Bug 1614501 - Disable nunc-stans by default
Summary: Disable nunc-stans by default
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: 389-ds-base
Version: 7.4
Hardware: All
OS: Linux
Target Milestone: rc
: ---
Assignee: mreynolds
QA Contact: RHDS QE
Marc Muehlfeld
Depends On:
Blocks: 1614836
TreeView+ depends on / blocked
Reported: 2018-08-09 18:28 UTC by mreynolds
Modified: 2020-09-13 22:13 UTC (History)
8 users (show)

Fixed In Version: 389-ds-base-
Doc Type: Bug Fix
Doc Text:
The default of the "nsslapd-enable-nunc-stans" parameter has been changed to "off" Previously, the nucn-stans framework was enabled by default in Directory Server, but the framework is not stable. As a consequence, deadlocks and file descriptor leaks could occur. This update changes the default value of the "nsslapd-enable-nunc-stans" parameter to "off". As a result, Directory Server is now stable.
Clone Of:
: 1614836 (view as bug list)
Last Closed: 2018-10-30 10:15:00 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Github 389ds 389-ds-base issues 2952 0 None None None 2020-09-13 22:13:19 UTC
Red Hat Product Errata RHSA-2018:3127 0 None None None 2018-10-30 10:16:12 UTC

Description mreynolds 2018-08-09 18:28:54 UTC
This bug is created as a clone of upstream ticket:

#### Issue Description

Currently nunc-stans is not stable, and we need to turn if off by default until the FD leak and deadlock is resolved.

Comment 4 Viktor Ashirov 2018-08-12 18:12:46 UTC
Build tested: 389-ds-base-

On a fresh instance:
[root@server ds]# ldapsearch -xLLL -D cn=Directory\ Manager -w password -b cn=config -s base nsslapd-enable-nunc-stans
dn: cn=config
nsslapd-enable-nunc-stans: off

[root@server ds]# pstack $(pidof ns-slapd) | grep nunc-stans -c

Nunc-stans is disabled by default, marking as VERIFIED.

Comment 7 errata-xmlrpc 2018-10-30 10:15:00 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.