release-notes-6.2

HTML header: <title>dCache 6.2 Release Notes</title>
             <!--#include virtual="/template/default-head.shtml" -->
             <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
             <!-- Bootstrap -->
             <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css"
                   integrity="sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7" crossorigin="anonymous"/>
             <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap-theme.min.css"
                   integrity="sha384-fLW2N01lMqjakBkx3l/M9EahuwpSfeNvV63J5ezn3uZzapT0u7EYsXMjQV+0En5r" crossorigin="anonymous"/>
             <!--link type="text/css" rel="stylesheet" href="jquery.tocify.css" /-->
             <style type="text/css">
             h5 {
                 font-size: 15px;
                 font-style: italic;
                 margin-top: 20px;
             }
             body {
                 padding-top: 20px;
             }
             @media (max-width: 767px) {
                 #toc {
                     position: relative;
                     width: 100%;
                     margin: 0px 0px 20px 0px;
                 }
             }
             @media print {
                 #toc {
                     display: none;
                 }
             }
             </style>

<div class="container">
<div id="banner">
   <div id="bird_large">
      <img src="/images/dcache-banner.png" class="bird"></img>
   </div>
   <div id="sidebar-b">
      <span class="dcache-nav-bar">
      <a href="/index.shtml">home</a>
      |
      <a href="/news.shtml">news</a>
      |
      <a href="/manuals/index.shtml">documentation</a>
      |
      <a href="/downloads/IAgree.shtml">downloads</a>
      |
      <a href="/feedback.shtml">feedback</a>
      |
      <a href="/manuals/googlesearch.shtml">search</a>
      |
      <a href="/imprint.shtml">imprint&#160;</a>
      </span>
   </div>
</div>
<div id="content">

<div class="row">

<div class="page-header">
<h1>What's new in dCache 6.2<br/>
<small>Release notes</small></h1>
</div>

## Highlights

 - Improved pool startup time with BerkeleyDB medadata repository
 - Basis support for extended attributes
 - Java 11 runtime required
 - TLS support for xrootd
 - SciToken support with XRootD
 - New telemetry service
 - Running dcache domains as systemd services for RPM based distros
 - The Cleaner cell may be run in high availability mode

## Incompatibilities

 - Minimal PostgreSQL version is 9.5
 - From now on dCache requires Java 11 for runtime
 - dCache now requires ZooKeeper version 3.5
 > NOTE: the ZooKeeper server configuration format has changed, the old one will lead to logged warnings in System cell on startup: `Invalid config event received:`
 - The systemd dcache.service replaced by dcache.target
 - Dropped compatibiity with EGEE rpms
 
### Note:

By increasing the required Java runtime version to 11, a new set of
warnings is logged on startup, such as:

```
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by [...]
WARNING: Please consider reporting this to the maintainers of [...]
WARNING: Use --illegal-access=warn to enable warnings of further illegal
reflective access operations
WARNING: All illegal access operations will be denied in a future release
```

They are generated by third party libraries which use a type of reflection
that will no longer be supported in future Java releases. These libraries
are expected to be updated in the future.
This does not affect functionality.


## Acknowledgments

(tbd, this section uses markdown formatting)


## Release 6.2.49

### gplazma2-grid

An empty requires field in IGTF policy is now accepted. Files with invalid or unexpected policies are ignored.


### Changelog 6.2.48..6.2.49

<!-- git log 6.2.48..6.2.49 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[84cc8c49aa](https://github.com/dcache/dcache/commit/84cc8c49aa1e70edc910a86b3098b9d854848a92)
:   [maven-release-plugin] prepare release 6.2.49

[88d11eed37](https://github.com/dcache/dcache/commit/88d11eed372b5bd3167dce14329aacbbe7567e4b)
:   gplazma2-grid: invalid IGTF policy file should fail with ParserException

[035d8fc6d5](https://github.com/dcache/dcache/commit/035d8fc6d5c8c78aedc0d3c807057dee3e1db5f0)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.48

### xrootd4j

A potential for DOS in xrootd write was fixed.


