* Sun Sep 17 2023 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 5.6.2:
* [XrdHttp] Fix chunked PUT creating empty files
(gh#xrootd/xrootd#2058)
* [CMake] Update Findlibuuid.cmake to use correct include paths
* [Python] Fix inclusion of markdown README file in
documentation (gh#xrootd/xrootd#2057)
* [Server] Align code with actual documentation for auth idspec
(gh#xrootd/xrootd#2061)
* [XrdCl] Fix flag check for append in XrdClZipArchive
* [XrdCl] Fix promotion of root:// URLs to use TLS encryption
(gh#xrootd/xrootd#2078)
* [XrdHttp] Correct chunked response for GET with a byte range
(gh#xrootd/xrootd#2076)
* [XrdHttp] Refactor read issuing during GET and fix read vector
too long (gh#xrootd/xrootd#1976)
* [XrdSciTokens] Fix logic error in user mapping
(gh#xrootd/xrootd#2056)
* [XrdSciTokens] Update maximum header size and line length in
INI files (gh#xrootd/xrootd#2074)
* [XrdSecgsi] Fix crash of xrdgsitest when proxy is not already
set
* [XrdSecztn] Fix template for default ZTN token location
(gh#xrootd/xrootd#2080)
* [XrdTls] Change the thread-id returned to openssl 1.0 to
improve performance (gh#xrootd/xrootd#2084)
* [XrdTls] Insert CRLs containing critical extensions at the end
of the bundle (gh#xrootd/xrootd#2065)
* [CMake] Always compile XrdOssCsi (compiled only with GCC
before)
* [CMake] Hide build output for isa-l to not confuse CTest
* [CMake] Run tests in parallel and fail build when tests fail
* [Python] Allow build customization via environment variable
(gh#xrootd/xrootd#2062)
* [Python] Check for Development.Module with CMake 3.18 and
above
* [Server] Add initialiser in one of the XrdScheduler
constructors (gh#xrootd/xrootd#2081)
* [Server] Default ffdest as per current pmark specification
* [Server] Export readv comma separated limits via
XRD_READV_LIMITS envar
* [Server] Implement Linux epoll maxfd limit
(gh#xrootd/xrootd#2063)
* [XrdClHttp] Add pgWrite support to the HTTP client plugin
* [XrdHttp] Refactor request statemachine for HTTP GET requests
(gh#xrootd/xrootd#2072)
* [XrdTls] Refactor CASet and CRLSet to open the output file
only once before the processing
* Sat Jul 22 2023 Stefan BrĂ¼ns <stefan.bruens@rwth-aachen.de>
- Only build python bindings without private copies of the client
library. This also removes the ambiguity for the client libraries
for the automatic dependency generation.
- Only use build dependency on doxygen/graphviz for the main
package.
- Remove unused swig build dependency.
- Various spec file cleanups
- Fix installation of API docs
* Thu Jul 20 2023 pgajdos@suse.com
- version update to 5.6.1
* Version 5.6.1
Minor bug fixes
[CMake] Fix Findlibuuid.cmake to use kernel provided uuid on macOS
[XrdCl] Avoid race in postmaster QueryTransport
[XrdCl] Add missing argument in call to debug log message.
This fixes sporadic crashes seen in FTS when debug logging is enabled.
[XrdCrypto] Avoid race in GetCryptoFactory
Miscellaneous
[CMake] Make sure Python is required in PyPI build
[CMake] Set RPATH that works for binaries and libraries on macOS
[CMake,Python] Handle RPATH for Python bindings on macOS
[Python] Use PEP517 by default when building Python bindings
* Version 5.6.0
New Features
[CMake] Modernization of build system, now requires CMake 3.16
[Client] Add xrdfs cache subcommand to allow for cache evictions
[Misc] Add support for building with musl libc (issue #1645)
[Python] Modernization of build system, better support for creating binary wheels,
properly propagating CXXFLAGS (issues #1768, #1807, #1833, #1844, #2001, #2002)
[Python] Better handling of unicode strings in the API (issue #2011)
[Server] Add gsi option to display DN when it differs from entity name
[Server] Allow generic prepare plug-in to handle large responses (issue #2023)
[Server] Allow specfication of minimum and maximum creation mode (issue #649)
[Server] Make maxfd be configurable (default is 256k) (issue #2010)
[Server] Include token information in the monitoring stream (phase 1).
