Fixed an error when after granting a role with GRANT OPTION you cannot grant it father.
Added a check if a generator and exception exists in granting them privileges
Added a check if a role exists while we grant a privilege to it
Fixed an error of getting provider's name in CryptoAPI plugin
Added cryptoplugin errors handling and print a list of available providers in mint utility
Fixed help of mint utility
Now a config file fbjava.yaml is saved while update
Now RedDatabase uses jaybird from fbjava
Now demon is not started after installation for better compatibility with containers
Fixed crash by using "OPTIMIZE FOR FIRST ROWS"
Fixed function LDAP_ATTR with work with userCertificate
Fixed procedure execution owned by SYSDBA
Fixed crash in multifactor authentication while using hashgen without options
Now config option ServerPrivatePin is used by checking server certificate
Fixed password set time reset while user creating or password changing
Fixed handling uncrypted "legacy" passwords
Fixed an error or changing muptifactor password
Fixed check of RDB$ADMIN role if it's granted by default
Fixed authentication with multifactor plugin if it's not on the first place in AuthClient and AuthServer config options
Fixed handling absulute paths in hashgen in Windows
Fixed login of multifactor user if salt+login+password is greater then 32 bytes
Now multifactor login is case sensitive
Added OutputRedirectionFile option for redirection stdout/stderr of server to file (/dev/null by default)
Now it's possible to deactivate user in LDAP by using "ALTER USER ... ACTIVE/INACTIVE"
Now it's possible to user "WITH LOCK" for GTT
Components fbjava and fbjava-lucene are updated
Fixed memory leaks in fbjava
Now it's possible to use different classpath for different databases in fbjava
Rules in java-security.fdb are used for all user's jars
Documentation improvements for SQL SECURITY
fbrepldiff utility now skip GTT
Fixed errors of compatibility with CryptoPro and GOST P 34.11-2012 algorithms
New function of HASGARGS which allows you to calculate a hash of all table data independing to record order.
Added server certificate validation while authentication
Optimization improvements are ported from 2.6
Now an option MAX_FAILED_COUNT works for LDAP too.
Long sorts do not block concurrent connections
Relax restriction on indexing system tables
Ported from Firebird:
Minimal backport of flags needed for ARM builds
Another fix for bug CORE-5436 : [FB3 SC] Server hangs (under load test)
More strict fix for bug CORE-5436 : [FB3 SC] Server hangs (under load test)
Rework fix for bug CORE-5436 : [FB3 SC] Server hangs (under load test)
Backport fix for bug CORE-5843 : Wrong handling of failures of TRANSACTION START trigger
Fixed bug CORE-5847 : "Malformed string" instead of key value in PK violation error message
Applied CORE-5788: Security Patch: Replacement of use of SHA-1 in the SRP Client Proof with SHA-256
Add sha2 into Windows builds(vc10, vc12 and vc14)
Fixed CORE-5846 - CREATE VIEW issues "Implementation of text subtype 512 not located".
Postfix for CORE-5846 - CREATE VIEW issues "Implementation of text subtype 512 not located".
This should fix bug CORE-5863 : Classic process crashes when client disconnected
Fixed exception handling in wire crypt code
Backported CORE-5765: Missing directives in Firebird.pas
Backported CORE-5769: Database crypt plugin sample on Pascal is broken
This should fix bug CORE-5702 : Firebird Handle Leak Windows Fixed examples.
Fixed bug CORE-5776 : "Input parameter mismatch" error after altering external function into PSQL function
Backported CORE-5772: Client hangs when working with events under high load
Fixed bug CORE-405 : Garbage vs indices/constraints
Avoid GetThreadId() which is not present in WinXP (see CORE-5772)
Fix thread priority for attachmentShutdownThread (it was run at lowest priority)
Fixed bug CORE-5773 : PSQL cursor doesn't see inserted record
Backported CORE-5778: install.sh fails if -path argument contains "firebird"
Let ExtDS preprocessor and SQL parser handle '\r', '\n' and '\r\n' as end of line. It should fix bug CORE-5783 : execute statement ignores the text of the SQL-query after a comment of the form "-"
Backport of fix CORE-5790 - User with DROP DATABASE privilege can't drop database
Fixed CORE-5791: ODS for windows builds and linux-x64 (on the one side) and linux-x86 (on the other side) does not match
Updated installer for MacOSX
Postfix for CORE-5791 - no GNU extensions in awk are actually needed
Backported CORE-5796: gstat may produce faulty report about presence of some none-encrypted pages in database
Backported check for access rights to BLOBs. It should fix CORE-5801. (#158)
The deadlock is with windows loader lock and plugin's list mutex.
Avoid recursive locking of plugins list mutex. This fixed deadlock at PluginSet::next.