### Changelog 6.2.47..6.2.48

<!-- git log 6.2.47..6.2.48 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[0f9134f28f](https://github.com/dcache/dcache/commit/0f9134f28fed45696f3eb25f3bcdd07141f3e290)
:   [maven-release-plugin] prepare release 6.2.48

[d54ec67766](https://github.com/dcache/dcache/commit/d54ec67766a15b84d7fde4e2a03b1b6559f563db)
:   pom.xml: update to latest xrootd4j bugfix

[f2e1c22e67](https://github.com/dcache/dcache/commit/f2e1c22e676965f575fee1a3464bc27d9193bb51)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.47

### frontend

Anonymous access receives a 401 error and doesn't trigger a stack-trace
when unlimitedVisibility is set to false.

### pool

A bug is fixed where the checksum calculation would fail for empty
files.


### Changelog 6.2.46..6.2.47

<!-- git log 6.2.46..6.2.47 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[c7eb0eb98f](https://github.com/dcache/dcache/commit/c7eb0eb98f61420133e207ed1fcd97b531ceb7a7)
:   [maven-release-plugin] prepare release 6.2.47

[ae1901aaa6](https://github.com/dcache/dcache/commit/ae1901aaa619defeb6beb26e208181fc099a9da4)
:   dcache-frontend: protect against RuntimeError in case of denied anonymous access

[433c089118](https://github.com/dcache/dcache/commit/433c0891188de13a34d555d752719d278155cf86)
:   pool: don't treat an empty file as a sparse file

[543750af21](https://github.com/dcache/dcache/commit/543750af2191b1fcdbdf0a6001e7a8c1312c09ae)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.46

### debian

Added explicit dependency on rsyslog for debian packages so there are no
errors during installation.

### info

The delay between messages sent by info was increased to reduce log messages of "DGA {...} triggering too quickly".

### pool

If the scrubber state file is empty, scrubber will now log a more
helpful error message and proceed scrubbing the pool.


### Changelog 6.2.45..6.2.46

<!-- git log 6.2.45..6.2.46 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[b2e85ba189](https://github.com/dcache/dcache/commit/b2e85ba189af2105b60e66a24297e49a8498c1b5)
:   [maven-release-plugin] prepare release 6.2.46

[8bc07b2d64](https://github.com/dcache/dcache/commit/8bc07b2d6460ce3a43bf1c9aa02bbc619ad5484a)
:   pool: improve handling empty saved state by scrubber

[3d291c54d1](https://github.com/dcache/dcache/commit/3d291c54d1a5a0a4d861f7727b91e36fb4344c5d)
:   dcache-xroot,pom.xml: bump xrootd4j to 4.3.1

[335c2b8d01](https://github.com/dcache/dcache/commit/335c2b8d015cb5fcdeb31bd85499f819eb96e674)
:   dcache-xroot: flesh out channel inactive and exception caught

[7a2a773261](https://github.com/dcache/dcache/commit/7a2a773261ea8e7e1825d8f9b3c33bb7984e2886)
:   info: increase delay between messages

[43fc1560a8](https://github.com/dcache/dcache/commit/43fc1560a8edf946ff46826a92a77f35807feeb0)
:   deb: add explicit dependency on rsyslog package

[e2001056ca](https://github.com/dcache/dcache/commit/e2001056caddd7c4e235d5bf792a14f602a05b60)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.45

### dcache

Improved documentation for kafka Producer  properties.


Improved error message for inexistent statistics path.

### dcache-xroot

The current relase Updated master xrootd4j to 4.3.0.


### frontend

NPE is fixed when SRR when space information is not available yet.

### xrootd

Rendezvous TPC without requiring a JWT token to be passed
by the third-party client is possible (again).