[Xcache] Implement a file evict function
[Xcache,XrdCl] Increase default number of parallel event loops to 10 (#2047)
[XrdCl] xrdcp: number of parallel copy jobs increased from 4 to 128
[XrdHttp] Allow XRootD to return trailers indicating failure (#1912)
[XrdHttp] Denote Accept-Ranges in HEAD response (issue #1889)
[XrdHttp] Report cache object age for caching proxy mode (#1919)
[XrdPss] Allow origin to be a directory of a locally mounted file system
[XrdSciTokens] Implement ability to have the token username as a separate claim (#1978)
[XrdSecgsi] Use SHA-256 for signatures, and message digest algorithm (issues #1992, #2030)
[XrdSecztn] Allow option '-tokenlib none' to disable token validation (issue #1895)
[XrdSecztn] Allow to point to a token file using CGI '?xrd.ztn=tokenfile' (#1926)
Major bug fixes
[XrdHttp] Fix SEGV in case request has object for opaque data but no content (#2007)
[XrdSecgsi] Fix memory leaks in GSI authentication (issue #2021)
Minor bug fixes
[Server] Use correct value for testing vector size
[XrdCl] Fix off by one error in failure recovery check in parallel operation (issue #2040)
[XrdCl] Fix potential stream timeout when a new request is sent to an idle stream (issue #2042)
[XrdCl] Do not enforce TLS when --notlsok option is used in combination with root:// URL.
This allows falling back to e.g. Kerberos authentication on a server with ZTN plugin
enabled if the client has no certificates, hence not able to use TLS (issue #2020)
[XrdEc] Fix compilation issues and underlinking on macOS
[XrdHttp] Fix error returned when a client provides too many range requests (issue #2003)
[XrdHttp] Fix regression where performance markers were missing during an HTTP TPC transfer (#2017)
[XrdHttp] Return 404 instead of 500 error code on GET request on non-existent file (issue #2018)
[XrdHttp] Return 405 instead of 500 error code on deletion of non-empty directory (issue #1896)
[XrdHttp] Update HTTP header handling for chunked encoding and status trailer (#2009)
[XrdTls] Make sure TLS context is marked invalid if not properly constructed (issue #2020)
[XrdTls] Fix build failure with latest glibc (#2012)
Miscellaneous
[Apps] Make xrdcrc32c consistent with xrdadler32 (issue #2045)
[CMake] Build option ENABLE_CRYPTO has been removed. OpenSSL is always required with XRootD 5 (issue #1827)
[CMake] New test.cmake script added to automate configure/build/test cycle
[CMake] Fix build with link-time optimizations on 32bit systems (issue #2032)
[docs] Update READMEs, contribution, installation, and testing documentation
[Misc] Fix warnings from Clang compiler (#1997)
[Misc] Add sandboxing settings to systemd service files (initially commented out) (issue #2033)
[Server] Also check for IPv6 ULA's to determine if an address is private
[Tests] New script xrd-docker added to automate running of dockerized tests (#1974)
[XProtocol] Add fallthrough statement for ENOTEMPTY errno code mapping
[XRootD] Update code to no longer rely on using namespace std; (needed to support C++17)
[XrdCeph] Submodule merged back into main repository (#2008)
[XrdCeph] Minor build system updates and integration with main repository
[XrdCrypto] Switch to a fixed set of DH parameters compatible with older OpenSSL (issue #2014)
- modified patches
% harden_cmsd@.service.patch (refreshed)
% harden_frm_purged@.service.patch (refreshed)
% harden_frm_xfrd@.service.patch (refreshed)
% harden_xrootd@.service.patch (refreshed)
- removed patches
- xrootd-modernize-python-builds.patch (upstreamed)
* Thu Jun 15 2023 Atri Bhattacharya <badshah400@gmail.com>
- Fix some multibuild package name degeneracies.
