Xrootd

Latest version: v5.7.3

Safety actively analyzes 710445 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 3 of 5

5.6.1

+ **Minor bug fixes**
**[CMake]** Fix Findlibuuid.cmake to use kernel provided uuid on macOS (issue 2052)
**[XrdCl]** Avoid race in postmaster QueryTransport
**[XrdCl]** Add missing argument in call to debug log message.
This fixes sporadic crashes seen in FTS when debug logging is enabled.
**[XrdCrypto]** Avoid race in GetCryptoFactory

+ **Miscellaneous**
**[CMake]** Make sure Python is required in PyPI build
**[CMake]** Set RPATH that works for binaries and libraries on macOS
**[CMake,Python]** Handle RPATH for Python bindings on macOS
**[Python]** Use PEP517 by default when building Python bindings

5.6.0

+ **New Features**
**[CMake]** Modernization of build system, now requires CMake 3.16
**[Client]** Add xrdfs cache subcommand to allow for cache evictions
**[Misc]** Add support for building with musl libc (issue 1645)
**[Python]** Modernization of build system, better support for creating binary wheels,
properly propagating CXXFLAGS (issues 1768, 1807, 1833, 1844, 2001, 2002)
**[Python]** Better handling of unicode strings in the API (issue 2011)
**[Server]** Add gsi option to display DN when it differs from entity name
**[Server]** Allow generic prepare plug-in to handle large responses (issue 2023)
**[Server]** Allow specfication of minimum and maximum creation mode (issue 649)
**[Server]** Make maxfd be configurable (default is 256k) (issue 2010)
**[Server]** Include token information in the monitoring stream (phase 1).
**[Xcache]** Implement a file evict function
**[Xcache,XrdCl]** Increase default number of parallel event loops to 10 (2047)
**[XrdCl]** xrdcp: number of parallel copy jobs increased from 4 to 128
**[XrdHttp]** Allow XRootD to return trailers indicating failure (1912)
**[XrdHttp]** Denote Accept-Ranges in HEAD response (issue 1889)
**[XrdHttp]** Report cache object age for caching proxy mode (1919)
**[XrdPss]** Allow origin to be a directory of a locally mounted file system
**[XrdSciTokens]** Implement ability to have the token username as a separate claim (1978)
**[XrdSecgsi]** Use SHA-256 for signatures, and message digest algorithm (issues 1992, 2030)
**[XrdSecztn]** Allow option '-tokenlib none' to disable token validation (issue 1895)
**[XrdSecztn]** Allow to point to a token file using CGI '?xrd.ztn=tokenfile' (1926)

+ **Major bug fixes**
**[XrdHttp]** Fix SEGV in case request has object for opaque data but no content (2007)
**[XrdSecgsi]** Fix memory leaks in GSI authentication (issue 2021)

+ **Minor bug fixes**
**[Server]** Use correct value for testing vector size
**[XrdCl]** Fix off by one error in failure recovery check in parallel operation (issue 2040)
**[XrdCl]** Fix potential stream timeout when a new request is sent to an idle stream (issue 2042)
**[XrdCl]** Do not enforce TLS when --notlsok option is used in combination with root:// URL. This allows falling back to e.g. Kerberos authentication on a server with ZTN plugin enabled if the client has no certificates, hence not able to use TLS (issue 2020)
**[XrdEc]** Fix compilation issues and underlinking on macOS
**[XrdHttp]** Fix error returned when a client provides too many range requests (issue 2003)
**[XrdHttp]** Fix regression where performance markers were missing during an HTTP TPC transfer (2017)
**[XrdHttp]** Return 404 instead of 500 error code on GET request on non-existent file (issue 2018)
**[XrdHttp]** Return 405 instead of 500 error code on deletion of non-empty directory (issue 1896)
**[XrdHttp]** Update HTTP header handling for chunked encoding and status trailer (2009)
**[XrdTls]** Make sure TLS context is marked invalid if not properly constructed (issue 2020)
**[XrdTls]** Fix build failure with latest glibc (2012)

+ **Miscellaneous**
**[Apps]** Make xrdcrc32c consistent with xrdadler32 (issue 2045)
**[CMake]** Build option `ENABLE_CRYPTO` has been removed. OpenSSL is always required with XRootD 5 (issue 1827)
**[CMake]** New test.cmake script added to automate configure/build/test cycle
**[CMake]** Fix build with link-time optimizations on 32bit systems (issue 2032)
**[docs]** Update READMEs, contribution, installation, and testing documentation
**[Misc]** Fix warnings from Clang compiler (1997)
**[Misc]** Add sandboxing settings to systemd service files (initially commented out) (issue 2033)
**[Server]** Also check for IPv6 ULA's to determine if an address is private
**[Tests]** New script xrd-docker added to automate running of dockerized tests (1974)
**[XProtocol]** Add fallthrough statement for ENOTEMPTY errno code mapping
**[XRootD]** Update code to no longer rely on using namespace std; (needed to support C++17)
**[XrdCeph]** Submodule merged back into main repository (2008)
**[XrdCeph]** Minor build system updates and integration with main repository
**[XrdCrypto]** Switch to a fixed set of DH parameters compatible with older OpenSSL (issue 2014)

**Full Changelog:** https://github.com/xrootd/xrootd/compare/v5.5.5...v5.6.0

See also all issues and pull requests in this release in the [5.6 milestone](https://github.com/xrootd/xrootd/milestone/29?closed=1).