### Changelog 6.2.44..6.2.45

<!-- git log 6.2.44..6.2.45 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[ce13ea9f9c](https://github.com/dcache/dcache/commit/ce13ea9f9c4d595fe15f878f68c59d41f8d7d7f5)
:   [maven-release-plugin] prepare release 6.2.45

[5356036597](https://github.com/dcache/dcache/commit/5356036597bcfae428870aed73ec3598abed0206)
:   dcache:improve documentation for kafka properties

[b7816f31bc](https://github.com/dcache/dcache/commit/b7816f31bc2feac2f05b7547ed29054b6c8e0bdf)
:   added missing import statement to XrootdRedirectHandler

[cc9fe9c458](https://github.com/dcache/dcache/commit/cc9fe9c45891e4fb9dcbd654c3fbfdcdbeeace9a)
:   dcache-xrootd: fix TPC rendezvous to work with token authorization

[9074653311](https://github.com/dcache/dcache/commit/9074653311fcae23b9742313e372e8d7c39dd814)
:   frontend: fix NPE in SRR when space information is not available yet.

[4d87218ff8](https://github.com/dcache/dcache/commit/4d87218ff82d6800f03a4df0016f3a9263592f65)
:   dcache-xroot: update master xrootd4j to 4.3.0, and stable branches to next minor version

[552471dd34](https://github.com/dcache/dcache/commit/552471dd34ddf98e0680d71e73dea63eba11c694)
:   dcache-core: improve error message for inexistent statistics path

[298769c978](https://github.com/dcache/dcache/commit/298769c97888094235e38ba34f8ff93fb53b6ec8)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.44

Technical release

## Release 6.2.43

### pnfsmanager

Doors no longer allow a user to discover whether or not a file or
directory exists within directories they cannot access.

### pom

Updated spring libs to version 5.2.20, CVE-2022-22965


### Changelog 6.2.42..6.2.43

<!-- git log 6.2.42..6.2.43 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[ceb303f5e6](https://github.com/dcache/dcache/commit/ceb303f5e6ee44b512b4be385eaf09e81ed94d82)
:   [maven-release-plugin] prepare release 6.2.43

[f45fce2e15](https://github.com/dcache/dcache/commit/f45fce2e15b4160b14f3629983863e62134d22cd)
:   pnfsmanager: avoid leaking whether or not file exists

[1294a04939](https://github.com/dcache/dcache/commit/1294a049398a771d78ac504fb50e05ecffef871b)
:   pom: update spring libs to 5.2.20

[dd3d12ba71](https://github.com/dcache/dcache/commit/dd3d12ba7138734fc0b2a5eb871f60081b61db6c)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.42

### dcache-chimera

Cleaner batch delete exception has been fixed.


### frontend

A bug is fixed that inverted the property `frontend.srr.public=true`.
True means now `allow public access` and false does not.


### Changelog 6.2.41..6.2.42

<!-- git log 6.2.41..6.2.42 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[856047ab99](https://github.com/dcache/dcache/commit/856047ab998e1bae59859215d2ebe5c86f12efdf)
:   [maven-release-plugin] prepare release 6.2.42

[e6029f78a4](https://github.com/dcache/dcache/commit/e6029f78a45909b7b0c285afade876b2cba74084)
:   nearline-storage: fix request count on error path in AbstractRequest#failed

[c486249071](https://github.com/dcache/dcache/commit/c4862490717e5485de3f3dc5d818e37ee907a027)
:   nearline-storage: fix queued count when request initialization falied

[15916a5494](https://github.com/dcache/dcache/commit/15916a54947fa30490118b22208d2b29f0df4405)
:   pool: add bunch of unit tests for NearlineStorageHandlerTest

[b341519c19](https://github.com/dcache/dcache/commit/b341519c19b6086d29a8daf5d9a3c81a1d6db6c9)
:   frontend: fix problem with making SRR resources public

[3b9988ac97](https://github.com/dcache/dcache/commit/3b9988ac977337c1afd33d2450a78c59512ae51b)
:   dcache-chimera: fix cleaner batch delete exception

[3035152b24](https://github.com/dcache/dcache/commit/3035152b246184d57d1bdc8efb85aa4b77ff11a0)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.42

### dcache-chimera

Cleaner batch delete exception has been fixed.


