if one above level is a conflict or missing (DS 47834) - Resolves: bug 1139882 - coverity defects found in 1.3.3.1 (DS 47890) - Resolves: bug 1112702 - Broken dereference control with the FreeIPA 4.0 ACIs (DS 47885 - deref plugin should not return references with noc access rights) - Resolves: bug 1117979 - harden the list of ciphers available by default (DS 47838, DS 47895) - Resolves: bug 1080186 - Creating a glue fails if one above level is a conflict or missing (DS 47889 - DS crashed during ipa-server-install on test_ava_filter)- release 1.3.3.1-1 - Resolves: bug 746646 - RFE: easy way to configure which users and groups to sync with winsync - Resolves: bug 881372 - nsDS5BeginReplicaRefresh attribute accepts any value and it doesn't throw any error when server restarts. - Resolves: bug 920597 - Possible to add invalid ACI value - Resolves: bug 921162 - Possible to add nonexistent target to ACI - Resolves: bug 923799 - if nsslapd-cachememsize set to the number larger than the RAM available, should result in proper error message. - Resolves: bug 924937 - Attribute "dsOnlyMemberUid" not allowed when syncing nested posix groups from AD with posixWinsync - Resolves: bug 951754 - Self entry access ACI not working properly - Resolves: bug 952517 - Dirsrv instance failed to start with Segmentation fault (core dump) after modifying 7-bit check plugin - Resolves: bug 952682 - nsslapd-db-transaction-batch-val turns to -1 - Resolves: bug 966443 - Plugin library path validation - Resolves: bug 975176 - Non-directory manager can change the individual userPassword's storage scheme - Resolves: bug 979465 - IPA replica's - "SASL encrypted packet length exceeds maximum allowed limit" - Resolves: bug 982597 - Some attributes in cn=config should not be multivalued - Resolves: bug 987009 - 389-ds-base - shebang with /usr/bin/env - Resolves: bug 994690 - RFE: Allow dynamically adding/enabling/disabling/removing plugins without requiring a server restart - Resolves: bug 1012991 - errorlog-level 16384 is listed as 0 in cn=config - Resolves: bug 1013736 - Enabling/Disabling DNA plug-in throws "ldap_modify: Server Unwilling to Perform (53)" error - Resolves: bug 1014380 - setup-ds.pl doesn't lookup the "root" group correctly - Resolves: bug 1020459 - rsa_null_sha should not be enabled by default - Resolves: bug 1024541 - start dirsrv after ntpd - Resolves: bug 1029959 - Managed Entries betxnpreoperation - transaction not aborted upon failure to create managed entry - Resolves: bug 1031216 - add dbmon.sh - Resolves: bug 1044133 - Indexed search with filter containing '&' and "!" with attribute subtypes gives wrong result - Resolves: bug 1044134 - should set LDAP_OPT_X_SASL_NOCANON to LDAP_OPT_ON by default - Resolves: bug 1044135 - make connection buffer size adjustable - Resolves: bug 1044137 - posix winsync should support ADD user/group entries from DS to AD - Resolves: bug 1044138 - mep_pre_op: Unable to fetch origin entry - Resolves: bug 1044139 - [RFE] Support RFC 4527 Read Entry Controls - Resolves: bug 1044140 - Allow search to look up 'in memory RUV' - Resolves: bug 1044141 - MMR stress test with dna enabled causes a deadlock - Resolves: bug 1044142 - winsync doesn't sync DN valued attributes if DS DN value doesn't exist - Resolves: bug 1044143 - modrdn + NSMMReplicationPlugin - Consumer failed to replay change - Resolves: bug 1044144 - resurrected entry is not correctly indexed - Resolves: bug 1044146 - Add a warning message when a connection hits the max number of threads - Resolves: bug 1044147 - 7-bit check plugin does not work for userpassword attribute - Resolves: bug 1044148 - The backend name provided to bak2db is not validated - Resolves: bug 1044149 - Winsync should support range retrieval - Resolves: bug 1044150 - 7-bit checking is not necessary for userPassword - Resolves: bug 1044151 - With SeLinux, ports can be labelled per range. setup-ds.pl or setup-ds-admin.pl fail to detect already ranged labelled ports - Resolves: bug 1044152 - ChainOnUpdate: "cn=directory manager" can modify userRoot on consumer without changes being chained or replicated. Directory integrity compromised. - Resolves: bug 1044153 - mods optimizer - Resolves: bug 1044154 - multi master replication allows schema violation - Resolves: bug 1044156 - DS crashes with some 7-bit check plugin configurations - Resolves: bug 1044157 - Some updates of "passwordgraceusertime" are useless when updating "userpassword" - Resolves: bug 1044159 - [RFE] Support 'Content Synchronization Operation' (SyncRepl) - RFC 4533 - Resolves: bug 1044160 - remove-ds.pl should remove /var/lock/dirsrv - Resolves: bug 1044162 - enhance retro changelog - Resolves: bug 1044163 - updates to ruv entry are written to retro changelog - Resolves: bug 1044164 - Password administrators should be able to violate password policy - Resolves: bug 1044168 - Schema replication between DS versions may overwrite newer base schema - Resolves: bug 1044169 - ACIs do not allow attribute subtypes in targetattr keyword - Resolves: bug 1044170 - Allow memberOf suffixes to be configurable - Resolves: bug 1044171 - Allow referential integrity suffixes to be configurable - Resolves: bug 1044172 - Plugin library path validation prevents intentional loading of out-of-tree modules - Resolves: bug 1044173 - make referential integrity configuration more flexible - Resolves: bug 1044177 - allow configuring changelog trim interval - Resolves: bug 1044179 - objectclass may, must lists skip rest of objectclass once first is found in sup - Resolves: bug 1044180 - memberOf on a user is converted to lowercase - Resolves: bug 1044181 - report unindexed internal searches - Resolves: bug 1044183 - With 1.3.04 and subtree-renaming OFF, when a user is deleted after restarting the server, the same entry can't be added - Resolves: bug 1044185 - dbscan on entryrdn should show all matching values - Resolves: bug 1044187 - logconv.pl - RFE - add on option for a minimum etime for unindexed search stats - Resolves: bug 1044188 - Recognize compressed log files - Resolves: bug 1044191 - support TLSv1.1 and TLSv1.2, if supported by NSS - Resolves: bug 1044193 - default nsslapd-sasl-max-buffer-size should be 2MB - Resolves: bug 1044194 - Complex filter in a search request doen't work as expected. - Resolves: bug 1044196 - Automember plug-in should treat MODRDN operations as ADD operations - Resolves: bug 1044198 - Replication of the schema may overwrite consumer 'attributetypes' even if consumer definition is a superset - Resolves: bug 1044202 - db2bak.pl issue when specifying non-default directory - Resolves: bug 1044203 - Allow referint plugin to use an alternate config area - Resolves: bug 1044205 - Allow memberOf to use an alternate config area - Resolves: bug 1044210 - idl switch does not work - Resolves: bug 1044211 - make old-idl tunable - Resolves: bug 1044212 - IDL-style can become mismatched during partial restoration - Resolves: bug 1044213 - backend performance - introduce optimization levels - Resolves: bug 1044215 - using transaction batchval violates durability - Resolves: bug 1044216 - examine replication code to reduce amount of stored state information - Resolves: bug 1048980 - 7-bit check plugin not checking MODRDN operation - Resolves: bug 1049030 - Windows Sync group issues - Resolves: bug 1052751 - Page control does not work if effective rights control is specified - Resolves: bug 1052754 - Allow nsDS5ReplicaBindDN to be a group DN - Resolves: bug 1057803 - logconv errors when search has invalid bind dn - Resolves: bug 1060032 - [RFE] Update lastLoginTime also in Account Policy plugin if account lockout is based on passwordExpirationTime. - Resolves: bug 1061060 - betxn: retro changelog broken after cancelled transaction - Resolves: bug 1061572 - improve dbgen rdn generation, output and man page. - Resolves: bug 1063990 - single valued attribute replicated ADD does not work - Resolves: bug 1064006 - Size returned by slapi_entry_size is not accurate - Resolves: bug 1064986 - Replication retry time attributes cannot be added - Resolves: bug 1067090 - Missing warning for invalid replica backoff configuration - Resolves: bug 1072032 - Updating nsds5ReplicaHost attribute in a replication agreement fails with error 53 - Resolves: bug 1074306 - Under heavy stress, failure of turning a tombstone into glue makes the server hung - Resolves: bug 1074447 - Part of DNA shared configuration is deleted after server restart - Resolves: bug 1076729 - Continuous add/delete of an entry in MMR setup causes entryrdn-index conflict - Resolves: bug 1077884 - ldap/servers/slapd/back-ldbm/dblayer.c: possible minor problem with sscanf - Resolves: bug 1077897 - Memory leak with proxy auth control - Resolves: bug 1079099 - Simultaneous adding a user and binding as the user could fail in the password policy check - Resolves: bug 1080186 - Creating a glue fails if one above level is a conflict or missing - Resolves: bug 1082967 - attribute uniqueness plugin fails when set as a chaining component - Resolves: bug 1085011 - Directory Server crash reported from reliab15 execution - Resolves: bug 1086890 - empty modify returns LDAP_INVALID_DN_SYNTAX - Resolves: bug 1086902 - mem leak in do_bind when there is an error - Resolves: bug 1086904 - mem leak in do_search - rawbase not freed upon certain errors - Resolves: bug 1086908 - Performing deletes during tombstone purging results in operation errors - Resolves: bug 1090178 - #481 breaks possibility to reassemble memberuid list - Resolves: bug 1092099 - A replicated MOD fails (Unwilling to perform) if it targets a tombstone - Resolves: bug 1092342 - nsslapd-ndn-cache-max-size accepts any invalid value. - Resolves: bug 1092648 - Negative value of nsSaslMapPriority is not reset to lowest priority - Resolves: bug 1097004 - Problem with deletion while replicated - Resolves: bug 1098654 - db2bak.pl error with changelogdb - Resolves: bug 1099654 - Normalization from old DN format to New DN format doesnt handel condition properly when there is space in a suffix after the seperator operator. - Resolves: bug 1108405 - find a way to remove replication plugin errors messages "changelog iteration code returned a dummy entry with csn %s, skipping ..." - Resolves: bug 1108407 - managed entry plugin fails to update managed entry pointer on modrdn operation - Resolves: bug 1108865 - memory leak in ldapsearch filter objectclass=* - Resolves: bug 1108870 - ACI warnings in error log - Resolves: bug 1108872 - Logconv.pl with an empty access log gives lots of errors - Resolves: bug 1108874 - logconv.pl memory continually grows - Resolves: bug 1108881 - rsearch filter error on any search filter - Resolves: bug 1108895 - [RFE - RHDS9] CLI report to monitor replication - Resolves: bug 1108902 - rhds91 389-ds-base-1.2.11.15-31.el6_5.x86_64 crash in db4 __dbc_get_pp env = 0x0 ? - Resolves: bug 1108909 - single valued attribute replicated ADD does not work - Resolves: bug 1109334 - 389 Server crashes if uniqueMember is invalid syntax and memberOf plugin is enabled. - Resolves: bug 1109336 - Parent numsubordinate count can be incorrectly updated if an error occurs - Resolves: bug 1109339 - Nested tombstones become orphaned after purge - Resolves: bug 1109354 - Tombstone purging can crash the server if the backend is stopped/disabled - Resolves: bug 1109357 - Coverity issue in 1.3.3 - Resolves: bug 1109364 - valgrind - value mem leaks, uninit mem usage - Resolves: bug 1109375 - provide default syntax plugin - Resolves: bug 1109378 - Environment variables are not passed when DS is started via service - Resolves: bug 1111364 - Updating winsync one-way sync does not affect the behaviour dynamically - Resolves: bug 1112824 - Broken dereference control with the FreeIPA 4.0 ACIs - Resolves: bug 1113605 - server restart wipes out index config if there is a default index - Resolves: bug 1115177 - attrcrypt_generate_key calls slapd_pk11_TokenKeyGenWithFlags with improper macro - Resolves: bug 1117021 - Server deadlock if online import started while server is under load - Resolves: bug 1117975 - paged results control is not working in some cases when we have a subsuffix. - Resolves: bug 1117979 - harden the list of ciphers available by default - Resolves: bug 1117981 - Fix various typos in manpages & code - Resolves: bug 1117982 - Fix hyphens used as minus signed and other manpage mistakes - Resolves: bug 1118002 - server crashes deleting a replication agreement - Resolves: bug 1118006 - RFE - forcing passwordmustchange attribute by non-cn=directory manager - Resolves: bug 1118007 - [RFE] Make it possible for privileges to be provided to an admin user to import an LDIF file containing hashed passwords - Resolves: bug 1118014 - Enhance ACIs to have more control over MODRDN operations - Resolves: bug 1118021 - Return all attributes in rootdse without explicit request - Resolves: bug 1118025 - Slow ldapmodify operation time for large quantities of multi-valued attribute values - Resolves: bug 1118032 - Schema Replication Issue - Resolves: bug 1118034 - 389 DS Server crashes and dies while handles paged searches from clients - Resolves: bug 1118043 - Failed deletion of aci: no such attribute - Resolves: bug 1118048 - If be_txn plugin fails in ldbm_back_add, adding entry is double freed. - Resolves: bug 1118051 - Add switch to disable pre-hashed password checking - Resolves: bug 1118054 - Make ldbm_back_seq independently support transactions - Resolves: bug 1118055 - Add operations rejected by betxn plugins remain in cache - Resolves: bug 1118057 - online import crashes server if using verbose error logging - Resolves: bug 1118059 - add fixup-memberuid.pl script - Resolves: bug 1118060 - winsync plugin modify is broken - Resolves: bug 1118066 - memberof scope: allow to exclude subtrees - Resolves: bug 1118069 - 389-ds production segfault: __memcpy_sse2_unaligned () at ../sysdeps/x86_64/multiarch/memcpy-sse2-unaligned.S:144 - Resolves: bug 1118074_DELETE_FN - plugin returned error" messages - Resolves: bug 1118076 - ds logs many "Operation error fetching Null DN" messages - Resolves: bug 1118077 - Improve import logging and abort handling - Resolves: bug 1118079 - Multi master replication initialization incomplete after restore of one master - Resolves: bug 1118080 - Don't add unhashed password mod if we don't have an unhashed value - Resolves: bug 1118081 - Investigate betxn plugins to ensure they return the correct error code - Resolves: bug 1118082 - The error result text message should be obtained just prior to sending result - Resolves: bug 1123865 - CVE-2014-3562 389-ds-base: 389-ds: unauthenticated information disclosure [rhel-7.1]- release 1.3.1.6-26 - Resolves: bug 1085011 - Directory Server crash reported from reliab15 execution (Ticket 346)- release 1.3.1.6-25 - Resolves: bug 1082740 - ns-slapd crash in reliability 15- release 1.3.1.6-24 - Resolves: bug 1074084 - e_uniqueid fails to set if an entry is a conflict entry (Ticket 47735); regression - sub-type length in attribute type was mistakenly subtracted.- Resolves: bug 1074850 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-7.0] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind) (Added 0095-Ticket-47739-directory-server-is-insecurely-misinter.patch) Tue Mar 11 2014 Noriko Hosoi - 1.3.1.6-23 - release 1.3.1.6-22 - Resolves: bug 1074850 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-7.0] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind)- release 1.3.1.6-22 - Resolves: bug 1074084 - e_uniqueid fails to set if an entry is a conflict entry (Ticket 47735)- release 1.3.1.6-21 - Resolves: bug 918694 - Fix covscan defect FORWARD_NULL (Ticket 408) - Resolves: bug 918717 - Fix covscan defect COMPILER WARNINGS (Ticket 571)- release 1.3.1.6-20 - Resolves: bug 1065242 - 389-ds-base, conflict occurs at yum installation if multilib_policy=all. (Ticket 47709)- release 1.3.1.6-19 - Resolves: bug 1065971 - Enrolling a host into IdM/IPA always takes two attempts (Ticket 47704)- release 1.3.1.6-18 - Resolves: bug 838656 - logconv.pl tool removes the access logs contents if "-M" is not correctly used (Ticket 471) - Resolves: bug 922538 - improve dbgen rdn generation, output (Ticket 47374) - Resolves: bug 970750 - flush.pl is not included in perl5 (Ticket 47374) - Resolves: bug 1013898 - Fix various issues with logconv.pl (Ticket 471)- release 1.3.1.6-17 - Resolves: bug 853106 - Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error (Ticket 443) - Resolves: bug 1049525 - Server hangs in cos_cache when adding a user entry (Ticket 47649)- Mass rebuild 2014-01-24- release 1.3.1.6-15 - Resolves: bug 918702 - better error message when cache overflows (Ticket 342) - Resolves: bug 1009679 - replication stops with excessive clock skew (Ticket 47516) - Resolves: bug 1042855 - Unable to delete protocol timeout attribute (Ticket 47620) - Resolves: bug 918694 - Fix crash when disabling/enabling the setting (Ticket 408) - Resolves: bug 853355 - config_set_allowed_to_delete_attrs: Valgrind reports Invalid read (Ticket 47660)- release 1.3.1.6-14 - Resolves: bug 853355 - Possible to add invalid attribute to nsslapd-allowed-to-delete-attrs (Ticket 447) - Resolves: bug 1034739 - Impossible to configure nsslapd-allowed-sasl-mechanisms (Ticket 47613) - Resolves: bug 1038639 - 389-ds rejects nsds5ReplicaProtocolTimeout attribut; Fix logically dead code; Fix dereferenced NULL pointer in agmtlist_modify_callback(); Fix missing left brackete (Ticket 47620) - Resolves: bug 1042855 - nsds5ReplicaProtocolTimeout attribute is not validated when added to replication agreement; Config value validation improvement (Ticket 47620) - Resolves: bug 918717 - server does not accept 0 length LDAP Control sequence (Ticket 571) - Resolves: bug 1034902 - replica init/bulk import errors should be more verbose (Ticket 47606) - Resolves: bug 1044219 - fix memleak caused by 47347 (Ticket 47623) - Resolves: bug 1049522 - Crash after replica is installed; Fix cherry-pick error for 1.3.2 and 1.3.1 (Ticket 47620) - Resolves: bug 1049568 - changelog iteration should ignore cleaned rids when getting the minCSN (Ticket 47627)- Mass rebuild 2013-12-27- release 1.3.1.6-12 - Resolves: bug 1038639 - 389-ds rejects nsds5ReplicaProtocolTimeout attribute (Ticket 47620) - Resolves: bug 1034898 - automember plugin task memory leaks (Ticket 47592) - Resolves: bug 1034451 - Possible to specify invalid SASL mechanism in nsslapd-allowed-sasl-mechanisms (Ticket 47614) - Resolves: bug 1032318 - entries with empty objectclass attribute value can be hidden (Ticket 47591) - Resolves: bug 1032316 - attrcrypt fails to find unlocked key (Ticket 47596) - Resolves: bug 1031227 - Reduce lock scope in retro changelog plug-in (Ticket 47599) - Resolves: bug 1031226 - Convert ldbm_back_seq code to be transaction aware (Ticket 47598) - Resolves: bug 1031225 - Convert retro changelog plug-in to betxn (Ticket 47597) - Resolves: bug 1031223 - hard coded limit of 64 masters in agreement and changelog code (Ticket 47587) - Resolves: bug 1034739 - Impossible to configure nsslapd-allowed-sasl-mechanisms (Ticket 47613) - Resolves: bug 1035824 - Automember betxnpreoperation - transaction not aborted when group entry does not exist (Ticket 47622)- Resolves: bug 1024979 - CVE-2013-4485 389-ds-base: DoS due to improper handling of ger attr searches- release 1.3.1.6-10 - Resolves: bug 1018893 DS91: ns-slapd stuck in DS_Sleep - had to revert earlier change - does not work and breaks ipa- release 1.3.1.6-9 - Resolves: bug 1028440 - Winsync replica initialization and incremental updates from DS to AD fails on RHEL - Resolves: bug 1027502 - Replication Failures related to skipped entries due to cleaned rids - Resolves: bug 1027047 - Winsync plugin segfault during incremental backoff- release 1.3.1.6-8 - Resolves: bug 971111 - DNA plugin failed to fetch replication agreement - Resolves: bug 1026931 - 1.2.11.29 crash when removing entries from cache- Resolves: bug 1018893 DS91: ns-slapd stuck in DS_Sleep - Resolves: bug 1018914 fixup memberof task does not work: task entry not added- Resolves: bug 1013900 - logconv: some stats do not work across server restarts - previous patch introduced regressions - fixed by c2eced0 ticket #47550 and e2a880b Ticket #47550 and 8b10f83 Ticket #47551 - Resolves: bug 1008610 - tmpfiles.d references /var/lock when they should reference /run/lock - previous patch not complete, fixed by a11be5c Ticket 47513 - Resolves: bug 1016749 - DS crashes when "cn=Directory Manager" is changing it's password - cherry picked upstream f786600 Ticket 47329 and b67e230 Coverity Fixes - Resolves: bug 1015252 locale "nl" not supported by collation plugin - Resolves: bug 1016317 Need to update supported locales - Resolves: bug 1016722 memory leak in range searches- Resolves: bug 1013896 - logconv.pl - Use of comma-less variable list is deprecated - Resolves: bug 1008256 - backend txn plugin fixup tasks should be done in a txn - Resolves: bug 1013738 - CLEANALLRUV doesnt run across all replicas - Resolves: bug 1011220 - PassSync removes User must change password flag on the Windows side - Resolves: bug 1008610 - tmpfiles.d references /var/lock when they should reference /run/lock - Resolves: bug 1012125 - Set up replcation/agreement before initializing the sub suffix, the sub suffix is not found by ldapsearch - Resolves: bug 1013063 - RUV tombstone search with scope "one" doesn`t work - Resolves: bug 1013893 - Indexed search are logged with 'notes=U' in the access logs - Resolves: bug 1013894 - improve logconv.pl performance with large access logs - Resolves: bug 1013898 - Fix various issues with logconv.pl - Resolves: bug 1013897 - logconv.pl uses /var/tmp for BDB temp files - Resolves: bug 1013900 - logconv: some stats do not work across server restarts - Resolves: bug 1014354 - Coverity fixes - 12023, 12024, and 12025- bump version to 1.3.1.6-4 - Resolves Bug 1007988 - Under specific values of nsDS5ReplicaName, replication may get broken or updates missing (Ticket 47489) - Resolves Bug 853931 - Allow macro aci keywords to be case-insensitive (Ticket 449) - Resolves Bug 1006563 - automember rebuild task not working as expected (Ticket 47507)- Ticket #47455 - valgrind - value mem leaks, uninit mem usage - Ticket 47500 - start-dirsrv/restart-dirsrv/stop-disrv do not register with systemd correctly- bump version to 1.3.1.6-2 - Resolves Bug 1000633 - ns-slapd crash due to bogus DN - Ticket #47488 - Users from AD sub OU does not sync to IPA- bump version to 1.3.1.6 - Ticket 47455 - valgrind - value mem leaks, uninit mem usage - fix coverity 11915 - dead code - introduced with fix for ticket 346 - fix coverity 11895 - null deref - caused by fix to ticket 47392 - fix compiler warning in posix winsync code for posix_group_del_memberuid_callback - Fix compiler warnings for Ticket 47395 and 47397 - fix compiler warning (cherry picked from commit 904416f4631d842a105851b4a9931ae17822a107) - Ticket 47450 - Fix compiler formatting warning errors for 32/64 bit arch - fix compiler warnings - Fix compiler warning (cherry picked from commit ec6ebc0b0f085a82041d993ab2450a3922ef5502)- bump version to 1.3.1.5 - Ticket 47456 - delete present values should append values to deleted values - Ticket 47455 - valgrind - value mem leaks, uninit mem usage - Ticket 47448 - Segfault in 389-ds-base-1.3.1.4-1.fc19 when setting up FreeIPA replication - Ticket 47440 - Fix runtime errors caused by last patch. - Ticket 47440 - Fix compilation warnings and header files - Ticket 47405 - CVE-2013-2219 ACLs inoperative in some search scenarios - Ticket 47447 - logconv.pl man page missing -m,-M,-B,-D - Ticket 47378 - fix recent compiler warnings - Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold - Ticket 47449 - deadlock after adding and deleting