2025年4月13日リリース
Gfarm 2.8.7をリリース

公開内容

Gfarmファイルシステム
Version 2.8.7

Gfarm 2.8はメジャーアップグレードで以下の機能が含まれています。更新には config-gfarm-update –update が必要となります。このバージョンに更新していただくことをお勧めします。

  • TLSによるセキュアな通信
  • SASL (XOAUTH2, PLAIN, ANONYMOUS) やKerberosなどの新しい認証方式
  • マルチテナント機能
  • gfcp, gfconcat, jwt-parse などの新しいコマンド

アップデート履歴

Release note for Gfarm 2.8.6 [2025.4.11]

Bug fix
  • gfs_pio_sendfile(), gfs_pio_recvfile() – fix an issue that prevented transfer of files larger than 2,147,479,552 bytes to/from local storage

Release note for Gfarm 2.8.6 [2024.12.16]

New environment variable
  • GFARM_SASL_USER, GFARM_SASL_PASSWORD, GFARM_SASL_MECHANISMS, GFARM_SASL_REAML
Updated feature
  • gfptar – -update & –append options & many other enhancements, see the manual page of gfptar(1) or gfptar –help.
  • gfptar – reduce memory consumption
  • adjust log level
Bug fix
  • gfptar – fix issues of file names containing sharps & semicolons, & long multi-bytes file names
  • gfptar – fix possible stall when I/O error occurs
  • gfjournal – fix assersion failure with -l option, introduced in the version 2.8.0
  • gfsd – fix noisy error log if inter-gfsd connection is encrypted [#1164]

Release note for Gfarm 2.8.5 [2024.9.4]

New configuration directive
  • log_tls_verbose to display verbose messages in TLS
  • metadb_backend_sync_commit_at_initialization to disable asynchronous commit at initialization.
Updated feature
  • gfrm – -v option to print file names to be deleted
  • gfmd – improve the startup time by asynchronous commits to flush uncommitted journals
  • improve log messages in TLS & SASL authentication
  • log related directives, log_level, log_message_verbose_level, log_auth_verbose, log_tls_verbose, can be modified by gfstatus in runtime
Bug fix
  • gfpcopy – preserve times when the file size is larger than 1 GiB by default, introduced in the version 2.8.0

Release note for Gfarm 2.8.4 [2024.3.26]

Updated feature
  • gfmd – adjust log level
Bug fix
  • gfmd – fix possible segfault, introduced in the version 2.8.1

Release note for Gfarm 2.8.3 [2024.2.20]

Updated feature
  • gfperf – allow new authentication methods. support PHP7 or later
Bug fix
  • When SASL authentication fails, do not proceed to the next authentication method

Release note for Gfarm 2.8.2 [2023.12.30]

Bug fix
  • gfmd – synchronous slaves may be recognized as asyncronous slaves, introduced by the version 2.7.21

Release note for Gfarm 2.8.1 [2023.12.14]

New configuration directive
  • protocol_compat – use older version of protocols. specify 2.7.13 to access older servers in shared secret authentication [#1153]
New utility
  • jwt-parse – display a JSON Web Token & check expiration
Documentation
  • SETUP & Gfarm-FAQ – update for Gfarm 2.8
  • user/auth – SASL (OAuth2) authentication in TLS
Updated feature
  • gfptar – ignore errors as the original tar behavior [#1162]
  • gfmd – create file replicas first for files that fail to create file replicas on file close [#1160]
  • libgfarm – recover backward compatibility in GSI
Bug fix
  • gfptar – fix runtime error "release unlocked lock"
  • gfarmbb – fix gfarmbb start stops
  • gfhost – may fail with segmentation fault [#1158]
  • libgfarm – SASL client-side authentication is not thread-safe [#1157]
  • libgfarm – gfarm_humanize_number_to_int64() may fail
  • build directory feature in Make is broken
  • unconfig-gfarm.sh, unconfig-gfsd.sh – fix -t option
  • gfarm-gridftp-dsi does not work since Gfarm 2.8.0 [#1155]

Release note for Gfarm 2.8.0 [2023.9.3]

Update note
  • this release requires config-gfarm-update –update
New feature
  • Transport Layer Security (TLS) for secure communication
  • TNew authentication methods – SASL (XOAUTH2, PLAIN, ANONYMOUS) & Kerberos
  • TMultitenant support
New command
  • gfcp – copy a file in parallel
  • gfpconcat – concatinate files in parallel
New authentication method
  • sasl_auth, sasl – SASL (XOAUTH2, PLAIN, ANONYMOUS) authentication in TLS. After the authentication, sasl_auth uses a plain socket, while sasl uses TLS secure connection.
  • tls_sharedsecret, tls_client_certificate – shared secret & client certificate authentications in TLS. Afther the authentication, both uses TLS secure connection.
  • kerberos_auth, kerberos – Kerberos authentication. After the authentication, kerberos_auth uses a plain socket, while kerberos uses Kerberos encrypted connection.
New configuration directive
  • auth_trial_order – specify authentication order
  • sasl_mechanisms, sasl_user, sasl_password – for SASL authentication
  • tls_cipher_suite, tls_ca_certificate_path, tls_ca_revocation_path, tls_ca_peer_verify_chain_path, tls_certificate_file, tls_certificate_chain_file, tls_key_file, tls_allow_no_crl, tls_key_update, tls_build_chain_local, tls_proxy_certificate, tls_security_level – for TLS secure communication
Documentation
  • SASL authentication & secure communication with TLS
Updated feature
  • gfpcopy – -t option for parallel copy of large files. Default is 2.
  • gfpcopy – -T option to specify the threshold for large files. Default is 1G.
  • gfuser – -A option to specify a global name for each authentication method
  • gfuser – -L option to display more user information
  • gfstatus – -S option to display static settings
Bug fix
  • race condition about GFM_PROTO_CLOSE_WRITE_V2_4 [#1126]
矢印アイコン