* Fri Jun 09 2023 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 5.5.5:
* [HTTP] Initialize SecEntity.addrInfo to avoid SEGV
(gh#xrootd/xrootd#1986).
* [Server] Allow XrdXrootdFile::Serialize() to be used to wait
more than once (gh#xrootd/xrootd#1995).
* [Server] Correct file handle returned when reusing it from
external table.
* [XrdCl] Fix client crash on early closed connection
(gh#xrootd/xrootd#1934).
* [Server] Use correct format to print size_t
(gh#xrootd/xrootd#1989).
* [XrdApps] Let XrdClProxyPlugin work with PgRead
(gh#xrootd/xrootd#1993).
* [XrdCl] Avoid possibility of Channel unregistering the wrong
task (gh#xrootd/xrootd#1883).
* [XrdCl] Fix ZipArchive issuing VectorWrite which is too large
during CloseArchive (gh#xrootd/xrootd#2004).
* [XrdSys] Avoid memory leak when overwriting the default
message for EBADE.
* [CMake] Adjust build rules to not depend on scitokenscpp to
build libXrdSecztn.
* [Server,XrdPosix,XrdSecgsi] Fix compile warnings with Clang
compiler.
* [XrdPosix] Fix build with Clang and _FORTIFY_SOURCE enabled
(gh#xrootd/xrootd#1975).
- Fix python builds:
* Add xrootd-modernize-python-builds.patch: patch from
gh#xrootd/xrootd#2025 rebased for current version.
* Use _multibuild to split out python builds into own flavour
separate from main package builds.
* Manually create a VERSION file so that dist-infos can decipher
the right version and does not use 5.6-rc-foo; this should no
longer be required when packaging tagged version 5.6.
* Manually specify xrootd includedirs when building python pkgs
since cmake as invoked by python build tools does not
automatically inherit them, leading to missing header
complaints.
* Pass -Wno-error=odr to linker flags to avoid build failures on
32bit archs (gh#xrootd/xrootd#2032).
* Wed Apr 05 2023 Dominique Leuenberger <dimstar@opensuse.org>
- Update to version 5.5.4:
+ **[SSI]** Avoid file system+SSI feature interference that caused problems
+ **[Server]** Fix dropped connections when link is reused (issue 1928)
+ **[Server]** Limit max number of sockets in poller (issue 1962)
+ **[Tests]** Fix intermittent failure of SocketTest
+ **[XrdApps]** Fix crashes and deadlocks in xrdreplay tool (issue 1937)
+ **[XrdCl]** Remove interference between sessions in the client (issue 1942)
+ **[XrdCrypto]** Allow ASN1 GeneralizedTime in certificates (issue 1969)
+ **[XrdCrypto]** Fix handling of daylight savings time (issues 985, 1955)
+ **[XrdHttp]** Avoid sending empty headers in the HTTP response
+ **[XrdHttp]** Clear digest header between requests (issue 1956)
+ **[XrdHttp]** Fix for HTTP requests with open-ended byte range
+ **[XrdHttp]** Fix handling of SSL shutdown during cleanup (issue 1967)
+ **[XrdHttp]** Fix parsing of configuration with weighted checksums (issue 1944)
+ **[XrdHttp]** Only call ERR_print_errors() if an error occurred
+ **[XrdPfc]** Fix HTTP request failures with direct read mode enabled
+ **[XrdTls]** Fix intermittent clients disconnections on login (issue 1952)
- Drop xrootd-drop-python-distutils.patch: fixed upstream.
* Sun Jan 15 2023 Atri Bhattacharya <badshah400@gmail.com>
- Add xrootd-drop-python-distutils.patch: Drop distutils usage in
favour of setuptools; upstream commit d5732ef
[gh#xrootd/xrootd#1843]. This fixes build failures on Factory.
* Mon Oct 31 2022 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 5.5.1:
* [XrdFfs] Fix a bug in xrootdfs (gh#xrootd/xrootd#1777).