entries - Ticket 47441 - Disk Monitoring not checking filesystem with logs - Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold- bump version to 1.3.1.4 - Ticket 47435 - Very large entryusn values after enabling the USN plugin and the lastusn value is negat - Ticket 47424 - Replication problem with add-delete requests on single-valued attributes - Ticket 47367 - (phase 2) ldapdelete returns non-leaf entry error while trying to remove a leaf entry - Ticket 47367 - (phase 1) ldapdelete returns non-leaf entry error while trying to remove a leaf entry - Ticket 47421 - memory leaks in set_krb5_creds - Ticket 346 - version 4 Slow ldapmodify operation time for large quantities of multi-valued attribute v - Ticket 47369 version2 - provide default syntax plugin - Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold - Ticket 47339 - RHDS denies MODRDN access if ACI list contains any DENY rule - Ticket 47427 - Overflow in nsslapd-disk-monitoring-threshold - Ticket 47428 - Memory leak in 389-ds-base 1.2.11.15 - Ticket 47392 - ldbm errors when adding/modifying/deleting entries - Ticket 47385 - Disk Monitoring is not triggered as expected. - Ticket 47410 - changelog db deadlocks with DNA and replication- bump version to 1.3.1.3 - Ticket 47374 - flush.pl is not included in perl5 - Ticket 47391 - deleting and adding userpassword fails to update the password (additional fix) - Ticket 47393 - Attribute are not encrypted on a consumer after a full initialization - Ticket 47395 47397 - v2 correct behaviour of account policy if only stateattr is configured or no alternate attr is configured - Ticket 47396 - crash on modrdn of tombstone - Ticket 47400 - MMR stress test with dna enabled causes a deadlock - Ticket 47409 - allow setting db deadlock rejection policy - Ticket 47419 - Unhashed userpassword can accidentally get removed from mods - Ticket 47420 - An upgrade script 80upgradednformat.pl fails to handle a server instance name incuding '-'- Rebuilt for new net-snmp- bump version to 1.3.1.2 - Ticket 47391 - deleting and adding userpassword fails to update the password - Coverity Fixes (Part 7)- bump version to 1.3.1.1 - Ticket 402 - nhashed#user#password in entry extension - Ticket 511 - Revision - allow turning off vattr lookup in search entry return - Ticket 580 - Wrong error code return when using EXTERNAL SASL and no client certificate - Ticket 47327 - error syncing group if group member user is not synced - Ticket 47355 - dse.ldif doesn't replicate update to nsslapd-sasl-mapping-fallback - Ticket 47359 - new ldap connections can block ldaps and ldapi connections - Ticket 47362 - ipa upgrade selinuxusermap data not replicating - Ticket 47375 - flush_ber error sending back start_tls response will deadlock - Ticket 47376 - DESC should not be empty as per RFC 2252 (ldapv3) - Ticket 47377 - make listen backlog size configurable - Ticket 47378 - fix recent compiler warnings - Ticket 47383 - connections attribute in cn=snmp,cn=monitor is counted twice - Ticket 47385 - DS not shutting down when disk monitoring threshold is reached - Coverity Fixes (part 1) - Coverity Fixes (Part 2) - Coverity Fixes (Part 3) - Coverity Fixes (Part 4) - Coverity Fixes (Part 5)- bump version to 1.3.1.0 - Ticket 332 - Command line perl scripts should attempt most secure connection type first - Ticket 342 - better error message when cache overflows - Ticket 417 - RFE - forcing passwordmustchange attribute by non-cn=directory manager - Ticket 419 - logconv.pl - improve memory management - Ticket 422 - 389-ds-base - Can't call method "getText" - Ticket 433 - multiple bugs in start-dirsrv, stop-dirsrv, restart-dirsrv scripts - Ticket 458 - RFE - Make it possible for privileges to be provided to an admin user to import an LDIF file containing hashed passwords - Ticket 471 - logconv.pl tool removes the access logs contents if "-M" is not correctly used - Ticket 487 - Possible to add invalid attribute values to PAM PTA plugin configuration - Ticket 502 - setup-ds.pl script should wait if "semanage.trans.LOCK" presen - Ticket 505 - use lock-free access name2asi and oid2asi tables (additional) - Ticket 508 - lock-free access to FrontendConfig structure - Ticket 511 - allow turning off vattr lookup in search entry return - Ticket 525 - Introducing a user visible configuration variable for controlling replication retry time - Ticket 528 - RFE - get rid of instance specific scripts - Ticket 529 - dn normalization must handle multiple space characters in attributes - Ticket 532 - RUV is not getting updated for both Master and consumer - Ticket 533 - only scan for attributes to decrypt if there are encrypted attrs configured - Ticket 534 - RFE: Add SASL mappings fallback - Ticket 537 - Improvement of range search - Ticket 539 - logconv.pl should handle microsecond timing - Ticket 543 - Sorting with attributes in ldapsearch gives incorrect result - Ticket 545 - Segfault during initial LDIF import: str2entry_dupcheck() - Ticket 547 - Incorrect assumption in ndn cache - Ticket 550 - posix winsync will not create memberuid values if group entry become posix group in the same sync interval - Ticket 551 - Multivalued rootdn-days-allowed in RootDN Access Control plugin always results in access control violation - Ticket 552 - Adding rootdn-open-time without rootdn-close-time to RootDN Acess Control results in inconsistent configuration - Ticket 558 - Replication - make timeout for protocol shutdown configurable - Ticket 561 - disable writing unhashed#user#password to changelog - Ticket 563 - DSCreate.pm: Error messages cannot be used in the if expression since they could be localized. - Ticket 565 - turbo mode and replication - allow disable of turbo mode - Ticket 571 - server does not accept 0 length LDAP Control sequence - Ticket 574 - problems with dbcachesize disk space calculation - Ticket 583 - dirsrv fails to start on reboot due to /var/run/dirsrv permissions - Ticket 585 - Behaviours of "db2ldif -a " and "db2ldif.pl -a " are inconsistent - Ticket 587 - Replication error messages in the DS error logs - Ticket 588 - Create MAN pages for command line scripts - Ticket 600 - Server should return unavailableCriticalExtension when processing a badly formed critical control - Ticket 603 - A logic error in str2simple - Ticket 604 - Required attribute not checked during search operation - Ticket 608 - Posix Winsync plugin throws "posix_winsync_end_update_cb: failed to add task entry" error message - Ticket 611 - logconv.pl missing stats for StartTLS, LDAPI, and AUTOBIND - Ticket 612 - improve dbgen rdn generation, output - Ticket 613 - ldclt: add timestamp, interval, nozeropad, other improvements - Ticket 616 - High contention on computed attribute lock - Ticket 618 - Crash at shutdown while stopping replica agreements - Ticket 620 - Better logging of error messages for 389-ds-base - Ticket 621 - modify operations without values need to be written to the changelog - Ticket 622 - DS logging errors "libdb: BDB0171 seek: 2147483648: (262144 * 8192) + 0: No such file or directory - Ticket 631 - Replication: "Incremental update started" status message without consumer initialized - Ticket 633 - allow nsslapd-nagle to be disabled, and also tcp cork - Ticket 47299 - allow cmdline scripts to work with non-root user - Ticket 47302 - get rid of sbindir start/stop/restart slapd scripts - Ticket 47303 - start/stop/restart dirsrv scripts should report and error if no instances - Ticket 47304 - reinitialization of a master with a disabled agreement hangs - Ticket 47311 - segfault in db2ldif(trigger by a cleanallruv task) - Ticket 47312 - replace PR_GetFileInfo with PR_GetFileInfo64 - Ticket 47315 - filter option in fixup-memberof requires more clarification - Ticket 47325 - Crash at shutdown on a replica aggrement - Ticket 47330 - changelog db extension / upgrade is obsolete - Ticket 47336 - logconv.pl -m not working for all stats - Ticket 47341 - logconv.pl -m time calculation is wrong - Ticket 47343 - 389-ds-base: Does not support aarch64 in f19 and rawhide - Ticket 47347 - Simple paged results should support async search - Ticket 47348 - add etimes to per second/minute stats - Ticket 47349 - DS instance crashes under a high load- bump version to 1.3.0.5 - Ticket 47308 - unintended information exposure when anonymous access is set to rootdse - Ticket 628 - crash in aci evaluation - Ticket 627 - ns-slapd crashes sporadically with segmentation fault in libslapd.so - Ticket 634 - Deadlock in DNA plug-in Ticket #576 - DNA: use event queue for config update only at the start up - Ticket 632 - 389-ds-base cannot handle Kerberos tickets with PAC - Ticket 623 - cleanAllRUV task fails to cleanup config upon completion- e53d691 bump version to 1.3.0.4 - Bug 912964 - CVE-2013-0312 389-ds: unauthenticated denial of service vulnerability in handling of LDAPv3 control data - Ticket 570 - DS returns error 20 when replacing values of a multi-valued attribute (only when replication is enabled) - Ticket 490 - Slow role performance when using a lot of roles - Ticket 590 - ns-slapd segfaults while trying to delete a tombstone entry- bump version to 1.3.0.3 - Ticket #584 - Existence of an entry is not checked when its password is to be deleted - Ticket 562 - Crash when deleting suffix- Rebuild for icu 50- bump version to 1.3.0.2 - Ticket #542 - Cannot dynamically set nsslapd-maxbersize- bump version to 1.3.0.1 - Ticket 556 - Don't overwrite certmap.conf during upgrade- bump version to 1.3.0.0- bump version to 1.3.0.rc3 - Ticket 549 - DNA plugin no longer reports additional info when range is depleted - Ticket 541 - need to set plugin as off in ldif template - Ticket 541 - RootDN Access Control plugin is missing after upgrade- bump version to 1.3.0.rc2 - Trac Ticket #497 - Escaped character cannot be used in the substring search filter - Ticket 509 - lock-free access to be->be_suffixlock - Trac Ticket #522 - betxn: upgrade is not implemented yet- bump version to 1.3.0.rc1 - Ticket #322 - Create DOAP description for the 389 Directory Server project - Trac Ticket #499 - Handling URP results is not corrrect - Ticket 509 - lock-free access to be->be_suffixlock - Ticket 456 - improve entry cache sizing - Trac Ticket #531 - loading an entry from the database should use str2entry_f - Trac Ticket #536 - Clean up compiler warnings for 1.3 - Trac Ticket #531 - loading an entry from the database should use str2entry_fast - Ticket 509 - lock-free access to be->be_suffixlock - Ticket 527 - ns-slapd segfaults if it cannot rename the logs - Ticket 395 - RFE: 389-ds shouldn't advertise in the rootDSE that we can handle a sasl mech if we really can't - Ticket 216 - disable replication agreements - Ticket 518 - dse.ldif is 0 length after server kill or machine kill - Ticket 393 - Change in winSyncInterval does not take immediate effect - Ticket 20 - Allow automember to work on entries that have already been added - Coverity Fixes - Ticket 349 - nsViewFilter syntax issue in 389DS 1.2.5 - Ticket 337 - improve CLEANRUV functionality - Fix for ticket 504 - Ticket 394 - modify-delete userpassword - minor fixes for bdb 4.2/4.3 and mozldap - Trac Ticket #276 - Multiple threads simultaneously working on connection's private buffer causes ns-slapd to abort - Fix for ticket 465: cn=monitor showing stats for other db instances - Ticket 507 - use mutex for FrontendConfig lock instead of rwlock - Fix for ticket 510 Avoid creating an attribute just to determine the syntax for a type, look up the syntax directly by type - Coverity defect: Resource leak 13110 - Ticket 517 - crash in DNA if no dnaMagicRegen is specified - Trac Ticket #520 - RedHat Directory Server crashes (segfaults) when moving ldap entry - Trac Ticket #519 - Search with a complex filter including range search is slow - Trac Ticket #500 - Newly created users with organizationalPerson objectClass fails to sync from AD to DS with missing attribute