エラータID: AXBA:2017-2321:07

2017/10/23 Monday - 13:09
Asianux Server 7 for x86_64

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base
packages include the Lightweight Directory Access Protocol (LDAP) server and
command-line utilities for server administration.

This update fixes the following bugs:

* Previously, multiple worker threads used a single normalized Distinguished Name (DN) cache. Consequently, if multiple clients performed operations on Directory Server, performance decreased. With this update, Directory Server now creates separate normalized DN caches for each worker thread. As a result, performance no longer decreases in the mentioned scenario. (BZ#1486128)

* Previously, subtree and user password policies did not use the same default values as the global password policy. As a consequence, Directory Server incorrectly skipped certain syntax checks. This bug has been fixed. As a result, the password policy features work the same for the global configuration and the subtree and user policies. (BZ#1489693)

* When a Directory Server plug-in runs an internal search, it passes the base search parameter to the core server. Previously, Directory Server did not check if this parameter was valid. As a consequence, if the base search was set to NULL, the core server terminated unexpectedly. The code has been updated. As a result, Directory Server no longer terminates unexpectedly if a plug-in uses an invalid base search parameter. (BZ#1489694)

* Prior to this update, if you created a replication agreement and set the value of the nsds5ReplicEnabled attribute to any value other than on or off, Directory Server terminated unexpectedly. This update fixes the problem. As a result, Directory Server no longer fails when adding an invalid replication agreement. (BZ#1491778)

* Due to a bug, adding or deleting a back end in Directory Server previously failed, and an "Error 53 (UNWILLING_TO_PERFORM)" was displayed. This update fixes the problem. As a result, adding and removing back ends work as expected. (BZ#1492829)

* Previously, Directory Server did not send the expired password control when an expired password had grace logins left. Consequently, clients could not tell the user that the password was expired or how many grace logins were left. The problem has been fixed. As a result, clients can now tell the user if a password is expired and how many grace logins remain. (BZ#1492830)

* Previously, when setting multiple allowed SASL mechanisms in the nsslapd-allowed-sasl-mechanisms attribute, the list was incorrectly truncated. As a result, when the instance shut down, Directory Server wrote the truncated list into the /etc/dirsrv/instance_name/dse.ldif file. This update fixes the problem. As a result, Directory Server stores the complete allowed SASL mechanisms list when you shutdown the service. (BZ#1492833)

* Previously, when using an indirect Class of Service (CoS) together with a local password policy, Directory Server set a flag after reading the password policy CoS. However, this flag was not reset before reading the indirect CoS definitions. As a consequence, Directory Server treated the indirect CoS attributes as operational attributes, and the indirect CoS did not correctly merge virtual attributes. With this update, Directory Server resets the flag, and all CoS definitions work as expected. (BZ#1498958)

Users of 389-ds-base are advised to upgrade to these updated packages, which
fix these bugs. After installing this update, the 389 server service will be
restarted automatically.


Update packages.




  1. 389-ds-base-
    MD5: a1ab456baec40af508fa86c733e93efe
    SHA-256: f3863eb6fe09829ccafb3ae0b98bf4ead6eec84010ecdabd1b44719bd2c23818
    Size: 3.60 MB

Asianux Server 7 for x86_64
  1. 389-ds-base-
    MD5: 3cf7ab1645a9b433681321ddafbf8317
    SHA-256: 6e77ec4d160fdbc88939b0f26602dede93585ab6ab3683c447f4919d27d74831
    Size: 1.70 MB
  2. 389-ds-base-libs-
    MD5: c430128843ba2fbfbdd6e8ff9c0bbfa5
    SHA-256: 14dfb20be4ab4e5ac0cead23572b92aeda263d82aafede1f911da789632ac023
    Size: 678.46 kB