### frontend

A bug is fixed that inverted the property `frontend.srr.public=true`.
True means now `allow public access` and false does not.


### Changelog 6.2.41..6.2.42

<!-- git log 6.2.41..6.2.42 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[856047ab99](https://github.com/dcache/dcache/commit/856047ab998e1bae59859215d2ebe5c86f12efdf)
:   [maven-release-plugin] prepare release 6.2.42

[e6029f78a4](https://github.com/dcache/dcache/commit/e6029f78a45909b7b0c285afade876b2cba74084)
:   nearline-storage: fix request count on error path in AbstractRequest#failed

[c486249071](https://github.com/dcache/dcache/commit/c4862490717e5485de3f3dc5d818e37ee907a027)
:   nearline-storage: fix queued count when request initialization falied

[15916a5494](https://github.com/dcache/dcache/commit/15916a54947fa30490118b22208d2b29f0df4405)
:   pool: add bunch of unit tests for NearlineStorageHandlerTest

[b341519c19](https://github.com/dcache/dcache/commit/b341519c19b6086d29a8daf5d9a3c81a1d6db6c9)
:   frontend: fix problem with making SRR resources public

[3b9988ac97](https://github.com/dcache/dcache/commit/3b9988ac977337c1afd33d2450a78c59512ae51b)
:   dcache-chimera: fix cleaner batch delete exception

[3035152b24](https://github.com/dcache/dcache/commit/3035152b246184d57d1bdc8efb85aa4b77ff11a0)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.41

### frontend

The property `frontend.srr.public=true|false` is added to
frontend to control SRR resource restriction. The default
value is false.

### ftp

The FTP cell is killed asynchronously now after the session terminates
so the door will remain responsive when many clients terminate their
FTP session concurrently.

### pool

HTTP-TPC transfers now prefer IPv6 address, if both endpoints support
it.


### Changelog 6.2.40..6.2.41

<!-- git log 6.2.40..6.2.41 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[3d046adaea](https://github.com/dcache/dcache/commit/3d046adaea48e7bf64263f1a70ff629758999b7a)
:   [maven-release-plugin] prepare release 6.2.41

[e17c43ee26](https://github.com/dcache/dcache/commit/e17c43ee261266eeb12857cb581888ec50389264)
:   frontend: make srr resources public

[9a18970585](https://github.com/dcache/dcache/commit/9a18970585f90a80fa59772c75cdeca1dd12a4a3)
:   ftp: kill cell asynchronously

[53a22e79ec](https://github.com/dcache/dcache/commit/53a22e79ec40e48cd7fbb34ecacff716e7527357)
:   pool: http-tpc prefer IPv6 address

[cc2b7dc69a](https://github.com/dcache/dcache/commit/cc2b7dc69ae121cd168fad8454d204e7a4022166)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.40

### common

A  bug was fixed  where dCache will no longer accept certificates issued by a
trusted CA after that CA updates their CA certificate while keeping the
public/private key-pair the same. This is typically done to change
something in CA's certificate.

There are places where dCache configuration requires an absolute path.
In some places attempting to use a relative path will yield an unhepful
`null` in the log file. This is now fixed, so a meaningful error
message is logged instead.

### pool

An NPE  on attempt by client to read from a broken replica is fixed now.

### webdav

The current release fixed handling of `webdav.authz.allowed-paths` so it no longer triggers a
NullPointerException.


### Changelog 6.2.39..6.2.40

<!-- git log 6.2.39..6.2.40 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[d0005970a3](https://github.com/dcache/dcache/commit/d0005970a30cfa8d325c67d6f8cea646c93a82ac)
:   [maven-release-plugin] prepare release 6.2.40

[693b91ff3b](https://github.com/dcache/dcache/commit/693b91ff3bf305f62af54a46abbdab577b9770d0)
:   pool: fix NPE on attempt by client to read from a broken replica

[0e635deadc](https://github.com/dcache/dcache/commit/0e635deadc6647d82c59fe0223a1b7d7bec7b9fd)
:   webdav: fix NPE if 'webdav.authz.allowed-paths' disallows a request