error - Trac Ticket #311 - IP lookup failing with multiple DNS entries - Trac Ticket #447 - Possible to add invalid attribute to nsslapd-allowed-to-delete-attrs - Trac Ticket #443 - Deleting attribute present in nsslapd-allowed-to-delete-attrs returns Operations error - Ticket #503 - Improve AD version in winsync log message - Trac Ticket #190 - Un-resolvable server in replication agreement produces unclear error message - Coverity fixes - Trac Ticket #391 - Slapd crashes when deleting backends while operations are still in progress - Trac Ticket #448 - Possible to set invalid macros in Macro ACIs - Trac Ticket #498 - Cannot abaondon simple paged result search - Coverity defects - Trac Ticket #494 - slapd entered to infinite loop during new index addition - Fixing compiler warnings in the posix-winsync plugin - Coverity defects - Ticket 147 - Internal Password Policy usage very inefficient - Ticket 495 - internalModifiersname not updated by DNA plugin - Revert "Ticket 495 - internalModifiersname not updated by DNA plugin" - Ticket 495 - internalModifiersname not updated by DNA plugin - Ticket 468 - if pam_passthru is enabled, need to AC_CHECK_HEADERS([security/pam_appl.h]) - Ticket 486 - nsslapd-enablePlugin should not be multivalued - Ticket 488 - Doc: DS error log messages with typo - Trac Ticket #451 - Allow db2ldif to be quiet - Ticket #491 - multimaster_extop_cleanruv returns wrong error codes - Ticket #481 - expand nested posix groups - Trac Ticket #455 - Insufficient rights to unhashed#user#password when user deletes his password - Ticket #446 - anonymous limits are being applied to directory managerTicket #28 MOD operations with chained delete/add get back error 53 on backend config Ticket #173 ds-logpipe.py script's man page and script help should be updated for -t option. Ticket #196 RFE: Interpret IPV6 addresses for ACIs, replication, and chaining Ticket #218 RFE - Make RIP working with Replicated Entries Ticket #328 make sure all internal search filters are properly escaped Ticket #329 389-admin build fails on F-18 with new apache Ticket #344 deadlock in replica_write_ruv Ticket #351 use betxn plugins by default Ticket #352 make cos, roles, views betxn aware Ticket #356 logconv.pl - RFE - track bind info Ticket #365 Audit log - clear text password in user changes Ticket #370 Opening merge qualifier CoS entry using RHDS console changes the entry. Ticket #372 Setting nsslapd-listenhost or nsslapd-securelistenhost breaks ACI processing Ticket #386 Overconsumption of memory with large cachememsize and heavy use of ldapmodify Ticket #402 unhashedTicket #userTicket #password in entry extension Ticket #408 Create a normalized dn cache Ticket #453 db2index with -tattrname:type,type fails Ticket #461 fix build problem with mozldap c sdk Ticket #462 add test for include file mntent.h Ticket #463 different parameters of getmntent in Solaris- Trac Ticket #470 - 389 prevents from adding a posixaccount with userpassword after schema reload - Ticket 477 - CLEANALLRUV if there are only winsync agmts task will hang - Ticket 457 - dirsrv init script returns 0 even when few or all instances fail to start - Ticket 473 - change VERSION.sh to have console version be major.minor - Ticket 475 - Root DN Access Control - improve value checking for config - Trac Ticket #466 - entry_apply_mod - ADD: Failed to set unhashed#user#password to extension - Ticket 474 - Root DN Access Control - days allowed not working correctly - Ticket 467 - CLEANALLRUV abort task should be able to ignore down replicas - 0b79915 fix compiler warnings in ticket 374 code - Ticket 452 - automember rebuild task adds users to groups that do not match the configuration scope- Ticket 450 - CLEANALLRUV task gets stuck on winsync replication agreement - Ticket 386 - large memory growth with ldapmodify(heap fragmentation) - this patch doesn't fix the bug - it allows us to experiment with - different values of mxfast - Ticket #374 - consumer can go into total update mode for no reason- Ticket #426 - support posix schema for user and group sync - 1) plugin config ldif must contain pluginid, etc. during upgrade or it - will fail due to schema errors - 2) posix winsync should have a lower precedence (25) than the default (50) - so that it will be run first - 3) posix winsync should support the Winsync API v3 - the v2 functions are - just stubs for now - but the precedence cb is active- 8e5087a Coverity defects - 13089: Dereference after null check ldbm_back_delete - Trac Ticket #437 - variable dn should not be used in ldbm_back_delete - ba1f5b2 fix coverity resource leak in windows_plugin_add - e3e81db Simplify program flow: change while loops to for - a0d5dc0 Fix logic errors: del_mod should be latched (might not be last mod), and avoid skipping add-mods (int value 0) - 0808f7e Simplify program flow: make adduids/moduids/deluids action blocks all similar - 77eb760 Simplify program flow: eliminate unnecessary continue - c9e9db7 Memory leaks: unmatched slapi_attr_get_valueset and slapi_value_new - a4ca0cc Change "return"s in modGroupMembership to "break"s to avoid leaking - d49035c Factorize into new isPosixGroup function - 3b61c03 coverity - posix winsync mem leaks, null check, deadcode, null ref, use after free - 33ce2a9 fix mem leaks with parent dn log message, setting winsync windows domain - Ticket #440 - periodic dirsync timed event causes server to loop repeatedly - Ticket #355 - winsync should not delete entry that appears to be out of scope - Ticket 436 - nsds5ReplicaEnabled can be set with any invalid values. - 487932d coverity - mbo dead code - winsync leaks, deadcode, null check, test code - 2734a71 CLEANALLRUV coverity fixes - Ticket #426 - support posix schema for user and group sync - Ticket #430 - server to server ssl client auth broken with latest openldap6c0778f bumped version to 1.2.11.11 Ticket 429 - added nsslapd-readonly to DS schema Ticket 403 - fix CLEANALLRUV regression from last commit Trac Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute valuesdb6b354 bumped version to 1.2.11.10 Ticket 403 - CLEANALLRUV revisionsea05e69 Bumped version to 1.2.11.9 Ticket 407 - dna memory leak - fix crash from prev fixddcf669 bump version to 1.2.11.8 for offical release Ticket #425 - support multiple winsync plugins Ticket 403 - cleanallruv coverity fixes Ticket 407 - memory leak in dna plugin Ticket 403 - CLEANALLRUV feature Ticket 413 - "Server is unwilling to perform" when running ldapmodify on nsds5ReplicaStripAttrs 3168f04 Coverity defects 5ff0a02 COVERITY FIXES Ticket #388 - Improve replication agreement status messages 0760116 Update the slapi-plugin documentation on new slapi functions, and added a slapi function for checking on shutdowns Ticket #369 - restore of replica ldif file on second master after deleting two records shows only 1 deletion Ticket #409 - Report during startup if nsslapd-cachememsize is too small Ticket #412 - memberof performance enhancement 12813: Uninitialized pointer read string_values2keys Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values Ticket #410 - Referential integrity plug-in does not work when update interval is not zero Ticket #406 - Impossible to rename entry (modrdn) with Attribute Uniqueness plugin enabled Ticket #405 - referint modrdn not working if case is different Ticket 399 - slapi_ldap_bind() doesn't check bind results- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Perl 5.16 rebuild- Ticket 378 - unhashed#user#password visible after changing password - fix func declaration from previous patch - Ticket 366 - Change DS to purge ticket from krb cache in case of authentication error- Trac Ticket 396 - Account Usability Control Not Working- Ticket #378 - audit log does not log unhashed password: enabled, by default. - Ticket #378 - unhashed#user#password visible after changing password - Ticket #365 - passwords in clear text in the audit log- workaround for https://bugzilla.redhat.com/show_bug.cgi?id=833529- Ticket #387 - managed entry sometimes doesn't delete the managed entry - 5903815 improve txn test index handling - Ticket #360 - ldapmodify returns Operations error - fix delete caching - bcfa9e3 Coverity Fix for CLEANALLRUV - Trac Ticket #335 - transaction retries need to be cache aware - Ticket #389 - ADD operations not in audit log - 44cdc84 fix coverity issues with uninit vals, no return checking - Ticket 368 - Make the cleanAllRUV task one step - Ticket #110 - RFE limiting root DN by host, IP, time of day, day of week- Perl 5.16 rebuild- Ticket #360 - ldapmodify returns Operations error - Ticket #321 - krbExtraData is being null modified and replicated on each ssh login - Trac Ticket #359 - Database RUV could mismatch the one in changelog under the stress - Ticket #361: Bad DNs in ACIs can segfault ns-slapd - Trac Ticket #338 - letters in object's cn get converted to lowercase when renaming object - Ticket #337 - Improve CLEANRUV task- Ticket #358 - managed entry doesn't delete linked entry- Ticket #351 - use betxn plugins by default - revert - make no plugins betxn by default - too great a risk - for deadlocks until we can test this better - Ticket #348 - crash in ldap_initialize with multiple threads - fixes PR_Init problem in ldclt- f227f11 Suppress alert on unavailable port with forced setup - Ticket #353 - coverity 12625-12629 - leaks, dead code, unchecked return - Ticket #351 - use betxn plugins by default - Trac Ticket #345 - db deadlock return should not log error - Ticket #348 - crash in ldap_initialize with multiple threads - Ticket #214 - Adding Replication agreement should complain if required nsds5ReplicaCredentials not supplied - Ticket #207 - [RFE] enable attribute that tracks when a password was last set - Ticket #216 - RFE - Disable replication agreements - Ticket #337 - RFE - Improve CLEANRUV functionality - Ticket #326 - MemberOf plugin should work on all backends - Trac Ticket #19 - Convert entryUSN plugin to transaction aware type - Ticket #347 - IPA dirsvr seg-fault during system longevity test - Trac Ticket #310 - Avoid calling escape_string() for logged DNs - Trac Ticket #338 - letters in object's cn get converted to lowercase when renaming object - Ticket #183 - passwordMaxFailure should lockout password one sooner - Trac Ticket #335 - transaction retries need to be cache aware - Ticket #336 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV) - Ticket #325 - logconv.pl : use of getopts to parse command line options - Ticket #336 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV) - 554e29d Coverity Fixes - Trac Ticket #46 - (additional 2) setup-ds-admin.pl does not like ipv6 only hostnames - Ticket #183 - passwordMaxFailure should lockout password one sooner - and should be configurable to avoid regressions - Ticket #315 - small fix to libglobs - Ticket #315 - ns-slapd exits/crashes if /var fills up - Ticket #20 - Allow automember to work on entries that have already been added - Trac Ticket #45 - Fine Grained Password policy: if passwordHistory is on, deleting the password fails.