5.5.5

+ **Major bug fixes**
**[HTTP]** Initialize SecEntity.addrInfo to avoid SEGV (issue 1986)
**[Server]** Allow XrdXrootdFile::Serialize() to be used to wait more than once (issue 1995)
**[Server]** Correct file handle returned when reusing it from external table
**[XrdCl]** Fix client crash on early closed connection (issue 1934)

+ **Minor bug fixes**
**[Server]** Use correct format to print size_t (issue 1989)
**[XrdApps]** Let XrdClProxyPlugin work with PgRead (issue 1993)
**[XrdCl]** Avoid possibility of Channel unregistering the wrong task (issue 1883)
**[XrdCl]** Fix ZipArchive issuing VectorWrite which is too large during CloseArchive (issue 2004)
**[XrdSys]** Avoid memory leak when overwriting the default message for EBADE

+ **Miscellaneous**
**[CMake]** Adjust build rules to not depend on scitokenscpp to build libXrdSecztn
**[Server,XrdPosix,XrdSecgsi]** Fix compile warnings with Clang compiler
**[XrdPosix]** Fix build with Clang and _FORTIFY_SOURCE enabled (issue 1975)

**Full Changelog:** https://github.com/xrootd/xrootd/compare/v5.5.4...v5.5.5

5.5.4

- **Minor bug fixes**
**[SSI]** Avoid file system+SSI feature interference that caused problems
**[Server]** Fix dropped connections when link is reused (issue 1928)
**[Server]** Limit max number of sockets in poller (issue 1962)
**[Tests]** Fix intermittent failure of SocketTest
**[XrdApps]** Fix crashes and deadlocks in xrdreplay tool (issue 1937)
**[XrdCl]** Remove interference between sessions in the client (issue 1942)
**[XrdCrypto]** Allow ASN1 GeneralizedTime in certificates (issue 1969)
**[XrdCrypto]** Fix handling of daylight savings time (issues 985, 1955)
**[XrdHttp]** Avoid sending empty headers in the HTTP response
**[XrdHttp]** Clear digest header between requests (issue 1956)
**[XrdHttp]** Fix for HTTP requests with open-ended byte range
**[XrdHttp]** Fix handling of SSL shutdown during cleanup (issue 1967)
**[XrdHttp]** Fix parsing of configuration with weighted checksums (issue 1944)
**[XrdHttp]** Only call ERR_print_errors() if an error occurred
**[XrdPfc]** Fix HTTP request failures with direct read mode enabled
**[XrdTls]** Fix intermittent clients disconnections on login (issue 1952)

- **Miscellaneous**
**[XrdHttp]** Map authentication failure to HTTP 401 instead of 500
**[XrdSecztn]** Enable ZTN plugin by default


**Full Changelog**: https://github.com/xrootd/xrootd/compare/v5.5.3...v5.5.4

5.5.3

+ **Minor bug fixes**
**[Pfc]** Add missing if-error for a rare direct-read error trace
**[Server]** Avoid a race condition during deferred file close
**[XrdCms]** Fix compiler warning for potentially uninitialized variables
**[XrdCms]** Remove extraneous character from error output (issue 1501)
**[XrdHttp]** Support user-provided script for computing checksums
**[XrdPosix]** Add missing include

+ **Miscellaneous**
**[RPM]** Add g++ as build dependency

https://github.com/xrootd/xrootd/compare/v5.5.2...v5.5.3

5.5.2

+ **Major bug fixes**
**[Python]** Avoid crash during prepare call
**[TLS]** XrdTlsContext: Recreate session cache in the Clone() method.
**[XrdCl]** Be sure to only read the header of kXR_status messages at first
**[XrdCl]** Ensure URL::GetChannelId returns an Id which can be parsed again as a url
**[XrdCl]** Fix regression in ZIP CD parsing.
**[XrdHttpTPC]** Fixes the HTTP TPC PULL transfer issue when authentication is necessary to perform a transfer
**[XrdHttpTPC]** Fix file size request failure due to missing configuration of the server CA before calling the HEAD request
**[XrdOuc]** Fix checksum verification in XrdOucPgrwUtils::csVer
**[XrdSecgsi]** Fix server crash with OpenSSL 3.x (issue 1877)

+ **Minor bug fixes**
**[Server]** Fix a short writev recovery case
**[Server]** Correct formatting when displaying the SecEntity structure.
**[Server]** Make sure Mkdir returns a negative code for an EEXIST error
**[Server]** Follow RFC for multiple checksums in HTTP (issue 1707).
**[XrdApps]** Fix small memory leak when checksum fails
**[XrdCl]** xrdfs: unify rm output on error (issue 1885)
**[XrdCl]** AtLeastPolicy: correctly return the status
**[XrdClHttp]** Link against XrdUtils for XrdOucCRC::Calc32C symbol
**[XrdHttp]** Follow RFC checksum requirements in XRootD HTTP
**[XrdSecgsi]** Avoid nullptr dereference in XrdSecProtocolgsi::ClientDoInit
**[XrdVoms]** Fix handling of VOMS attributes when role is empty

+ **Miscellaneous**
**[Apps]** Cleanup xrdcp help information.
**[CMake]** Use upstream FindOpenSSL.cmake
**[CMake]** Make switches for server-only options dependent on XRCL_ONLY=FALSE
**[Macaroons]** Implement XrdSciTokensHelper interface for macaroons
**[Pss]** Convert leftover print statement to debug action
**[Python]** Use setuptools over setuptools._distutils.core
**[XrdCl]** xrdcp: extended of parallel copy jobs to 128.
**[XrdOssCsi]** Fix build failure with GCC 13
**[XrdPosix]** Fix build failure due to possible large memory allocation

https://github.com/xrootd/xrootd/compare/v5.5.1...v5.5.2

Page 3 of 5

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.