[d7a6ce1c65](https://github.com/dcache/dcache/commit/d7a6ce1c652ddc7060982ec030642a3f2f0b1429)
:   libraries: upgrade version of canl

[86e2494cf2](https://github.com/dcache/dcache/commit/86e2494cf2b0e44c0051b4d9a569e7fa6739f203)
:   common: provide reasonable error message if path is not absolute

[a8cc3908f1](https://github.com/dcache/dcache/commit/a8cc3908f15e381a692d43d0ca2e351d6e3c22d9)
:   [maven-release-plugin] prepare for next development iteration


## Release 6.2.39



### Pool 

The current relase fixed a problem where a file's tape location that used to exist in the
namespace and was subsequently removed can reappear if the file made
precious and flushed to tape.


### TransferManager

TransferManager  now logs bugs with the corresponding stack-trace,
making fixes any such bug easier.


### Changelog 6.2.38..6.2.39


[dda1e54814](https://github.com/dcache/dcache/commit/dda1e54814e73febc90dcc54b72d2c22dd6f447f)
:   [maven-release-plugin] prepare release 6.2.39

[89add8b061](https://github.com/dcache/dcache/commit/89add8b06144da6ecabbbc309430f6e9d35c091a)
:   pool: only send new URLs when flushing file

[2d55238b5d](https://github.com/dcache/dcache/commit/2d55238b5d05d0aaf453646aea506994235d9c8b)
:   TransferManager: log bugs with corresponding stack-trace

[10cc03a78b](https://github.com/dcache/dcache/commit/10cc03a78b780777ea6217e1ed1ddb5bf4bf9f65)
:   book: Add chapter about telemetry cell

[415450e545](https://github.com/dcache/dcache/commit/415450e5450b8d4b67046248ca570a48adb4c65b)
:   [maven-release-plugin] prepare for next development iteration


## Release 6.2.38

### gplazma

dCache will now reject WLCG-AuthZ-JWT profile tokens with a 'wlcg.ver'
claim that it does not support. Other tokens (e.g., SciTokens) are
unaffected by this change.

### loginbroker

This patch fixes SRM based upload or download where the client requests an
xroot-based transfer. The SRM door will now also consider any xroot
door with xrootd.security.tls.mode configured to OPTIONAL when
building a TURL targeting either xroot or xroots protocols.

### pnfsmanager

PnfsManager now has two commands, 'reset chimera stats' and 'reset stats',
to support resetting the gauge and counter statistics available through
the 'info' command.

dCache no longer leaks information about whether or not files exist when
using macaroons or Scitokens / WLCG AuthZ JWT profile tokens.

### webdav

The WebDAV door cannot send the HTTP response to some HTTP request if
the client has already disconnected. dCache no longer logs an error
that it cannot send the HTTP response.

A client that disconnects during a proxied HTTP transfer (GET or PUT) is
no longer logged in the WebDAV door's log file; instead, it is logged in
the cell's pinboard. The billing message is updated to make it clearer
what went wrong.


### Changelog 6.2.37..6.2.38

<!-- git log 6.2.37..6.2.38 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[7ce49ad6a9](https://github.com/dcache/dcache/commit/7ce49ad6a9e5d2e3c8328eca39f022b39a83e54b)
:   [maven-release-plugin] prepare release 6.2.38

[af03ea4434](https://github.com/dcache/dcache/commit/af03ea44341486f127ddd6ad79cc4b7555b41bbc)
:   skel: bump logback to 1.2.10

[af37119d08](https://github.com/dcache/dcache/commit/af37119d08894fc7720dfecb0b95671c591f5b88)
:   pnfsmanager: add support for resetting gauge and counter statistics

[42621fcea0](https://github.com/dcache/dcache/commit/42621fcea044df3e6a1ca11a529977e3dc46021f)
:   loginbroker: add support for multiple protocol families