- 453eb97 schema def must have DESC '' - close paren must be preceded by space - Trac Ticket #46 - (additional) setup-ds-admin.pl does not like ipv6 only hostnames - Ticket #331 - transaction errors with db 4.3 and db 4.2 - Ticket #261 - Add Solaris i386 - Ticket #316 and Ticket #70 - add post add/mod and AD add callback hooks - Ticket #324 - Sync with group attribute containing () fails - Ticket #319 - ldap-agent crashes on start with signal SIGSEGV - 77cacd9 coverity 12606 Logically dead code - Trac Ticket #303 - make DNA range requests work with transactions - Ticket #320 - allow most plugins to be betxn plugins - Ticket #24 - Add nsTLS1 to the DS schema - Ticket #271 - Slow shutdown when you have 100+ replication agreements - TIcket #285 - compilation fixes for '--format-security' - Ticket 211 - Avoid preop range requests non-DNA operations - Ticket #271 - replication code cleanup - Ticket 317 - RHDS fractional replication with excluded password policy attributes leads to wrong error messages. - Ticket #308 - Automembership plugin fails if data and config area mixed in the plugin configuration - Ticket #292 - logconv.pl reporting unindexed search with different search base than shown in access logs - 6f8680a coverity 12563 Read from pointer after free (fix 2) - e6a9b22 coverity 12563 Read from pointer after free - 245d494 Config changes fail because of unknown attribute "internalModifiersname" - Ticket #191 - Implement SO_KEEPALIVE in network calls - Ticket #289 - allow betxn plugin config changes - 93adf5f destroy the entry cache and dn cache in the dse post op delete callback - e2532d8 init txn thread private data for all database modes - Ticket #291 - cannot use & in a sasl map search filter - 6bf6e79 Schema Reload crash fix - 60b2d12 Fixing compiler warnings - Trac Ticket #260 - 389 DS does not support multiple paging controls on a single connection - Ticket #302 - use thread local storage for internalModifiersName & internalCreatorsName - fdcc256 Minor bug fix introcuded by commit 69c9f3bf7dd9fe2cadd5eae0ab72ce218b78820e - Ticket #306 - void function cannot return value - ticket 181 - Allow PAM passthru plug-in to have multiple config entries - ticket 211 - Use of uninitialized variables in ldbm_back_modify() - Ticket #74 - Add schema for DNA plugin (RFE) - Ticket #301 - implement transaction support using thread local storage - Ticket #211 - dnaNextValue gets incremented even if the user addition fails - 144af59 coverity uninit var and resource leak - Trac Ticket #34 - remove-ds.pl does not remove everything - Trac Ticket #169 - allow 389 to use db5 - bc78101 fix compiler warning in acct policy plugin - Trac Ticket #84 - 389 Directory Server Unnecessary Checkpoints - Trac Ticket #27 - SASL/PLAIN binds do not work - Ticket #129 - Should only update modifyTimestamp/modifiersName on MODIFYops - Ticket #17 - new replication optimizations- Ticket #46 - (revised) setup-ds-admin.pl does not like ipv6 only hostnames - Ticket #66 - 389-ds-base spec file does not have a BuildRequires on gcc-c++- Ticket #46 - setup-ds-admin.pl does not like ipv6 only hostnames- get rid of posttrans - move update code to post- Ticket #305 - Certain CMP operations hang or cause ns-slapd to crash- b05139b memleak in normalize_mods2bvals - c0eea24 memleak in mep_parse_config_entry - 90bc9eb handle null smods - Ticket #305 - Certain CMP operations hang or cause ns-slapd to crash - Ticket #306 - void function cannot return value - ticket 304 - Fix kernel version checking in dsktune- Trac Ticket #298 - crash when replicating orphaned tombstone entry - Ticket #281 - TLS not working with latest openldap - Trac Ticket #290 - server hangs during shutdown if betxn pre/post op fails - Trac Ticket #26 - Please support setting defaultNamingContext in the rootdse- Ticket #124 - add Provides: ldif2ldbm to rpm- Ticket #294 - 389 DS Segfaults during replica install in FreeIPA- Ticket 284 - Remove unnecessary SNMP MIB files - Ticket 51 - memory leaks in 389-ds-base-1.2.8.2-1.el5? - Ticket 175 - logconv.pl improvements- Introducing use_db4 macro to support db5 (libdb).- Rebuild against PCRE 8.30- ad9dd30 coverity 12488 Resource leak In attr_index_config(): Leak of memory or pointers to system resources - Ticket #281 - TLS not working with latest openldap - Ticket #280 - extensible binary filters do not work - Ticket #279 - filter normalization does not use matching rules - Trac Ticket #275 - Invalid read reported by valgrind - Ticket #277 - cannot set repl referrals or state - Ticket #278 - Schema replication update failed: Invalid syntax - Ticket #39 - Account Policy Plugin does not work for simple binds when PAM Pass Through Auth plugin is enabled - Ticket #13 - slapd process exits when put the database on read only mode while updates are coming to the server - Ticket #87 - Manpages fixes - c493fb4 fix a couple of minor coverity issues - Ticket #55 - Limit of 1024 characters for nsMatchingRule - Trac Ticket #274 - Reindexing entryrdn fails if ancestors are also tombstoned - Ticket #6 - protocol error from proxied auth operation - Ticket #38 - nisDomain schema is incorrect - Ticket #273 - ruv tombstone searches don't work after reindex entryrdn - Ticket #29 - Samba3-schema is missing sambaTrustedDomainPassword - Ticket #22 - RFE: Support sendmail LDAP routing schema - Ticket #161 - Review and address latest Coverity issues - Ticket #140 - incorrect memset parameters - Trac Ticket 35 - Log not clear enough on schema errors - Trac Ticket 139 - eliminate the use of char *dn in favor of Slapi_DN *dn - Trac Ticket #52 - FQDN set to nsslapd-listenhost makes the server start fail if IPv4-mapped-IPv6 address is given- Ticket #272 - add tombstonenumsubordinates to schema- fixes for systemd - remove .pid files after shutting down servers - Ticket #263 - add systemd include directive - Ticket #264 - upgrade needs better check for "server is running"- Ticket #262 - pid file not removed with systemd - Ticket #50 - server should not call a plugin after the plugin close function is called - Ticket #18 - Data inconsitency during replication - Ticket #49 - better handling for server shutdown while long running tasks are active - Ticket #15 - Get rid of rwlock.h/rwlock.c and just use slapi_rwlock instead - Ticket #257 - repl-monitor doesn't work if leftmost hostnames are the same - Ticket #12 - 389 DS DNA Plugin / Replication failing on GSSAPI - 6aaeb77 add a hack to disable sasl hostname canonicalization - Ticket 168 - minssf should not apply to rootdse - Ticket #177 - logconv.pl doesn't detect restarts - Ticket #159 - Managed Entry Plugin runs against managed entries upon any update without validating - Ticket 75 - Unconfigure plugin opperations are being called. - Ticket 26 - Please support setting defaultNamingContext in the rootdse. - Ticket #71 - unable to delete managed entry config - Ticket #167 - Mixing transaction and non-transaction plugins can cause deadlock - Ticket #256 - debug build assertion in ACL_EvalDestroy() - Ticket #4 - bak2db gets stuck in infinite loop - Ticket #162 - Infinite loop / spin inside strcmpi_fast, acl_read_access_allowed_on_attr, server DoS - Ticket #3: acl cache overflown problem - Ticket 1 - pre-normalize filter and pre-compile substring regex - and other optimizations - Ticket 2 - If node entries are tombstone'd, subordinate entries fail to get the full DN.- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Bug 755725 - 389 programs linked against openldap crash during shutdown - Bug 755754 - Unable to start dirsrv service using systemd - Bug 745259 - Incorrect entryUSN index under high load in replicated environment - d439e3a use slapi_hexchar2int and slapi_str_to_u8 everywhere - 5910551 csn_init_as_string should not use sscanf - b53ba00 reduce calls to csn_as_string and slapi_log_error - c897267 fix member variable name error in slapi_uniqueIDFormat - 66808e5 uniqueid formatting - use slapi_u8_to_hex instead of sprintf - 580a875 csn_as_string - use slapi_uN_to_hex instead of sprintf - Bug 751645 - crash when simple paged fails to send entry to client - Bug 752155 - Use restorecon after creating init script lock file- Bug 751495 - 'setup-ds.pl -u' fails with undefined routine 'updateSystemD' - Bug 750625 750624 750622 744946 Coverity issues - Bug 748575 - part 2 - rhds81 modrdn operation and 100% cpu use in replication - Bug 748575 - rhds81 modrn operation and 100% cpu use in replication - Bug 745259 - Incorrect entryUSN index under high load in replicated environment - f639711 Reduce the number of DN normalization - c06a8fa Keep unhashed password psuedo-attribute in the adding entry - Bug 744945 - nsslapd-counters attribute value cannot be set to "off" - 8d3b921 Use new PLUGIN_CONFIG_ENTRY feature to allow switching between txn and regular - d316a67 Change referential integrity to be a betxnpostoperation plugin- Bug 741744 - part3 - MOD operations with chained delete/add get back error 53 - 1d2f5a0 make memberof transaction aware and able to be a betxnpostoperation plug in - b6d3ba7 pass the plugin config entry to the plugin init function - 28f7bfb set the ENTRY_POST_OP for modrdn betxnpostoperation plugins - Bug 743966 - Compiler warnings in account usability plugin- 498c42b fix transaction support in ldbm_delete- Bug 740942 - allow resource limits to be set for paged searches independently of limits for other searches/operations - Bug 741744 - MOD operations with chained delete/add get back error 53 on backend config - Bug 742324 - allow nsslapd-idlistscanlimit to be set dynamically and per-user- Bug 695736 - Providing native systemd file- corrected source- Bug 735114 - renaming a managed entry does not update mepmanagedby- Bug 735121 - simple paged search + ip/dns based ACI hangs server - Bug 722292 - (cov#11030) Leak of mapped_sdn in winsync rename code - Bug 703990 - cross-platform - Support upgrade from Red Hat Directory Server - Introducing an environment variable USE_VALGRIND to clean up the entry cache and dn cache on exit.- Bug 732153 - subtree and user account lockout policies implemented? - Bug 722292 - Entries in DS are not updated properly when using WinSync API- Bug 733103 - large targetattr list with syntax errors cause server to crash or hang - Bug 633803 - passwordisglobalpolicy attribute brakes TLS chaining - Bug 732541 - Ignore error 32 when adding automember config - Bug 728592 - Allow ns-slapd to start with an invalid server cert- Bug 728510 - Run dirsync after sending updates to AD - Bug 729717 - Fatal error messages when syncing deletes from AD - Bug 729369 - upgrade DB to upgrade from entrydn to entryrdn format is not working. - Bug 729378 - delete user subtree container in AD + modify password in DS == DS crash - Bug 723937 - Slapi_Counter API broken on 32-bit F15 - fixed again - separate tests for atomic ops and atomic bool cas- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - Fix another coverity NULL deref in previous patch- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - Fix coverity NULL deref in previous patch- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error - previous patch broke build on el5- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error- Bug 723937 - Slapi_Counter API broken on 32-bit F15 - fixed to use configure test for GCC provided 64-bit atomic functions- Bug 663752 - Cert renewal for attrcrypt and encchangelog - this was "re-fixed" due to a deadlock condition with cl2ldif task cancel - Bug 725953 - Winsync: DS entries fail to sync to AD, if the User's CN entry contains a comma - Bug 725743 - Make memberOf use PRMonitor for it's operation lock - Bug 725542 - Instance upgrade fails when upgrading 389-ds-base package - Bug 723937 - Slapi_Counter API broken on 32-bit F15- Perl mass rebuild- Perl mass rebuild- Bug 720059 - RDN with % can cause crashes or missing entries - Bug 709468 - RSA Authentication Server timeouts when using simple paged results on RHDS 8.2. - Bug 691313 - Need TLS/SSL error messages in repl status and errors log - Bug 712855 - Directory Server 8.2 logs "Netscape Portable Runtime error -5961 (TCP connection reset by peer.)" to error log whereas Directory Server 8.1 did not - Bug 713209 - Update sudo schema - Bug 719069 - clean up compiler warnings in 389-ds-base 1.2.9 - Bug 718303 - Intensive updates on masters could break the consumer's cache - Bug 711679 - unresponsive LDAP service when deleting vlv on replica- 389-ds-base-1.2.9.a2 - look for separate openldap ldif library - Split automember regex rules into separate entries - writing Inf file shows SchemaFile = ARRAY(0xhexnum) - add support for ldif files with changetype: add - Bug 716980 - winsync uses old AD entry if new one not found - Bug 697694 - rhds82 - incr update state stop_fatal_error "requires