* [Server] Avoid SEGV when client tries to access file after
deferred closed.
* [XrdHttp] The server certificate is renewed by the Refresh
thread of the XrdTlsContext object.
* [XrdHttp] Fix a segv happening when a client sends a first
line starting with a space.
* [XrdTls] Shutdown the socket if a SSL error happens when
trying to accept a connection.
* [Apps] Avoid SEGV when asking for help.
* [XrdCl] copy job: fix memory leak (buffers not queued on
error).
* [Server] Add O_RDWR open flag when creating file to avoid fs
issue.
* [Server] Properly handle opaque info for fsctl operations.
* [XrdHttp] Allow VO names with spaces and other quoted chars.
* [XrdCl] LocalFileHandler: fail gracefuly on overloaded
machines.
* [XrdCl] Introduce new error code for handling local errors.
* [XrdCl] local file handler: obtain error code with aio_error.
* [XrdCl] xrdfs ls: sanitize ls entry.
* [CMake] Add ENABLE_ switch for scitokens and
macaroons(gh#xrootd/xrootd#1728).
* [XrdTls] Start the CRLRefresh thread in XrdTlsContext
constructor.
* [XrdTls] Changed the bit set for the activation of the Refresh
thread.
* [XrdTls] The CRL refresh thread logic only starts when there
is a need for it.
* [XrdTls] Free current context when a new context is generated.
* [XrdHttpTpc] Pass src size to OFS via oss.asize.
* Thu Sep 29 2022 Atri Bhattacharya <badshah400@gmail.com>
- rpmlintrc: Filter out missing-call-to-setgroups-before-setuid
warnings which are false positives (see
https://github.com/xrootd/xrootd/issues/1783).
* Tue Sep 20 2022 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 5.5.0:
* Long list of changes, see
https://github.com/xrootd/xrootd/blob/v5.5.0/docs/ReleaseNotes.txt
- Update patches to apply cleanly:
* harden_cmsd@.service.patch
* harden_frm_purged@.service.patch
* harden_frm_xfrd@.service.patch
* harden_xrootd@.service.patch
- Adapt to changes in installed files list for python3.
- Build python bindings for all supported python versions (python3
only).
- Add BuildRequires: python-pip needed to install standard
python egg-info (avoiding installing .pth files).
- Install /run/%{name} as ghost dir.
- Drop unused filter from rpmlintrc.
- Rename logrotate file to xrootd-server to conform with rpmlint
suggestion.
- Add BuildRequires: sysuser-tools and use its macros to set up
xrootd user and group in compliance with
<https://en.opensuse.org/openSUSE:Packaging_guidelines#Users_and_Groups>.
- Add %{name}-user.conf as source as required for above.
- Drop conditionals for openSUSE < 1500 (sle_version < 150000).
- Minor specfile cleanups using spec-cleaner.
* Sat Mar 26 2022 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.12.9:
* No Linux related changes, just version sync.
* Mon Jan 10 2022 Johannes Segitz <jsegitz@suse.com>
- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
* harden_cmsd@.service.patch
* harden_frm_purged@.service.patch
* harden_frm_xfrd@.service.patch
* harden_xrootd@.service.patch
* Fri Jul 02 2021 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.12.8:
* [XrdTpc] Buffer starting at the right offset.
* [XrdHttp] Store a new header in the headers map before
mangling it, fixes gh#xrootd/xrootd#1399.
* [XrdHttp] Fix chunked transfer with 100-continue.
- Drop xrootd-build-with-glibc2.33.patch: integrated upstream.
* Mon Feb 22 2021 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.12.7:
* [XrdHttp] Fix empty PUT.
* [XrdTpc] Do not call Write() on flush.
* [XrdTpc] Avoid using invalid object in multi-stream.
* [XrdTpc] Always check and fail on error.
* [XrdTpc] Catch all negative return values not just SFS_ERROR.
* [XrdTpc] Fix the return value of `Stream::Write`
* [XrdTpc] Always populate error buffer with messages.
* [XrdTpc] Factor out recursive writes.
