 Detlev Poettgen | Detlev Poettgen April 28 2025 07:30:42 AM
Over the last few weeks, several of our customers have contacted me to say that the Easter holidays are no longer displayed correctly on their iOS devices.
For example, Easter Monday was displayed one day earlier.
The problem has been occurring since the installation of Traveler v14.0 FP 2 (v14.0.0.2) and is reproducible.
The customers have opened HCL tickets and HCL is working on a fix and has published a technote including a workaround on this:
Imported holidays shown on incorrect days in iOS Calendar app
Applies to
Traveler 14.0.0.2
Observed Behavior
Holidays that are imported to the user's calendar may display a day earlier when synced to the user's iOS Calendar app. The iOS calendar may also show duplicate entries on other dates.
Expected Behavior
The holidays should be displayed on the same dates in HCL Notes and iOS Calendar.
Workaround
Opening the holiday event in HCL Notes and making any change will fix the dates on the next sync to the iOS Calendar. For repeating holidays, the change should be made for all instances of the event.
Alternatively, use HCL Verse for iOS which syncs differently and does not have this issue.
Problem Resolution
The time zone used to calculate the date of the holiday is off by 1 hour. Imported holidays that start at 12:00am are then adjusted 1 hour backward, causing the time to be 11:00pm on the previous day. Traveler syncs the event to the previous day when sending data to the device.
Details: https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120753 Detlev Poettgen March 5 2025 01:39:10 PMHCL Traveler 14.0.0 FP2 is a release, that includes bug fixes and an update APNS certificate for the Traveler server.
Traveler 14.0.0 FP2 can be used to install a new Traveler environment or update an existing Traveler environment running Domino 11.0.x, or later without requiring a Domino upgrade.
(Although it is always recommended to keep Domino at the latest level.)
Database Schema
Traveler 14.0.0 FP2 does NOT include a database schema update to Database Schema Level 20230417.
Updated APNS Certificate for iOS
The download package includes an updated APNS certifiacte valid until March 02, 2026.
For older Traveler versions, you can download and update the APNS certificate manually. Take a look at https://my.hcltechsw.com/downloads/domino/traveler/14.0 where you can find a Traveler_APNS_Prod.zip file.
New Features
Tell Traveler Push Test Extended to FCM
This command is used for testing proxy configurations, connectivity, etc.
Previously, it only supported APNS testing; now the command will also support FCM testing to better identify connectivity problems.
New Configurable Limits for Sending Conflict Notification Emails
New behavior will send fewer conflict emails from the Traveler server when a calendar update conflict is detected.
Two new Notes.ini parameters have been added to configure the time between conflict emails for the same event and to add the ability to disable the emails altogether.
These parameters were added in response to an Apple iOS 18 bug that causes conflicting event updates to be sent from the device.
More information: https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0116765
Updated APNS P12 Files
Apple Push Notification Service (APNS) p12 certificates updated to expire March 2, 2026.
These certificates replace the files shipped with Traveler 14.0.0 FP1, which expire June 21, 2025. Fix List
KB0116765 iOS/iPadOS 18: Conflict emails and update notices are generated for repeating events without any changes made by the chair
KB0117001
Non-S/MIME mail with only a signed attachment is missing the signed attachment
KB0117165
Duplicate all day events when using the iOS/iPadOS Calendar app
KB0117322
Modifying an email reply draft on a device that does Smart Forward/Smart Reply results in two drafts
KB0118274
Traveler device approval messages in the wrong language
KB0118393
Errors cleaning up Traveler data for deleted users with large amounts of data
KB0118432
$Abstract not updated on Drafts
KB0118531
Attendee only status updates to events are not being pushed properly to Verse for iOS
KB0119137
Security Bulletin: A Denial of Service (DoS) vulnerability in Netty affects HCL Traveler (CVE-2025-24970)
Details:
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0119093 Detlev Poettgen December 14 2024 11:15:01 AMDON'T RESTART YOUR DOMINO SERVER until a fix is available!
Please do exactly what this technote say and don't try to fix it. A fix is on it's way.
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0118192
CRITICAL ALERT: Mail not routing after Domino restarts beginning 13 December 24
Applies to
All versions of HCL Domino (v9.0.x, v10.0.x, 11.0.x, 12.0x, 14.0.x)
Issue
The HCL Domino Development team has identified an issue which will affect *ALL Domino server versions* as of TODAY, December 13, 2024.