[7787b87148](https://github.com/dcache/dcache/commit/7787b87148d78758c45ea01949dd17d8c02a3b7a)
:   webdav: better logging if client disconnects during proxied transfer

[7effd2874c](https://github.com/dcache/dcache/commit/7effd2874c03927d857474130fcf456b562f5cb2)
:   webdav: don't log an error if client disconnects before response sent

[5b80b3a77f](https://github.com/dcache/dcache/commit/5b80b3a77f864f759cf73d64154bff15ae00dc4f)
:   PnfsManager: check restrictions before resolving path to PNFS-ID

[b9e86fb9ca](https://github.com/dcache/dcache/commit/b9e86fb9ca8e299bef76e2eff90107715a8e5a87)
:   gplazma: scitoken validate 'wlcg.ver' claim

[a36f469d86](https://github.com/dcache/dcache/commit/a36f469d86b0ec0c94c5281c82adc7e837f54ad7)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.37

### common-security

A better error message is logged when attempting to use a password-protected credential:
`java.io.IOException: Error decrypting private key: the password is incorrect or the PEM data is corrupted.`

### webdav

The HTTP-TPC should have fewer failed transfers when faced with many
short-lived transfers.

It's now possible to access a summary of HTTP-TPC transfers and
configuration information via the WebDAV door's info admin command.


### Changelog 6.2.36..6.2.37

<!-- git log 6.2.36..6.2.37 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[6fdd3a905c](https://github.com/dcache/dcache/commit/6fdd3a905cea52398933ead85afe30e8b4f83b89)
:   [maven-release-plugin] prepare release 6.2.37

[ada24fcd35](https://github.com/dcache/dcache/commit/ada24fcd3537e5a526ea2e690992e49a384bab7d)
:   common-security: prevent NPE on password protected cert

[d625f40a4e](https://github.com/dcache/dcache/commit/d625f40a4e17b5ee5d10abf1d3f58fdcf0ecf874)
:   webdav: http-tpc update heuristics for failing transfer

[f06d3fa1af](https://github.com/dcache/dcache/commit/f06d3fa1af29cb96c459de79701a22b9af3726cc)
:   webdav: http-tpc provide status information in 'info' admin command

[27da72f0ed](https://github.com/dcache/dcache/commit/27da72f0ede7425f9b0507432c8b67fd9f371d40)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.36

### dcache

The RemoteTransferManager now  better describes the current state of a
transfer.

### gplazma

The `scitoken` gplazma plugin now supports extracting the `sub` and
`wlcg.groups` claims in the same fashion as the `oidc` plugin.

### pool

The current release fixed open queue flag when template defined by queue define class.




The current release fixed open queue flag when template defined by `queue define class` issue.

### webdav


The WebDAV door's `http-tpc ls` command now has the possibility to show
the current state of the transfer. This may be useful diagnosing
transfers spending a lot of time deciding on which pool to transfer
should take place.


### Changelog 6.2.35..6.2.36

<!-- git log 6.2.35..6.2.36 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[0328238eec](https://github.com/dcache/dcache/commit/0328238eeceabd853b3292aac6301214462f9ada)
:   [maven-release-plugin] prepare release 6.2.36

[ec93df914d](https://github.com/dcache/dcache/commit/ec93df914dcb3316eda6e4d3dac2af417929a199)
:   RemoteTransferManager: update state description

[abba94dfe7](https://github.com/dcache/dcache/commit/abba94dfe7febe3d6909a31b504ed148428a4990)
:   webdav: http-tpc add "prep" duration to 'http-tpc ls' command

[68a2218f06](https://github.com/dcache/dcache/commit/68a2218f06c8191f7a14867fa1a84d2db4c2ef50)
:   webdav: http-tpc show whether transfer is queued on pool

[d6ed8385da](https://github.com/dcache/dcache/commit/d6ed8385da70b27dcfb3ced20c340a6c35a64520)
:   webdav: http-tpc update 'http-tpc ls' command to include state

[841af52850](https://github.com/dcache/dcache/commit/841af52850646e8667594cec717d99ea55823fb7)
:   glazma: scitoken add support for additional principals