* [XrdTpc] Do not allow partial buffer writes.
* [XrdTpc] Adjust buffer size based on number of streams.
- Add xrootd-build-with-glibc2.33.patch: Fix build with glibc
2.33; patch taken from upstream commit [gh#xrootd/xrootd#1315].
* Thu May 28 2020 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.12.1:
* [XrdXrootdVoms] Fix run-time lib dependencies.
* [xrdcp] Don't create unwanted dir if --recursive option was
used and the source is a file.
- Changes from version 4.12.0:
* New Features:
- [Server] User redirector to find directory to be listed (R5
backport).
- [XrdCl] More effective error recovery policy when the source
is a metalink.
- [xrdcp] Implement bandwidth limiting (--xrate option).
- [xrdcp] Implement ability to continue interrupted transfer
(--continue).
- [xrdcp/Python] Add an option (--zip-mtln-cksum) to use the
checksum from a metalink with files extracted from ZIP
archives.
- [xrdcp/Python] Automatically infer checksum type if asked
to.
- [xrdcp/Python] Add an option (--rm-bad-cksum) to
automatically remove destination file if the checksum check
failed.
* Bug fixes:
- [Server] Correct sequencing of an async close to prevent a
SEGV.
- [Server] Add missing initializer to avoid TPC SEGV on busy
systems.
- [Server] Initialize the XrdAccEntityInfo structure.
- [XrdHttp] Fix MKCOL response when we have an EEXIST.
- [XrdHttp] Periodically reload verify cert store.
- [XrdHttp] Disable session cache.
- [XrdCl] Don't set on-connection handler for local files.
- [XrdCl] Don't set the stream error window for auth errors.
- [XrdCl] Fix race condition resulting in dangling pointer to
SidMgr.
- [XrdCl] Make Channel operations thread-safe in respect to
ForceDisconnect.
* [CMake] Repleace XRootD find module with config module.
* [RPM/CMake] Don't build XrdCns.
* [Packaging] Add xrootd-voms and xrootd-voms-devel packages
equivalent.
* [Packaging] Add additional private headers for vomsxrd to the
vomsxrd packages.
* [Python] Support PyPy.
- Only package the COPYING.LGPL file and drop all extraneous
COPYING* files; the LICENSE file makes it clear that the
software is licensed under LGPL-3.0-or-later.
* Fri Apr 03 2020 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.11.3:
* [Server] Avoid SEGV when skipping over large if/else/fi
blocks.
* [XrdHttp] Fix curl speed limit to be really around 10KB/s.
* [xrootdfs] Make sure xrootdfs_create() checks return code of
xrootdfs_do_create().
* [XrdHttp] Change the default ssl cipher.
* [XrdHttp] Enable elliptic-curve support for OpenSSL 1.0.2+.
* [XrdHttp] Use Mozilla cipher list only with OpenSSL 1.0.2+.
* [XrdCl] When xrdcp reports an error refine the message so it
is clear whether the erros comes from the source or
destination.
* [XrdCl] Make sure on error local redirect is not retried
infinitely.
* [XrdXrootdConfig] Fixed wrong segsz parameter.
* [XrdHttp] Give a chance to map the issuer name in the case of
a proxy certificate (needed to accommodate systems that do
user mapping, e.g. eos)
* [XrdHttp] Fix the logic for determining SecEntity.name.
* [XrdHttp] Don't overwrite SecEntity.name after the gridmap
phase.
* [xrootdfs] Make sure xrootdfs_create() does check the return
code of xrootdfs_do_create().
* [XrdSecgsi] In the case of delegation, give client a chance to
use XrdSecGSISRVNAMES to limit where it is being redirected
to.
* [Python] Make rpath relative to the module.
* [Debian] Proper Debian pkg naming.
* [XrdCl] Use glibc semaphores for rhel>=7.
* [Server] Export pointers to Acc, Ofs, and Sfs plugin into the
XrdEnv.
* [XrdMacaroons] Use env ptrs to get authorize obj.