administrator action", with extop_result: 9 - bump console version to 1.2.6 - Bug 711679 - unresponsive LDAP service when deleting vlv on replica - Bug 703703 - setup-ds-admin.pl asks for legal agreement to a non-existant file - Bug 706209 - LEGAL: RHEL6.1 License issue for 389-ds-base package - Bug 663752 - Cert renewal for attrcrypt and encchangelog - Bug 706179 - DS can not restart after create a new objectClass has entryusn attribute - Bug 711906 - ns-slapd segfaults using suffix referrals - Bug 707384 - only allow FIPS approved cipher suites in FIPS mode - Bug 710377 - Import with chain-on-update crashes ns-slapd - Bug 709826 - Memory leak: when extra referrals configured- Perl mass rebuild- Perl 5.14 mass rebuild- 389-ds-base-1.2.9.a1 - Auto Membership - More Coverity fixes- 389-ds-base-1.2.8.3 - Bug 700145 - userpasswd not replicating - Bug 700557 - Linked attrs callbacks access free'd pointers after close - Bug 694336 - Group sync hangs Windows initial Sync - Bug 700215 - ldclt core dumps - Bug 695779 - windows sync can lose old values when a new value is added - Bug 697027 - 12 - minor memory leaks found by Valgrind + TET- 389-ds-base-1.2.8.2 - Bug 696407 - If an entry with a mixed case RDN is turned to be - a tombstone, it fails to assemble DN from entryrdn- 389-ds-base-1.2.8.1 - Bug 693962 - Full replica push loses some entries with multi-valued RDNs- 389-ds-base-1.2.8.0 - Bug 693473 - rhds82 rfe - windows_tot_run to log Sizelimit exceeded instead of LDAP error - -1 - Bug 692991 - rhds82 - windows_tot_run: failed to obtain data to send to the consumer; LDAP error - -1 - Bug 693466 - Unable to change schema online - Bug 693503 - matching rules do not inherit from superior attribute type - Bug 693455 - nsMatchingRule does not work with multiple values - Bug 693451 - cannot use localized matching rules - Bug 692331 - Segfault on index update during full replication push on 1.2.7.5- 389-ds-base-1.2.8.rc5 - Bug 692469 - Replica install fails after step for "enable GSSAPI for replication"- 389-ds-base-1.2.8.rc4 - Bug 668385 - DS pipe log script is executed as many times as the dirsrv serv ice is restarted - 389-ds-base-1.2.8.rc3 - Bug 690955 - Mrclone fails due to the replica generation id mismatch- 389-ds-base-1.2.8 release candidate 2 - git tag 389-ds-base-1.2.8.rc2 - Bug 689537 - (cov#10610) Fix Coverity NULL pointer dereferences - Bug 689866 - ns-newpwpolicy.pl needs to use the new DN format - Bug 681015 - RFE: allow fine grained password policy duration attributes - in days, hours, minutes, as well - Bug 684996 - Exported tombstone cannot be imported correctly - Bug 683250 - slapd crashing when traffic replayed - Bug 668909 - Can't modify replication agreement in some cases - Bug 504803 - Allow maxlogsize to be set if logmaxdiskspace is -1 - Bug 644784 - Memory leak in "testbind.c" plugin - Bug 680558 - Winsync plugin fails to restrain itself to the configured subtree- rebuild for icu 4.6- 389-ds-base-1.2.8 release candidate 1 - git tag 389-ds-base-1.2.8.rc1 - Bug 518890 - setup-ds-admin.pl - improve hostname validation - Bug 681015 - RFE: allow fine grained password policy duration attributes in - days, hours, minutes, as well - Bug 514190 - setup-ds-admin.pl --debug does not log to file - Bug 680555 - ns-slapd segfaults if I have more than 100 DBs - Bug 681345 - setup-ds.pl should set SuiteSpotGroup automatically - Bug 674852 - crash in ldap-agent when using OpenLDAP - Bug 679978 - modifying attr value crashes the server, which is supposed to - be indexed as substring type, but has octetstring syntax - Bug 676655 - winsync stops working after server restart - Bug 677705 - ds-logpipe.py script is failing to validate "-s" and - "--serverpid" options with "-t". - Bug 625424 - repl-monitor.pl doesn't work in hub node- Bug 676598 - 389-ds-base multilib: file conflicts - split off libs into a separate -libs package- do not create /var/run/dirsrv - setup will create it instead - remove the fedora-ds initscript upgrade stuff - we do not support that anymore - convert the remaining lua stuff to plain old shell script- 1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3 - Bug 675320 - empty modify operation with repl on or lastmod off will crash server - Bug 675265 - preventryusn gets added to entries on a failed delete - Bug 677774 - added support for tmpfiles.d - Bug 666076 - dirsrv crash (1.2.7.5) with multiple simple paged result search es - Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH - Bug 671199 - Don't allow other to write to rundir - Bug 678646 - Ignore tombstone operations in managed entry plug-in - Bug 676053 - export task followed by import task causes cache assertion - Bug 677440 - clean up compiler warnings in 389-ds-base 1.2.8 - Bug 675113 - ns-slapd core dump in windows_tot_run if oneway sync is used - Bug 676689 - crash while adding a new user to be synced to windows - Bug 604881 - admin server log files have incorrect permissions/ownerships - Bug 668385 - DS pipe log script is executed as many times as the dirsrv serv ice is restarted - Bug 675853 - dirsrv crash segfault in need_new_pw()- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- 1.2.8.a2 release - git tag 389-ds-base-1.2.8.a2 - Bug 674430 - Improve error messages for attribute uniqueness - Bug 616213 - insufficient stack size for HP-UX on PA-RISC - Bug 615052 - intrinsics and 64-bit atomics code fails to compile - on PA-RISC - Bug 151705 - Need to update Console Cipher Preferences with new ciphers - Bug 668862 - init scripts return wrong error code - Bug 670616 - Allow SSF to be set for local (ldapi) connections - Bug 667935 - DS pipe log script's logregex.py plugin is not redirecting the - log output to the text file - Bug 668619 - slapd stops responding - Bug 624547 - attrcrypt should query the given slot/token for - supported ciphers - Bug 646381 - Faulty password for nsmultiplexorcredentials does not give any - error message in logs- 1.2.8-0.1.a1 release - git tag 389-ds-base-1.2.8.a1 - many bug fixes- 1.2.7.5 release - git tag 389-ds-base-1.2.7.5 - Bug 663597 - Memory leaks in normalization code- Resolves: bug 656541 - use %ghost on files in /var/lock- 1.2.7.4 release - git tag 389-ds-base-1.2.7.4 - Bug 661792 - Valid managed entry config rejected- 1.2.7.3 release - git tag 389-ds-base-1.2.7.3 - Bug 658312 - Invalid free in Managed Entry plug-in - Bug 641944 - Don't normalize non-DN RDN values- 1.2.7.2 release - git tag 389-ds-base-1.2.7.2 - Bug 659456 - Incorrect usage of ber_printf() in winsync code - Bug 658309 - Process escaped characters in managed entry mappings - Bug 197886 - Initialize return value for UUID generation code - Bug 658312 - Allow mapped attribute types to be quoted - Bug 197886 - Avoid overflow of UUID generator- last commit had bogus commit log- 1.2.7.1 release - git tag 389-ds-base-1.2.7.1 - Bug 656515 - Allow Name and Optional UID syntax for grouping attributes - Bug 656392 - Remove calls to ber_err_print() - Bug 625950 - hash nsslapd-rootpw changes in audit log- 1.2.7 release - git tag 389-ds-base-1.2.7- Bug 648949 - Merge dirsrv and dirsrv-admin policy modules into base policy- 1.2.7.a5 release - git tag 389-ds-base-1.2.7.a5 - Bug 643979 - Strange byte sequence for attribute with no values (nsslapd-ref erral) - Bug 635009 - Add one-way AD sync capability - Bug 572018 - Upgrading from 1.2.5 to 1.2.6.a2 deletes userRoot - put replication config entries in separate file - Bug 567282 - server can not abandon searchRequest of "simple paged results" - Bug 329751 - "nested" filtered roles searches candidates more than needed - Bug 521088 - DNA should check ACLs before getting a value from the range- 1.2.7.a4 release - git tag 389-ds-base-1.2.7.a4 - Bug 647932 - multiple memberOf configuration adding memberOf where there is no member - Bug 491733 - dbtest crashes - Bug 606545 - core schema should include numSubordinates - Bug 638773 - permissions too loose on pid and lock files - Bug 189985 - Improve attribute uniqueness error message - Bug 619623 - attr-unique-plugin ignores requiredObjectClass on modrdn operat ions - Bug 619633 - Make attribute uniqueness obey requiredObjectClass- 1.2.7.a3 release - a2 was never released - this is a rebuild to pick up - Bug 644608 - RHDS 8.1->8.2 upgrade fails to properly migrate ACIs - Adding the ancestorid fix code to ##upgradednformat.pl.- 1.2.7.a3 release - a2 was never released - Bug 644608 - RHDS 8.1->8.2 upgrade fails to properly migrate ACIs - Bug 629681 - Retro Changelog trimming does not behave as expected - Bug 645061 - Upgrade: 06inetorgperson.ldif and 05rfc4524.ldif - are not upgraded in the server instance schema dir- 1.2.7.a2 release - a1 was the OpenLDAP testday release - git tag 389-ds-base-1.2.7.a2 - added openldap support on platforms that use openldap with moznss - for crypto (F-14 and later) - many bug fixes - Account Policy Plugin (keep track of last login, disable old accounts)- added openldap support- bump rel to rebuild again- bump rel to rebuild- This is the 1.2.6.1 release - git tag 389-ds-base-1.2.6.1 - Bug 634561 - Server crushes when using Windows Sync Agreement - Bug 635987 - Incorrect sub scope search result with ACL containing ldap:///self - Bug 612264 - ACI issue with (targetattr='userPassword') - Bug 606920 - anonymous resource limit- nstimelimit - also applied to "cn=directory manager" - Bug 631862 - crash - delete entries not in cache + referint- This is the final 1.2.6 release- 1.2.6 release candidate 7 - git tag 389-ds-base-1.2.6.rc7 - Bug 621928 - Unable to enable replica (rdn problem?) on 1.2.6 rc6- 1.2.6 release candidate 6 - git tag 389-ds-base-1.2.6.rc6 - Bug 617013 - repl-monitor.pl use cpu upto 90% - Bug 616618 - 389 v1.2.5 accepts 2 identical entries with different DN formats - Bug 547503 - replication broken again, with 389 MMR replication and TCP errors - Bug 613833 - Allow dirsrv_t to bind to rpc ports - Bug 612242 - membership change on DS does not show on AD - Bug 617629 - Missing aliases in new schema files - Bug 619595 - Upgrading sub suffix under non-normalized suffix disappears - Bug 616608 - SIGBUS in RDN index reads on platforms with strict alignments - Bug 617862 - Replication: Unable to delete tombstone errors - Bug 594745 - Get rid of dirsrv_lib_t label- make selinux-devel explicit Require the base package in order - to comply with Fedora Licensing Guidelines- 1.2.6 release candidate 3 - git tag 389-ds-base-1.2.6.rc3 - Bug 603942 - null deref in _ger_parse_control() for subjectdn - 609256 - Selinux: pwdhash fails if called via Admin Server CGI - 578296 - Attribute type entrydn needs to be added when subtree rename switch is on - 605827 - In-place upgrade: upgrade dn format should not run in setup-ds-admin.pl - Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll - Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll - 606920 - anonymous resource limit - nstimelimit - also applied to "cn=directory manager"- 1.2.6 release candidate 2- install replication session plugin header with devel package- 1.2.6 release candidate 1- Mass rebuild with perl-5.12.0- 1.2.6.a4 release- 1.2.6.a3 release - add managed entries plug-in - many bug fixes - moved selinux subpackage into base package- rebuild for icu 4.4- 1.2.6.a2 release - add support for matching rules - many bug fixes- 1.2.6.a1 release - Added SELinux policy and subpackages- 1.2.5 final release- 1.2.5.rc4 release- 1.2.5.rc3 release- 1.2.5.rc2 release- 1.2.5.rc1 release- 1.2.5.a1 release- 1.2.4 release - resolves bug 221905 - added support for Salted MD5 (SMD5) passwords - primarily for migration - resolves bug 529258 - Make upgrade remove obsolete schema from 99user.ldif- 1.2.3 release - added template-initconfig to %files - %posttrans now runs update to update the server instances - servers are shutdown, then restarted if running before install - scriptlets mostly use lua now to pass data among scriptlet phases- rebuild with