If you restart your server, a router error will occur which results in delivery failures due to a routing loop. Mail rules will also start failing. This is a date/time issue in our code, and we will provide a hotfix as soon as possible.
Resolution
To avoid the problem **please do NOT restart your servers.**
Please do not attempt to fix the issue by changing operating system time into the past.
If you restarted Domino and are experiencing issues please contact support to open a case.
We will continue to provide updates on this page.
Update 14.12.2024 at 22:25: First Fixes are available.
NOTE: Fixes will be provided for versions 9 and 10 for customers with support extensions.
This has been reported to development via SPR BRISDBWRXJ.
Symptoms and error/s associated with this issue: - Error transferring to ; Maximum hop count exceeded. Message probably in a routing loop.
After the reboot, a new mail.box is created and the existing mail.box/es are bypassed. Detlev Poettgen August 29 2024 08:53:36 AM
HCL Traveler 14.0.0 FP1 includes a new APNS certificate and beside other fixes an important security update.
It is recommend to upgrade your Traveler servers, because of a known security issue, which will be fixed with 14.0.0 FP1: HCL Traveler is susceptible to a denial of service attack through the included jsoup library. Affected are all HCL Traveler versions 14.0.0.0 and below.
Details can be found here:
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114743
Traveler 14.0.0 FP1 can be used to install a new Traveler environment or update an existing Traveler environment running Domino 11.0.x, or Domino 12.0.x without requiring a Domino 14.0 upgrade.
(Although it is always recommended to keep Domino at the latest level.)
Database Schema
Traveler 14.0.0 FP1 does not include a database schema update.
Database Schema Level of Traveler 14.0.0 FP 1 is 20230417.
Updated APNS Certificate for iOS
The download package includes an updated APNS certifiacte valid until June 21, 2025.
For older Traveler versions, you can download and update the APNS certificate manually. Take a look at https://my.hcltechsw.com/downloads/domino/traveler/14.0 where you can find a Traveler_APNS_Prod.zip file.
New Features
Fix List
KB0115444
Tell traveler dbmaint run command results in system exception error message KB0115512
Traveler server status should change if http is not running KB0115443
Free time can be off by 15 or 30 minutes when the invitee has a meeting with an unusual start time KB0114855
Mail missing signed attachment KB0112441
All day events appearing on the wrong date on iOS native Calendar KB0114743
Security update
Details: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0110147 Detlev Poettgen June 25 2024 09:32:26 AM
Apple hat gestern bereits die neue Funktion im Apple Business Manager aktiviert, um für Geräte die Aktivierungssperre deaktivieren zu können.
Darüber werden sich viele unsere Kunden freuen!
Es gibt immer wieder Probleme mit zurückgegeben Geräten, welche die Aktivierungssperre aktiviert haben und diese nicht mehr deaktiviert werden kann.
Bisher blieb hier meistens nur der Weg über den Apple Support, um eine Aktivierungssperre zurücksetzen zu lassen.
Für Geräte die noch im Apple Business Manager als DEP Geräte (Device Enrollment Program) registriert sind, ist es jetzt möglich den Status der Sperre anzeigen zu lassen und auch die Sperre wieder zu deaktivieren. Hierbei ist es egal, ob das Gerät sich noch im MDM befindet oder nicht. Solange das Gerät noch dem Apple Business Manager der Firma zugeordnet ist, kann die Aktivierungssperre deaktiviert werden.
Ein wichtiger Grund mehr endlich alle Apple Firmengeräte in das DEP aufzunehmen!
Detlev Poettgen Dezember 8 2023 09:11:18 AMHCL Traveler 14.0 is a feature release, that includes new features and bug fixes for the Traveler server.
Traveler 14.0 can be used to install a new Traveler environment or update an existing Traveler environment running Domino 9.0.1.x, or Domino 12.0.x without requiring a Domino upgrade.
(Although it is always recommended to keep Domino at the latest level.)
Database Schema
Traveler 14.0 does include a database schema update to Database Schema Level 20230417.
Updated APNS Certificate for iOS
The download package includes an updated APNS certifiacte valid until November 14, 2024.