- Changes from versions 4.11.0 through 4.11.2:
* See
https://github.com/xrootd/xrootd/blob/v4.11.3/docs/ReleaseNotes.txt.
- Remove a spurious 'exit 0' line from %pre scriptlet.
- Recommend logrotate for xrootd-server as it installs a file in
/etc/logrotate.d/.
- Use ninja for building:
* Add BuildRequires: ninja.
* Use %cmake_build instead of make.
* Define __builder to ninja so cmake uses ninja instead of make
for building.
* Mon Aug 19 2019 Atri Bhattacharya <badshah400@gmail.com>
- Update to version 4.10.0:
* New Features
- [POSIX] Add methods to the cache mngt objecT to get status
of a cached file.
- [Server] Add xrd.network dyndns option for dynamic DNS
handling.
- [Server] Properly handle dynamic DNS environments.
- [Server] Add evict option to the prepare request.
- [Server] Allow better handling for proxy caching clusters.
- [Server] Allow configurable posc sync level.
- [Server] Implement framework for a kXR_prepare plug-in.
- [XrdCl] Implement streaming dirls, closes #225
- [XrdCl] Retry policy changes: see details in #950.
- [XrdCl] Add switch/flag to enforce zip archive listing.
- [XrdCl] Preserve tried/triedrc cgi info on redirect for
kXR_locate request, #closes #944
- [XrdCl] Implement prepare evict and expose in xrdfs.
- [XrdCl] Expose prepare abort and query prepare.
- [XrdCl] Add tpc.scgi if delegation is being used.
- [Python] Expose chunked dirlist API in Python.
- [Python] Support globbing.
- [XrdClHttp] Add XrdClHttp submodule.
- [XCache] Implement write-queue number of blocks / threads
config options. (#963)
- [CMake] Add switch for XrdCl builds only.
* Major bug fixes:
- [XrdCl] Allow to cancel classical copy jobs.
- [XrdCl] Fix race condition in error recovery.
- [XrdCl] Prevent race condition between Request T/O and
socket read.
- [XCache] Check for errors during XrdOssFile::FSync - do not
write cinfo file if it fails.
- [XCache] Deny write access to a file in initial Prepare()
call, fixes #663
- [XCache] Review and correct error handling in POSIX and
XCache, implement XCache::Unlink()
- [XrdTpc] Always query dual stack for HTTP TPC.
- [XrdTpc] Do not include authz header in the filename.
- [XrdTpc] Add curl handle cleanup on redirections or errors.
- [XrdHttp] Include provided opaque information in the
redirection.
- [XrdHttp] Fix digest names returned to clients.
- [XrdHttp] Fix opaque info handling on redirections.
- [XrdMacaroon] Fix macaroon authorization config.
- [XrdSecgsi] Make proxy cache path aware.
- [XrdSecgsi] XrdSecProtocolgsi::Encrypt - set IV correctly
and report correct size.
* Minor bug fixes and miscellaneous changes: see
https://github.com/xrootd/xrootd/blob/master/docs/ReleaseNotes.txt
- Use github URL for source tarball.
- Replace xrootd-devel by xroots-libs-devel for
xrootd-server-devel's Requires; xrootd-devel does not exist.
* Thu Jan 17 2019 Jan Engelhardt <jengelh@inai.de>
- Disable ceph since linking to it fails.
* Wed Dec 19 2018 Jan Engelhardt <jengelh@inai.de>
- Trim long repeated descriptions in subpackages.
- Trim future aims. Run fdupes over all of the usr subvolume.
* Wed Dec 05 2018 Todd R <toddrme2178@gmail.com>
- Update to version 4.8.5
- Remove upstream-included xrootd-gcc6-fix.patch
- Remove unneeded xrootd-gcc8-fix.patch
- Merge cl and cl-devel subpackages into client and client-devel
subpackages, respectively, to match upstream
- Split client and server libraries into subpackages to simplify
dependencies, simplify installation, and better match upstream.
- Switch to cmake-based install
- Switch from sysv-init to systemd.
- Build and package python3 bindings
- Build and package ceph storage backend
- Build and package documentation