new openssl to fix dependencies- backed out - added template-initconfig to %files - this change is for the next major release - bump version to 1.2.2 - fix reopened 509472 db2index all does not reindex all the db backends correctly - fix 518520 - pre hashed salted passwords do not work - see https://bugzilla.redhat.com/show_bug.cgi?id=518519 for the list of - bugs fixed in 1.2.2- rebuilt with new openssl- added template-initconfig to %files- added BuildRequires pcre- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- change name to 389 - change version to 1.2.1 - added initial support for numeric string syntax - added initial support for syntax validation - added initial support for paged results including sorting- final release 1.2.0 - Resolves: bug 475338 - LOG: the intenal type of maxlogsize, maxdiskspace and minfreespace should be 64-bit integer - Resolves: bug 496836 - SNMP ldap-agent on Solaris: Unable to open semaphore for server: 389 - CVS tag: FedoraDirSvr_1_2_0 FedoraDirSvr_1_2_0_20090428- re-enable ppc builds- exclude ppc builds - needs extensive porting work- new release 1.2.0 - Made devel package depend on mozldap-devel - only create run dir if it does not exist - CVS tag: FedoraDirSvr_1_2_0_RC1 FedoraDirSvr_1_2_0_RC1_20090330- added db4-utils to Requires for verify-db.pl- Enabled LDAPI autobind- updated update to patch bug463991-bdb47.patch- updated patch bug463991-bdb47.patch- added patch bug463991-bdb47.patch - make ds work with bdb 4.7- rolled back bogus winsync memory leak fix- winsync api improvements for modify operations- This is the 1.1.2 release. The bugs fixed can be found here - https://bugzilla.redhat.com/showdependencytree.cgi?id=452721 - Added winsync-plugin.h to the devel subpackage- bump rev to rebuild and pick up new version of ICU- 1.1.1 release candidate - several bug fixes- fix bugzilla 439829 - patch to allow working with NSS 3.11.99 and later- add patch to allow server to work with NSS 3.11.99 and later - do NSS_Init after fork but before detaching from console- add Requires for versioned perl (libperl.so)- previous fix for 434403 used the wrong patch - this is the right one- Resolves bug 434403 - GCC 4.3 build fails - Rolled new source tarball which includes Nathan's fix for the struct ucred - NOTE: Change version back to 1.1.1 for next release - this release was pulled from CVS tag FedoraDirSvr110_gcc43- Autorebuild for GCC 4.3- This is the GA release of Fedora DS 1.1 - Removed version numbers for BuildRequires and Requires - Added full URL to source tarball- Rebuild for deps- This is the beta2 release - new file added to package - /etc/sysconfig/dirsrv - for setting - daemon environment as is usual in other linux daemons- fix build breakage due to open() - mock could not find BuildRequires: db4-devel >= 4.2.52 - mock works if >= version is removed - it correctly finds db4.6- Change pathnames to use the pkgname macro which is dirsrv - get rid of cvsdate in source name- Added Requires for perldap, cyrus sasl plugins - Removed template-migrate* files - Added perl module directory - Removed install.inf - setup-ds.pl can now easily generate one- added requires for mozldap-tools- update to latest sources - added migrateTo11 to allow migrating instances from 1.0.x to 1.1 - ldapi support - fixed pam passthru plugin ENTRY method- Renamed package to fedora-ds-base, but keep names of paths/files/services the same - use the shortname macro (fedora-ds) for names of paths, files, and services instead - of name, so that way we can continue to use e.g. /etc/fedora-ds instead of /etc/fedora-ds-base - updated to latest sources- More cleanup suggested by Dennis Gilmore - This is the fedora extras candidate based on cvs tag FedoraDirSvr110a1- latest sources - added init scripts - use /etc as instconfigdir- latest sources - moved all executables to _bindir- latest sources - added /var/tmp/fedora-ds to dirs- added logconv.pl - added slapi-plugin.h to devel package - added explicit dirs for /var/log/fedora-ds et. al.- just move all .so files into the base package from the devel package- Move the plugin *.so files into the main package instead of the devel - package because they are loaded directly by name via dlopen- Move the script-templates directory to datadir/fedora-ds- change mozldap to mozldap6- remove . from cvsdate define- Having a problem building in Brew - may be Release format- Changed version to 1.1.0 and added Release 1.el4.cvs20070119 - merged in changes from Fedora Extras candidate spec file- Bump component versions (nspr, nss, svrcore, mozldap) to their latest - remove unneeded patches- update to a cvs snapshot - fedorafy the spec - create -devel subpackage - apply a patch to use mozldap not mozldap6 - apply a patch to allow --prefix to work correctly- Fixed the problem where the server would crash upon shutdown in dblayer - due to a race condition among the database housekeeping threads - Fix a problem with normalized absolute paths for db directories- Touch all of the ldap/admin/src/scripts/*.in files so that they - will be newer than their corresponding script template files, so - that make will rebuild them.- Chown new schema files when copying during instance creation- Configure will get ldapsdk_bindir from pkg-config, or $libdir/mozldap6- use eval to sed ./configure into ../configure- jump through hoops to be able to run ../configure- Need to make built dir in setup section- The template scripts needed to use @libdir@ instead of hardcoding - /usr/lib - Use make DESTDIR=$RPM_BUILD_ROOT install instead of % makeinstall - do the actual build in a "built" subdirectory, until we remove - the old script templates- Make replication plugin link with libdb- Have make define LIBDIR, BINDIR, etc. for C code to use - especially for create_instance.h- Forgot to checkin new config.h.in for AC_CONFIG_HEADERS- Add perldap as a Requires; update sources- Fix ds_newinst.pl - Remove obsolete #defines- Update sources; rebuild to populate brew yum repo with dirsec-nss- Update sources- initial revision/bin/sh/bin/sh/bin/sh389-ds-base !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYY[\\^_`abcdefghijklmnpqrstuvwxyz{|}~      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~ 1.3.10.2-13.el7_91.3.10.2-13.el7_91.3.10.2-13.el7_90 1.3.7.10  !dirsrvconfigcertmap.confslapd-collations.conftemplate-initconfigschema99user.ldifdirsrvdirsrv.systemddirsrv.target.wantscl-dumpcl-dump.pldbgen.pldbscands-logpipe.pyds-replcheckdsktuneinfaddldcltldiflogconv.plmigratecredmmldifpwdhashreadnsstaterepl-monitorrepl-monitor.plrsearch70-dirsrv.confsystemdirsrv.targetdirsrv@.serviceperlDSCreate.pmDSDialogs.pmDSMigration.pmDSUpdate.pmDSUpdateDialogs.pmDSUtil.pmDialog.pmDialogManager.pmFileConn.pmInf.pmMigration.pmResource.pmSetup.pmSetupDialogs.pmSetupLog.pmpluginslibacctpolicy-plugin.solibacctusability-plugin.solibacl-plugin.solibaddn-plugin.solibattr-unique-plugin.solibautomember-plugin.solibback-ldbm.solibbitwise-plugin.solibchainingdb-plugin.solibcollation-plugin.solibcontentsync-plugin.solibcos-plugin.solibderef-plugin.solibdistrib-plugin.solibdna-plugin.solibhttp-client-plugin.soliblinkedattrs-plugin.solibmanagedentries-plugin.solibmemberof-plugin.solibpam-passthru-plugin.solibpassthru-plugin.solibpbe-plugin.solibposix-winsync-plugin.solibpwdstorage-plugin.solibreferint-plugin.solibreplication-plugin.solibretrocl-plugin.solibroles-plugin.solibrootdn-access-plugin.solibschemareload-plugin.solibstatechange-plugin.solibsyntax-plugin.solibusn-plugin.solibviews-plugin.solibwhoami-plugin.sopythonfailedbinds.pyfailedbinds.pycfailedbinds.pyologregex.pylogregex.pyclogregex.pyobak2dbbak2db.plcleanallruv.pldb2bakdb2bak.pldb2indexdb2index.pldb2ldifdb2ldif.pldbmon.shdbverifydn2rdnds_selinux_enabledds_selinux_port_queryds_systemd_ask_password_aclfixup-linkedattrs.plfixup-memberof.plldif2dbldif2db.plldif2ldapmigrate-ds.plmonitorns-accountstatus.plns-activate.plns-inactivate.plns-newpwpolicy.plns-slapdremove-ds.plrestart-dirsrvrestoreconfigsaveconfigschema-reload.plsetup-ds.plstart-dirsrvstatus-dirsrvstop-dirsrvsuffix2instancesyntax-validate.plupgradedbupgradednformatusn-tombstone-cleanup.plverify-db.plvlvindexdirsrvdata10rfc2307bis.ldif60changelog.ldif60inetmail.ldif60kerberos.ldif60krb5kdc.ldif60nis.ldif60qmail.ldif60radius.ldif60rfc4876.ldif60samba.ldif60samba3.ldif60sendmail.ldifAce.ldifDSSharedLibEuropean.ldifEurosuffix.ldifExample-roles.ldifExample-views.ldifExample.ldifdbgen-FamilyNamesdbgen-GivenNamesdbgen-OrgUnitstemplate-baseacis.ldiftemplate-country.ldiftemplate-domain.ldiftemplate-dse-minimal.ldiftemplate-dse.ldiftemplate-ldapi-autobind.ldiftemplate-ldapi-default.ldiftemplate-ldapi.ldiftemplate-locality.ldiftemplate-org.ldiftemplate-orgunit.ldiftemplate-sasl.ldiftemplate-state.ldiftemplate-suffix-db.ldiftemplate.ldifinfdefaults.infdscreate.mapdsorgentries.mapdsupdate.mapslapd.infmibsredhat-directory.mibpropertiesmigrate-ds.resns-slapd.propertiessetup-ds.resschema00core.ldif01core389.ldif02common.ldif05rfc2927.ldif05rfc4523.ldif05rfc4524.ldif06inetorgperson.ldif10automember-plugin.ldif10dna-plugin.ldif10mep-plugin.ldif10rfc2307.ldif20subscriber.ldif25java-object.ldif28pilot.ldif30ns-common.ldif50ns-admin.ldif50ns-certificate.ldif50ns-directory.ldif50ns-mail.ldif50ns-value.ldif50ns-web.ldif60acctpolicy.ldif60autofs.ldif60eduperson.ldif60mozilla.ldif60nss-ldap.ldif60pam-plugin.ldif60posix-winsync-plugin.ldif60pureftpd.ldif60rfc2739.ldif60rfc3712.ldif60sabayon.ldif60sudo.ldif60trust.ldifscript-templatestemplate-bak2dbtemplate-bak2db.pltemplate-cleanallruv.pltemplate-db2baktemplate-db2bak.pltemplate-db2indextemplate-db2index.pltemplate-db2ldiftemplate-db2ldif.pltemplate-dbverifytemplate-dn2rdntemplate-fixup-linkedattrs.pltemplate-fixup-memberof.pltemplate-fixup-memberuid.pltemplate-ldif2dbtemplate-ldif2db.pltemplate-ldif2ldaptemplate-monitortemplate-ns-accountstatus.pltemplate-ns-activate.pltemplate-ns-inactivate.pltemplate-ns-newpwpolicy.pltemplate-restart-slapdtemplate-restoreconfigtemplate-saveconfigtemplate-schema-reload.pltemplate-start-slapdtemplate-stop-slapdtemplate-suffix2instancetemplate-syntax-validate.pltemplate-upgradednformattemplate-usn-tombstone-cleanup.pltemplate-verify-db.pltemplate-vlvindexupdates10cleanupldapi.pl10delautodnsuffix.pl10fixrundir.pl20betxn.pl50AES-pbe-plugin.ldif50acctusabilityplugin.ldif50addchainingsaslpwroles.ldif50automemberplugin.ldif50bitstringsyntaxplugin.ldif50contentsync.ldif50cryptpwdstorageplugin.ldif50deliverymethodsyntaxplugin.ldif50derefplugin.ldif50disableurisyntaxplugin.ldif50enhancedguidesyntaxplugin.ldif50entryusnindex.ldif50faxnumbersyntaxplugin.ldif50faxsyntaxplugin.ldif50fixNsState.pl50guidesyntaxplugin.ldif50linkedattrsplugin.ldif50managedentriesplugin.ldif50memberofindex.ldif50memberofplugin.ldif50nameuidsyntaxplugin.ldif50nstombstonecsn.ldif50numericstringsyntaxplugin.ldif50pbkdf2pwdstorageplugin.ldif50printablestringsyntaxplugin.ldif50refintprecedence.ldif50retroclprecedence.ldif50rootdnaccesscontrolplugin.ldif50schemareloadplugin.ldif50smd5pwdstorageplugin.ldif50syntaxvalidplugin.ldif50targetuniqueid.ldif50teletexterminalidsyntaxplugin.ldif50telexnumbersyntaxplugin.ldif50updateconfig.ldif50usnplugin.ldif52updateAESplugin.pl60removeLegacyReplication.ldif60upgradeconfigfiles.pl60upgradeschemafiles.pl70upgradefromldif.pl80upgradednformat.pl81changelog.pl82targetuniqueidindex.pl90subtreerename.pl91reindex.pl91subtreereindex.pldnaplugindepends.ldifexampleupdate.ldifexampleupdate.plexampleupdate.sh389-ds-base-1.3.10.2LICENSELICENSE.GPLv3+LICENSE.opensslusrsbinns-slapd-gdb.pycl-dump.1.gzdbgen.pl.1.gzdbscan.1.gzds-logpipe.py.1.gzds-replcheck.1.gzdsktune.1.gzinfadd.1.gzldclt.1.gzldif.1.gzlogconv.pl.1.gzmigratecred.1.gzmmldif.1.gzpwdhash.1.gzreadnsstate.1.gzrepl-monitor.1.gzrsearch.1.gzbak2db.8.gzbak2db.pl.8.gzcleanallruv.pl.8.gzdb2bak.8.gzdb2bak.pl.8.gzdb2index.8.gzdb2index.pl.8.gzdb2ldif.8.gzdb2ldif.pl.8.gzdbmon.sh.8.gzdbverify.8.gzdn2rdn.8.gzfixup-linkedattrs.pl.8.gzfixup-memberof.pl.8.gzldif2db.8.gzldif2db.pl.8.gzldif2ldap.8.gzmigrate-ds.pl.8.gzmonitor.8.gzns-accountstatus.pl.8.gzns-activate.pl.8.gzns-inactivate.pl.8.gzns-newpwpolicy.pl.8.gzns-slapd.8.gzremove-ds.pl.8.gzrestart-dirsrv.8.gzrestoreconfig.8.gzsaveconfig.8.gzschema-reload.pl.8.gzsetup-ds.pl.8.gzstart-dirsrv.8.gzstatus-dirsrv.8.gzstop-dirsrv.8.gzsuffix2instance.8.gzsyntax-validate.pl.8.gzupgradedb.8.gzupgradednformat.8.gzusn-tombstone-cleanup.pl.8.gzverify-db.pl.8.gzvlvindex.8.gzdirsrvdirsrvdirsrv/etc//etc/dirsrv//etc/dirsrv/config//etc/dirsrv/schema//etc/sysconfig//etc/systemd/system//usr/bin//usr/lib/sysctl.d//usr/lib/systemd//usr/lib/systemd/system//usr/lib64/dirsrv//usr/lib64/dirsrv/perl//usr/lib64/dirsrv/plugins//usr/lib64/dirsrv/python//usr/sbin//usr/share//usr/share/dirsrv//usr/share/dirsrv/data//usr/share/dirsrv/inf//usr/share/dirsrv/mibs//usr/share/dirsrv/properties//usr/share/dirsrv/schema//usr/share/dirsrv/script-templates//usr/share/dirsrv/updates//usr/share/doc//usr/share/doc/389-ds-base-1.3.10.2//usr/share/gdb/auto-load//usr/share/gdb/auto-load/usr//usr/share/gdb/auto-load/usr/sbin//usr/share/man/man1//usr/share/man/man8//var/lib//var/lock//var/log/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -m64 -mtune=genericcpioxz2x86_64-redhat-linux-gnu   !"