[8fcac9689f](https://github.com/dcache/dcache/commit/8fcac9689f560937d231676db0220cff115d09c1)
:   srr: limit publisched endpoints to GLOBAL scope

[599f1a341d](https://github.com/dcache/dcache/commit/599f1a341d4fff5c2aeb7bbb662d3dc8186fabcb)
:   Revert "frontend: fix handling of SRR requests over IPv6"

[e7a663a145](https://github.com/dcache/dcache/commit/e7a663a145662e75412f015fd2bcf027b2ba7664)
:   pool: adjust StorageClassContainerTest for dcache pre- 7.1

[90206858a7](https://github.com/dcache/dcache/commit/90206858a713d794b6920395e6e73aa7f9819ed2)
:   pool: fix open queue flag when template defined by `queue define class`

[ae3916b98d](https://github.com/dcache/dcache/commit/ae3916b98dd04f13c34e00767bcd379eddc6474d)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.35

### dcache-core


The current release fixed  NPE in TransferManager when no pool was selected before transfer is cancelled.

### frontend

The current release fixed handling of SRR requests over IPv6.

### gplazma


The scitoken plugin now supports OPs that publish their public keys
without any corresponding ID (i.e., no kid value).


### pinmanager


A more detailed pinmanager log entry is provided for pin requests that
are caught in a retry loop, and eventually time out.

### resilience

A runtime exception triggered by side effect of logging has been fixed.

### storagedescriptor



The script for generating SRR records (from the info service output) has
been updated. The field `lastupdated` has been adjusted to the correct
name `latestupdate`.



### webdav

A bug is fixed where HTTP-TPC PULL request can fail (under heavy load)
with the downloaded file being deleted, but dCache reports the transfer
as successful.


dCache now  provides a faster respones to the HTTP-TPC client (typically FTS)
should the door decide to fail a transfer.

The WebDAV door should be now  faster at accepting new transfers and faster
at handling transfer completions when handling many small transfers.


The HTTP-TPC support in the WebDAV door is now e more robust to high
number of transfers finishing concurrently.


### xroot


Now it is possible to support kXR_delete as a write request on the pool.

### xrootd4j

Library updates for xrootd4j which contains fix for Unix Protocol.


### Changelog 6.2.34..6.2.35

<!-- git log 6.2.34..6.2.35 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[cd05a920c8](https://github.com/dcache/dcache/commit/cd05a920c835bdb6142dc14c76ffc79a2d8499a9)
:   [maven-release-plugin] prepare release 6.2.35

[f48b03a893](https://github.com/dcache/dcache/commit/f48b03a8932582844bef54b712a1a3a9e6859e4e)
:   webdav: http-tpc improve throughput with short transfers

[d4b48a7161](https://github.com/dcache/dcache/commit/d4b48a7161a9f0ef37f39d3f581b15bb7a487250)
:   frontend: fix handling of SRR requests over IPv6

[94d1af20cb](https://github.com/dcache/dcache/commit/94d1af20cbffb89bbfbd7d2b75de7cb95c91979a)
:   webdav: http-tpc don't wait if door fails transfer

[d158aaf301](https://github.com/dcache/dcache/commit/d158aaf301818b1f5ce31b9e7cc999e42b25a97f)
:   webdav: http-tpc avoid resetting transfer state

[11ed3886a8](https://github.com/dcache/dcache/commit/11ed3886a899435996515b8663a7d82877c8c105)
:   dcache-core: fix NPE in TransferManager when no pool was selected before transfer is cancelled

[9388fa02cb](https://github.com/dcache/dcache/commit/9388fa02cb16a7fecbbaad309953b26e85a232fe)
:   resilience: fix runtime exception triggered by side effect of logging

[84deca3d27](https://github.com/dcache/dcache/commit/84deca3d27af61d0e0640f9f9ba897b7435b0369)
:   gplazma: scitoken add support for OPs that advertise keys without kid

