DS 7.1.4



The DS 7.1.4 release fixes the following bug:

  • OPENDJ-8792: Log SSL exceptions as errors instead of warnings


The DS 7.1.3 release fixes the following bugs:

  • OPENDJ-8874: Full replica purge should write CSN information right away

  • OPENDJ-8845: Persistent search entry change notifications cannot be read by JNDI

  • OPENDJ-8815: dsrepl status does not take into account a status of Bad generation id

  • OPENDJ-8779: Improve replica and changelog logging

  • OPENDJ-8727: HTTP embedded listener throws IllegalStateException: Output channel is not set

  • OPENDJ-8698: DS should write config archive files in a crash consistent way

  • OPENDJ-8532: Error running export-ldif offline: "DatabaseConfig.setReadOnly() must be set to false when creating a Database"

  • OPENDJ-8378: dsrepl status shows deleted replication domains

  • OPENDJ-8254: dsbackup restore/list slow to complete with cloud storage


The DS 7.1.2 release fixes the following bugs:

  • OPENDJ-8548: Optimize scoping of indexed searches

  • OPENDJ-8500: IllegalMonitorStateException after subtree read lock timeout when adding an entry

  • OPENDJ-8062: Possible inconsistent state after backup restore

  • OPENDJ-7970: Ensure that DS is crash resilient for all runtime file changes

  • OPENDJ-7816: dsbackup fails when destination is a symbolic link to a real directory

  • OPENDJ-4935: Replication instability and divergence when using high latency disks


The DS 7.1.1 release fixes the following bugs:

  • OPENDJ-7744: dsrepl initialize in a topology with DS7 and DS 5.5 fails if DS7 serverId starts with 0

  • OPENDJ-7755: DS 7.0 replication with older version, CryptoManager failed to import the symmetric key entry

  • OPENDJ-7818: Package based upgrade does not support instances running as non-root

  • OPENDJ-7889: Configuring group-id against DS-only instance requires restart for the change to be reported by monitoring

  • OPENDJ-7971: dsbackup fails when JDB file cleaned

  • OPENDJ-8028: Prometheus monitoring doesn’t interwork with Telegraf

  • OPENDJ-8079: targattrsfilters expression does not work with 2 filters but permits 1 or more than 2 filters

  • OPENDJ-8090: am-identity-store:7.1 setup profile is not functional

  • OPENDJ-8115: -Djavax.net.ssl.trustStore=<value> in OPENDJ_JAVA_ARGS throws NullPointerException

  • OPENDJ-8205: Log message lists an object’s string representation instead of a file name

  • OPENDJ-8226: Support Extract tool ignores non-default changelogDb location when collecting domains.state file

  • OPENDJ-8243: Indexes could cause ldapsearch to return multiple copies of the same entry


The DS 7.1.0 release fixes the following important bugs:

  • OPENDJ-7928: JSON normalization cannot handle nested arrays

  • OPENDJ-7905: Schema replication error after upgrade

  • OPENDJ-7867: NPE if dsbackup bucket name contains underscores

  • OPENDJ-7851: Supportextract tool: clobbers the server.out filehandle when kill -3 is used.

  • OPENDJ-7847: StaticGroup’s objectclass sanity checks are unhelpful

  • OPENDJ-7810: JMX connections are always considered insecure

  • OPENDJ-7761: DS sporadically hangs while reconnecting to an RS

  • OPENDJ-7758: DS 7.0 dsrepl add-local-server-to-pre-7-0-topology: NPE if master-key is in different keystore

  • OPENDJ-7747: ldapmodify display full stack exception on LDIF errors if connection is already established

  • OPENDJ-7737: ConfigurationFramework#initialize0 changes the class loader without clearing the map of registered jar files

  • OPENDJ-7699: Supportextract throws NoSuchElementException when the server.pid file is empty

  • OPENDJ-7689: dsrepl add-local-server-to-pre-7-0-topology does not tolerate separate keystore and truststore

  • OPENDJ-7687: Global Access Control Policy regarding cn=schema is too restrictive

  • OPENDJ-7674: Migrating encrypted changelog files during upgrade fails

  • OPENDJ-7655: Replaying multiple MODIFYDN operations is very slow

  • OPENDJ-7612: replication divergence on CTS in the cloud

  • OPENDJ-7599: Cannot add a pre-encoded password to an entry without an existing password

  • OPENDJ-7554: Windows: Secrets not retrieved from :file command-line arguments

  • OPENDJ-7523: Example plugin and example pwdscheme pom.xml are missing correct revision

  • OPENDJ-7513: Missing subSchemaSubEntry attribute from rootDSE access controls

  • OPENDJ-7481: JSON logs do not contain proxy auth DN

  • OPENDJ-7474: Docker sample README.md provides wrong instructions for running the container

  • OPENDJ-7450: The startswith (sw) operator on indexed JSON attribute is slow

  • OPENDJ-7443: AM Identity Store 7.0 Setup profile missing "push2faEnabled" attribute

  • OPENDJ-7436: Backup to the cloud takes too much time

  • OPENDJ-7322: IndexOutOfBoundsException while configuring max-replication-delay-health-check

  • OPENDJ-7288: LDAPS Handlers "SelectorRunner" thread hangs up in Grizzly SSLUtils.sslEngineUnwrap

  • OPENDJ-5927: Server stuck on a DS trying to reconnect to an RS

Security Advisories

ForgeRock issues security advisories in collaboration with our customers and the open source community to address any security vulnerabilities transparently and rapidly.

ForgeRock’s security advisory policy governs the process on how security issues are submitted, received, and evaluated as well as the timeline for the issuance of security advisories and patches.

For details of all the security advisories across ForgeRock products, see Security Advisories in the Knowledge Base library.

Copyright © 2010-2023 ForgeRock, all rights reserved.