#$%&'()*+,-./012333345556657555555555555588899888888888888888888888888899888888888888898888888889directoryASCII textPOSIX shell script, ASCII text executablePerl script, ASCII text executablePerl script, ASCII text executable, with very long linesELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=6ed7f2536112d40a1e53b4d35f878cbdcf556a46, strippedPython script, ASCII text executableELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=e80fbc1b5be499f3bb1881f13d676e0169804dcf, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=2055d3bce61f4694507f654d9c9b3ac71360871f, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=cb9abf53f96742e0401e6a0f469af70740cf760a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=26f88f1668c75a057ff2a9139b328d55ede90232, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=a3afc10c7c1da7fc67ce4107b08954c2be022bba, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=ca2504740952ca692a8e73c260bce92821cb5588, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=0f4b9e31f712f7ec683b0e77faeeabcb5213e6bf, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=2d5685ffdf40836b0555fcfe434f92f3aba78c1d, strippedPerl5 module source textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e37666aeae5c3e562fb3a953b1b4f7f0bb71e7cc, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9079d8e3e71d221b39b37ef1551655ee80f7184f, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1be60d4e843fc6076084ff52d6c30537e2f6cd93, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ff3bbddcf514c1efec4dfb257db2ae78b98b8ef9, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3d487c81dfb7aedfd8c0ccf14ac26888d7cebc3a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=42944343100290c91c7fc9d3a7e8c94e07c7a5a4, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f0a493e9acf68555a9579bdaafee7cfe07f167ef, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0df8f64351aa8969dee00b6fb977b2a9f7016106, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f604ba4c47fac7e26814e477f0535d905031ca27, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=41812dad019e3b8c1d082ed1680a44e0a27f0eac, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=40612d8b0c4fef5abef696956aa35af0be7eaa6b, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=69a745dbe1c92d7781a10c55744a9156981e085e, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=65bfc0f457fb2e4a938e7f3b850703ca7e59b7db, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7bdc0d0b5bebaf6ae7f516bf89190eb12b44ffd2, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a8752eef8e9a62485f0e6ac72a11ea4bf7912bf4, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0f3b9a4d33d79cbc6d15f9f7deab762b3a846724, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=cc5db8dbae459156bc0096fd721ad96d87bec9f8, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=dd9c34b752d42d535141a26660ce636fead33f44, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5c95c4078eb6fe13cf03b3c049228d613ecc78de, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=30742745d05d6a8f8b309f76c035a33f19e71e95, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8d02aa22a45c554a2e48504ce8dc57e3306339f5, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=68d9ea49fafcda23ff4288609196746d41102905, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5c9cd72ed748946c7e4a9995b37bae1bd5dd0887, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a5b019957ea7e2afd65d10c49b9b63bcc9dcedbc, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=86ddca3da32a60c27389f62cdab3ddd6938c06bd, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b3e4ff947770c4664cf2a2f85cab57c53ccbe414, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c0912e3059336acaccf048e9c89cf65f9cc287c6, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3b3a942144bb244d2ee008da5ccb8ccb87226029, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d617b3b9c205cff2d5e13aaeb47dfe834f5e7c99, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=428dd044aeca0c017f55759d03e1d82acfecd9cf, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f77bde2e19dd5d7fc41a02aabc824ecc8ecd8fd5, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6c9183e79c8b1fd4fe837e1fc5bed36f99c22d99, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1e9be00b42f568d10360d1241de2476b05c6ba67, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5d6e16de31401ff4c95e160493362bc163e04e2f, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c48c0d1fa91bcb89274c2d3714f2e3894a891299, strippedpython 2.7 byte-compiledELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.32, BuildID[sha1]=933dd0142f942889e0d2e8c0d9734445792a49bb, strippedASCII text, with very long linesUTF-8 Unicode textHTML document, ASCII texttroff or preprocessor input, ASCII text (gzip compressed data, from Unix, max compression)troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, from Unix, max compression)  /EUay#&13@GKd|4Rk5Qj)BZr =CDEFITUVWX[\]`cdehklopstxyz}      !!# RR^RbRdReRgRR]RRRRRRRCR4R5R)RRRRRRRRRRRCRRRRRRRCR4R5R)RR=R,R7RRRRRRCR4R5R)RR,R;R&R$R8R@R#R"RR3R6RAR9RCRRRRRRR0R;R#R"RR3R9R'RCR&R$R5\}\a mkȞ(B5X-I_g-}D7 IؖFS]åۗ&#oPH.S~v c9g7<[oAr8e\x̥̩{ Lbbm_fvh=̘'3ʶr8vq.9螆=-kؤݥucAvWڏ X^.wZnYf=.f1ل{l+G(0􁚔Q/n᝙RQs3 FmWw-#TO ^ <#C MTx @Oς ɯHL3j^&W ؾD4Nd^lP)HV:4DlIS3_/{X`xgZ94Oun+ɾGZ$.޽7+kSp}ɐ25KL7[GlS[n;TA/t< k?XH."ϬkY{WUz̓8ͭif K+BH ī CC#kK 랴~k{3iQ#JBݕQqʵQT'Q;b?c$э]6)vv>ߥ>Z@YPU| #.EPTx5[m{-ONr3LT˓42o۩ رӃ0O7D! 525#V85amJ\? w@d{Zd a Ih`K*1 R4/s1xA%/]:=05(B9&kYV0ۂP*N9 )iG"N(>[`s?ꭑ%uU"-iSv"иI٫_F/u*w/'"y/л.1!A Q&MRRR}.eF J(Jݦ lmP j{pTߦfE(T7*Xau#:‵+>i' [_>Q_4*w 5t0E] >rHw,=KA..væB<\ʄL;l};JSGqM=؞X;8vcwjl˛f']%D:ƑZ t/ ܶUaϗ; 4 * `Ǧy:侔c!yh\1]A3Y~VZȏn+&,ȼi6)zus*e_'[Y3NQA]3ԡX<̈9V rfEKTL/Cd7Wj^}+s8Íww N?&WbQc%?>VA(^:C͕}]XSU!9:ͧz(&;q$;Co(9['0 *6TA8sxvxO-T$^8RjXe< ™^J>#g@^7()xLjT\#) <>^%ch\3PǃK~^T]Tȡ S䜎A5ִ).PTruJ_rG7+:FUARij K! kb3>רe*yc@?'gs]+GfqzA5mu-Cz~ٝv&vJ֔ 5Zd6D!Jλ, 05 vi6Cmd}l4J&KvaT&oWWbKٚ[W[w0x%|x诣/ &uvG'md)-Jgpl-8XdotvC 6rW-Mfo \(B$UCY@P|(Hi*׊+pBC !H#0eP+lH cTg7xyhRo ?o4Qe"`SO܋m}+RQ:jr®ڿ^Hv4,#ωu/"'K˪ku61MɜsƝ+sW$ZL ] mIu4iY 9Ց(πLǩ9/*?vXNӐC?|\tEgm66T,͎!t+5xYDLI>| XJayZ8ũxq u—6#L*.쌠C{Slj/47VJyw G`Oh؆Cd<p3@{"F{ĊIEQp՞,g6k?VZ泋nU/"4oG[y"̟^=ah9D+ٰ7F? |BŨ/rWb8Q>AI: UICڎpPXv=jO9;9Ra~'9 _)d1 ,>(,@odxPǕhj^3.)0!PĝKFIl{$) J(c`6@o%h@`2MLN|`[ CRY @5'F:bSRDom_vB8U|B8b|:~敳ծ]olp~"ڤ ^%`U΢nd⃢4K S[c!fjyv toLgǻfn%P}w;PAyh!A;9+mN.ǨEk Iܓ7C@W@ՉiYv9RnjSG4ΊuB\)) :\HE(/cݬx4T*xGEyUS n/d=-~HA`q$(ז11!6#1SR|_}]Bן5vÀ*Eb@Ow~mkc*V5.zD90 ʬa򈨤((%`Nhm<;1ڶՌޛ}ߡ~LtǸTYx4P N?^GN3bAW->ބG$㞪7s%$-UVJ+GO3þvt ̲}s^$^pd?̸V'xZugQIcXw~c-xpɻ.XiCl*{dXl0WYqN+#wh=͘E09:iƀ.-xϠ40-sE} Rov,(T. dƒ)7f="9A|FI)bku귬L @xV xt`Y$UnmW~}Ւ@tj< 0RK̴oiͿWbЁ zpZǣ%>"0o`2R2RƲh.hd ˍq?Ȩqc~hqyDh@>riMRWl x9ڼvJ'"M{Л]G!~U'+l\&흅wBm)Ӂd>9 IJ%z4$9?fXF<<`5v2=) :ue)^c+K4`3~6̟rjJCCH1ڬ{p/T8'K-H_ppÊ.-Pml"gy_"tX'L$LFYO? P @D5o'  y&v)满ІrN:iճՀG+SP'{ pnyijM1ͧ2yF[%BËًY%e3 1E"s}4 }U J'['GZ:1 OnQ>rK| Z bFT)<\d)ˉ. qAa^hj5;8cHh\a;v͢w caHB)#? vM64?Jj ;M\j Q{ /59)A^7N̶cbUp[.;f"DZJK\\yQ9yWفpsD6^+&N;Y&Qgz>+dH 6u:pnzr&])x;MhG ժW5 Y.[uFEЊ_bۜu3J%?Wvn};2Bا_Q}5 3Y,@*os^`eh:q3(H\(OA^f&ν*"jԌ"]v^w)``-1 :LzV+={_l]5)lB SP$:o 3kNo9l{ye񉁣Eºlť7E2X 6ncĆP~o`x9}B밤ڵ@'7%@$qEUI.% vw=EJnj iETSAI!,38%xn4*Y3XXbL-;<#ؑQ2**κbbګyr] 8aO.aVIn'$UġeOsu8>h]\G,d ۦYF7 k # -6P ڜn?,vPiRlHAv[*헎>|e K ;.|Q3}4 D)O4ffP#ژms8 &\004-#k8nz{G͍QgO=J$b؉=0s#YP\MA,̆+ߘn"Cq~ 5?Kǃ.8R[Rh!݈k"iۻs2؃$bH>jDq9lZ}l;4R3:PLٮRS^HIRY__\m{.@ zcjb z?ձWd}}cx?_ &` "i8ýfzG\V"kK3v.i`xhd $'pg 3I7ar*>||y*&MLe\%OXOP DZIFO.Tn#>*Qdj&m'{"+~tz+*^.Wt<ֈA8>|qlS]x(K@U1"G&kJ!5B-2.fggժRn(@ `$ڒl:(^ޔ|$;~~0j jdwÙpmy\Vl${ )8. BXE=/\ 3Ze3W%a!4/#я %4Q 9a<}z A(! ;0OoU5Wή8Umݻs$6'݊GaǒuԯݲVD3(k] T'OJm9PQ֣iPS9 #r7DdFBϤN*K];Z\+R kT<&SQ寛ܙܰX9.*aPAdٶ0,8~Ti+CT?hgĵMqml+˃IBM(7Β.oŻ瑜֜81prJ Ba-˗;o,À%>4?GBy9/1.#_ÉU־ʽGFݭG[)ŠS$b hDGOkH'xR/li|Jvրe/¶W4tׂ?}y&S_ZGòxzh.x~#288 #7{Y|7Y߆r(nu1w#ޠ|7))3]/hcG69Ke#yTblpsTǫ5kƇyw6?c\G2aӎl.$>=8SWG9O5q"Tnӎ[YUNKt6Kl *pU3"G+iD{:$6G #T~k ! SwfnX C@ ^U]-\ +d@\Կz-Yma l"{)"~6HD^/gEyt=?/"tɼGKw1c.AM"z젉~CKx%E܂L%snާȹ;~k(QdSN]xZ7Pǫq\" IHA7t}681& %|#puYS.'B;tD;t`❺|3ï3e߄>th,o<])PHBDʳPY#7wZ8W 4gjqYhtw=Ƴ.W1R܎N!XEeO?>,I}R÷I\ݹp?z}zYTA@5Eoe`p&>0Czޣo8\?T>GrqpEFm&Dur-i㉨ox+U]4~)jm=7`KKP X1pr{{l;૚Z­ Ky a `Tyǣ\Ǩ'F: i2n;NXj)8#Y(eȉE};nLJ?'J2 Ƣ ~k&'/bqN{q;tbPp"`}RTYk=-i ITXm/d4( ]>L伂|&ʽZ7sóŰ2խgce4ZP+f {126):c/㌩$uσ iDɃ0䢊%sh}dS%S 6ӷ*-d `g!>%da4AiCءfSS= %s[BxfF,_Z*$@޸v Ģe|׸U͡kc D=B] lx-ڮ:Oͱ9U@xa7,wnبa" \3)Z#u4N k>13  !x7ȨnO*C2}ޗ{:lY! |j{v?9i wj *D _㇀#,S?hŠV̯}SfGxR+x6MJ'XsV&)K82%9]+U7 |rzWMJGKAz™+(+lƉ9 w:l<ᮯ+qxؙE4KrWtv=2o67~ύRh8/~c!LW $B,#uDNBִbFK>ϒ$j,]@L7?_{r,S[ki@89h%D_>"yg"=jmTٕWktZqʊNb?P-1, *=6 62Kܭ z k|&g;!{w"E|TmZB<1"Na0Jt YeHG8o U_oJAzRf}>#򮁎9PD܃*a)yP j,}hK}!2a,tʨ y!m =PBhmg*ś2p USZ ,VcjAt#g<*9h8ȿeJYŇ#͟F/E? +@Al8Ok/q/\(S.2PRDiKp\BYeX N7XگI؅0yQߊ=(,z|(p@rκv842tMy&$_±E \C%R9tA pa.] X\e Qw:^\򥉜SѦ@~kO+Z'92ĈKX5F!&<'},|Y\@Q &JFx`+ԇV -l+Pٺ5;nbzH|>DG̡\?۠7@ [l>l$FʼU 0]9^ά#c?:tfH>yνf) &` *74t-vBd(ni,L^@ԛP :h}'NN#}?rxH+^N ?)ܽfR{AOFC7 ^0 ԴYc,/f5i+Y}/p&2MJi b%$ GvkZsMJ+q}<+&eGv h,c'{RHD2O.MwRdRN([wW86b]LJVpz73nWJ{fDZ-} {\"sҎTnU4Q N" (pr(sa^v~hz\F-?aǭŞ=dg][+4Xe Ӊ. únKgX&|x΂#ٍ/ Y,][d>AY 68v@/{ϥ kPIgM.#8| 2 TzGh-רi .5KAio|Em%k+ʟCkG\q{RC"KExK ceg;7ʾwkglr*qBESu6њF<"ik$FpDocnLR1g(7u{ryrTBdF,2]hL}VTcvR" KI O=<ۇdOKɡ2bͽ(w\ px7ĺ̮(9g}@:E jM50^JjO4 lj ?%\4б#!s0fdF(۬U%[Ջrء#Le@2˗OiE$?_s -%myE 4<aI5-[^|/' ȱS c&p%آ)@ÒnS;(>\PjڹryfpL:7@0'ϬV mf  yOJl41JWCIXM a:m? 0ϥVXgcFb$WrB ZK :鮉V( >|Q-r]noyPI/H>_bѤ KU"ZY- s"w={>OrɶշFPS;8cKMM+&&=6j^H{u„Uq!&Sfd8v2YDutEjQ݊MI9"P1JgRԂHXfZ6"Gʒ;OI)I4\Wgpoyi:zi Tk >Y% %Cb`΃kh'YK+UƅROaXO,њEoőLLѝf [L'g:&:ĵT]g2z`amw {OkCYil|?OTan6>'$v2acMapiA i7/}Ck]{ oEX _Oƾb(.M>$T|Q&"8]r=?Hi?_>E\H>b(Y{dڻ0,~*#]ŽܗWo$+OdF 93S&{Qe^*(#a ` {PY}m{81\J(bd<2Rkkj!&%nYUWRX<|A.&K5~ L ]3zprݽ%(y.kj<݇<]&B!|(T8r0S"х \Orۏ7m'ޑLSpu>^y4ˆ2ܗv iIQն}W K>7% @> 슨OvVRՏ?}{okj3֏vc+:8RU*kgyo'xskKVyQOףGlA$ցPQm))bLvsԙKB-v5wp|;&%X@@0@amy׈mXLbKh19dVoaO:߂+qwV-E`){TL(L r 8l0NMDv؜׫g͗hֹ_-!?6п[+ 7cq~1kT8)-O{dlZtcLL" ej^4qV}jwrvO`lz'?qe;A&_')eeN p Lri Uh!W sON`-i'yxTqFCs⚐fpb]QRxYfӄ DVTjLfvFo䖈%&w*ȗq-FW%.$a(/P걎A7&A1=eGc[Uܢǁ1.9#ѳVTlqDT"9)k$2!; iPnId;VGZlF.$Wrp_"ӕCUŸF2,1>I9qctLE n@bWcdQ86! wݒ_UQ )]e8=._D+h7^wUՉPQ>Ֆ'#ʒu|x^L-J)VI>lqCK%_;UK 儰X|xm?zbK RuL]rrU+!.s ,j>uJÏSd FaUp%@5([E"Eo;29@Kͅ#[z95LzKȲvynȩ11,: T9w=0AM''|& vKu9ޱws+ ԋL_sh*7f|f$!ŏN}WnQԹt%'(ocxV=cmɪ.tBTsq/3C)VȣhbM RYTanceW_==M˄;~簀" $cQ ԣ]NB?KfQNE'JP>dM4iq9(vX_ Rz,<9y F)_ͥYXtuIgi}ᣧٺF9fW}U7V_h ?󻹁{7ŝNWe=ZPyÌ^e!aϧ=,rgֱ:R 1@kݮ]a^a`{IcB.N>W%PjaYbIߢ8g[UspBKPL)XUKOْ.GcK 0Yz!)yT}ZU\9:a%C\>w'6Ne$OAs dᥨx?o-;09-'y% У`l_ȍ[5\}BF `K>̶W$G@4uyJL (_iƕtHM~<>[~#a8}|Vl"Nw $l ͠`H+&,b.2A| |Z$W4{<ց*1,uӣ˷jEC=𚊓M]{Vȳ"kͼ׊@$xGI.@=-Qʛ48ç?B$2 \٦fWPÛ(w惇lmSFr jU!\_4Ѥ*q\alF:w<>d > ,a$U3kZ\6 +Yе#V2@(QȥE" Lv '^\x 합FɦA;[_.VyY[q"wi@f;wD\e/ZM*^ƭhZWos'gv#MHuE1n:v'#>kUwWB)xЈ F !~_Sْ6X:zJ9+1)heXզ4D#;]r3BRfǶ>2nv0 *GnSfEYa` ,>urRH ̳ao4QL'p,qܤq"z6p b钭o8[TJ }7քǩ[:kxOiԼ٠@) 9