For older Traveler versions, you can download and update the APNS certificate manually. Take a look at https://my.hcltechsw.com/downloads/domino/traveler/14.0 where you can find a Traveler_APNS_Prod.zip file.
New Features
Clear the sync anchors for a device from the Traveler home page
If enabled by the administrator, the Traveler home page provides a set of commands that the user can execute for the user or the user's devices.
New to this release is the option to clear the sync anchors for a user's device(s). This is a light weight option to trigger a device to resync the data (mail, calendar, etc).
Verifying the Traveler mail file replica list
Traveler maintains a list of mail file replicas in the Traveler database.
This list is dynamically built from the information in the cluster directory and, in the case that the mail file algorithm requires mail files to be local (e.g. NTS_MAIL_SERVERS_ALGORITHM=LOCALONLY), mail files detected on the traveler servers.
A new form of the Bind command, verifyLocalOnly has been added to verify the accuracy of the list of replicas for a user (or all users) and ensure that users are bound to a traveler server with a mail file replica.
Security improvements to the Traveler home page
Inline CSS styles and JavaScript were removed from the Traveler home page to support a more secure Content-Security-Policy header.
Environments with an existing Content-Security-Policy header set for the Traveler home page should remove the 'unsafe-inline' values of the style-src and script-src policy directives and set them to 'self' instead. Fix List
KB0103688
Smart Forward/Reply: Rich Text mail attachment for Forward/Reply without attachments has image and broken content
KB0104294
Unable to deselect devices in Device Security view in web-based administration (lotustraveler.nsf)
KB0104467
User locale based values such as date formats may be incorrect if the HTTP Accept-Language header name is not exactly Accept-Language
KB0106643
Message with non existent product name in Czech
KB0107519
Traveler replica information is missing or incorrect; bind verifyLocalOnly enhancements
KB0108246
Smart Reply or Smart Forward to a mail with Content-Disposition header on the original mail causes SMTP error
KB0105587
Do not assume a Traveler server has a local mail replica if the Traveler server is unreachable
Details:https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0103462 Detlev Poettgen August 19 2022 08:42:55 AMApple hat am Mittwochabend kurzfristig Updates für iPhone, iPad und Mac veröffentlicht.
Grund sind zwei Sicherheitslücken, zu denen dem Konzern laut eigenen Angaben Berichte über aktive Exploits vorliegen.
Die neuen Versionen sind iOS 15.6.1 und iPadOS 15.6.1 für iPhone und iPad sowie macOS Monterey 12.5.1 für den Mac.
Apple hat inzwischen auch Updates für ältere macOS Versionen bereitgestellt.
Über die mit den Updates geschlossene Lücke, kann über eine manipulierte Website (beziehungsweise ein schlicht in WebKit ausgeführter manipulierter Web-Inhalt) beliebiger Code ausführen. Mit welchen Rechten das geht, führt Apple nicht aus.
Apple empfiehlt eine baldige Installation!
Da bereits einige unserer Kunden mich darauf angesprochen, möchte hier auch nochmal auf diesem Wege informieren und auffordern die vorhandenen iOS und macOS Geräte asap zu aktualisieren.
Weitere Informationen:
https://www.heise.de/news/Aktive-Exploits-macOS-12-5-1-iOS-15-6-1-und-iPadOS-15-6-1-verfuegbar-7223549.html Detlev Poettgen Februar 15 2022 03:06:38 PM
Preliminary:
Based on the experience below, when using DAOS on Domino Server 12.0.1 IF1, I cannot currently recommend and would wait until this is resolved before updating to Domino 12.0.1.
We have a support case open with HCL on this and hope this can be resolved quickly.
Update 2022-02-16: HCL already looked into it and offered us via the Case a new hotfix (HF24). So if you already run into the same issue, you should open a Support Case and request the hotfix, too.
Update 2022-02-22: HCL published a new Technote today: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096771
HCL developers are actively working on these issues. Our Performance team was able to reproduce these issues under a heavy workload and is in the process of testing our fixes under that workload.
If you are encountering any of these issues or something similar, please open a Support ticket to have your issue analyzed and escalated. (Include console logs and NSD if applicable.) If your issue is determined to be one of the issues that HCL has tested and verified, Support can provide a hotfix to you.
HCL will produce a 12.0.1 IF2 release containing the fixes as soon as possible.
Update 2022-03-05: HCL published a new 12.0.1 IF2, which contains four DAOS fixes.
DCKTCARNVR Fixed an issue where error may result in long held locks on daoscat.nsf during replication
SPPPCAMM6Y Fixed an issue where there were multiple locks on daoscat.nsf
HPRHCASE7N Fixed Domino crashes related to DAOS
BSPRCBQLLJ Fixed deadlock and performance issues related to DAOS
We are planing to try IF2 during this week to see if our issue is solved with the IF2 too.
Update 2022-04-13: The update of the Domino servers to Domino v12.0.1 IF2 was successfull and without any DAOS issues.
So if you are planning to upgrade to Domino v12.0.1 you should install IF2.
If you are already running 12.0.1 you should install IF2, too.
On last hint and leason learned: If you will need to rebuild the DAOS catalog because it's corrupted or missing, you should execute the command offline. Not from the console, when the server is up and running.
So what happened?
After a successfull update installation from v11 to Domino v12.0.1 and Interimsfix 1 (Hotfix 11), the first restart was normal.
But after about 30 minutes "Long Held Lock Dump" appears and a while later the server was unresponsive for users.
On the server console we saw many messages like this:
[22C4:0142-27D8] LkMgr BEGIN Long Held Lock Dump ------------------
[22C4:0142-27D8] Lock(Mode=X * LockID(CONTLONGKEY DB=f:\Domino\data\daoscat.nsf RRV=14545618 len=48 hKey=0xC0190341 SkipLastDWORD)) Waiters countNonIntentLocks = 1 countIntentLocks = 0, queuLength = 2
[22C4:0142-27D8] Req(Status=Granted Mode=X Class=Manual Nest=0 Cnt=1 0000
[22C4:0142-27D8] Tran=0 Func=N/A x\ehashr6.c:899 [27C8:0002-000000000000275C])
After restarting and checking the daos status, we observed that the the daos status is out of sync. After this we submitted a load daosmgr resync.
But the resync didn't come to an end and the server was unresponsive again, showing these messages:
semaphore invalid or not allocated
Notes client were no longer able to connect to the server and even the Server Console was not able to send console commands any more.
After all we decided in our situation to downgrad back to 11.0.1FP4, rebuildt the daoscatalog and no more errors occured.
The same behavior occurred on a second large mail server as well. And led to the fact that this server was also no longer available for clients and could only be terminated hard via nsd -kill.
The problem should be solved with 12.0.1 IF1, but unfortunately it is not:
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095401 Detlev Poettgen Oktober 29 2021 07:41:01 AM
The HCL Ambassador award is an important and nice thank you from HCL to recognize deserving members of the community.
We all benefit from blog posts, tweets or talks. It is important to remember that some of the bloggers and speakers at the various events do this voluntarily (mostly in their free time) and are happy to share their knowledge with others.
The HCL Ambassadors nominations are open on October 1 (End – 31 October) Take a few minutes to fill out the online nomination form - it does not hurt
https://hclsw.co/ambassador-nomination
You can nominate yourself or someone else. If you want to nominate ME, I would be happy. Permission is hereby explicitly granted. Thanks in advance.
I have now "say thank you" three times and have nominated three members of the HCL Notes / Domino community that I hold in high esteem to be HCL Ambassadors.
More about the HCL Ambassador Program can be found here:
https://www.hcltechsw.com/about/hcl-ambassadors Detlev Poettgen September 6 2021 01:16:41 PMIf you are using the HCL SafeLinx Administrator client on Windows, you may be will see some display issues.
Here is an example:
Selection lists are not displayed correctly and option selection is not possible.
The reason for this is easy to find and to solve:
SafeLInx Administrator running on Windows requires a Java Open JDK version 8!
Like mentioned in the documentation: https://help.hcltechsw.com/safelinx/1.2/adminguide/installing_the_gatekeeper.html
If a newer version like Java OpenJDK v16 is installed, you are hit by the issue.
So install JDK v8 and it will be fixed. 
Download URL of the JDK v8:
https://adoptopenjdk.net/releases.html?variant=openjdk8&jvmVariant=hotspot
|
|