[5941661529](https://github.com/dcache/dcache/commit/59416615297ea1654ef90c1263a55929171a9e50)
:   webdav: http-tpc move transfer finalisation off of message queue

[435261c4ba](https://github.com/dcache/dcache/commit/435261c4ba1acf93a8f674e3d68d8da881b8d4f6)
:   pom.xml: update xrootd4j dependencies to 4.2.5/4.1.6/4.0.11

[04f2272903](https://github.com/dcache/dcache/commit/04f2272903a4c0c1773c2fb0515f946fa2d96b99)
:   CanlContextFactory: throw FileNotFound for missing ca certs dir

[0097c289b1](https://github.com/dcache/dcache/commit/0097c289b13937b6a2e073b8486c8a29e3ccb207)
:   pinmanager: provide more details information on timeout

[f429b91125](https://github.com/dcache/dcache/commit/f429b9112531b9eed8f53716a95883683cd21a68)
:   storagedescriptor: fix element name to 'latestupdate'

[16f1aaf0fd](https://github.com/dcache/dcache/commit/16f1aaf0fd536bcef0afdd41cf5d6e52f950d073)
:   dcache-xroot: support kXR_delete as a write request on the pool

[da1e8dabc3](https://github.com/dcache/dcache/commit/da1e8dabc39faab6af3a5e5b25c75be28cf1a89a)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.34

### ftp

The FTP door now provides more succinct information on pinboard, should
use less CPU and take better advantage of the available cores.

### pnfsmanager

Attempts to create a file where the parent directory is either missing
or not a directory now provide clearer error messages.

### pool

The pool now provides more information for bugs reported as
java.lang.IllegalStateException: Handle is closed.

### webdav

The HTTP-TPC response is improved if a client attempts to pull a file
into a non-existing directory, or attempts to use an existing file as an
ancestor directory.

### xrootd

Improved exception handling for Xrootd.


### Changelog 6.2.33..6.2.34

<!-- git log 6.2.33..6.2.34 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[dbf2413c8e](https://github.com/dcache/dcache/commit/dbf2413c8eb47d6bb54915a7c727426cac431ba3)
:   [maven-release-plugin] prepare release 6.2.34

[df638f6c0b](https://github.com/dcache/dcache/commit/df638f6c0bafb9333b4b05f264901c69cd370424)
:   pool: provide more information when handle is double-closed

[b3fc7e18cd](https://github.com/dcache/dcache/commit/b3fc7e18cda63e87353b91ab8a27247ca28d5aa1)
:   dcache-xrootd: Alternate fix for client write to closed checksum channel

[4e182448f8](https://github.com/dcache/dcache/commit/4e182448f8cd91319a6683fa4ed1f51c78fa360d)
:   pnfsmanager: fix confusing error message.

[9d7dda31e7](https://github.com/dcache/dcache/commit/9d7dda31e7f07746983fff185ea26031cbf21611)
:   webdav: fix error handling for bad paths

[13cfb3a620](https://github.com/dcache/dcache/commit/13cfb3a620cdf844f9aca6711ddae21575f719e8)
:   ftp: switch to more reasonable logging of Subject

[6ef7512ab7](https://github.com/dcache/dcache/commit/6ef7512ab7f5bcc4630f4a929eb1dbac1740dd3e)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.33

### universal-spring-cell

This patch fixes a problem where a call to api/PoolManager returned 404
not found. The JSON serialized object is returned now as before.

### xrootd

The xrootd4j version was updated to 4.0.10 


### Changelog 6.2.32..6.2.33

<!-- git log 6.2.32..6.2.33 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[f2e6b97ff2](https://github.com/dcache/dcache/commit/f2e6b97ff26844d89c370b0492edf9b8d20de476)
:   [maven-release-plugin] prepare release 6.2.33

[e992fa127b](https://github.com/dcache/dcache/commit/e992fa127b91788c50d47b7d8dfaf0d737d87685)
:   pom.xml: bump to xrootd4j 4.0.10

[56a103196e](https://github.com/dcache/dcache/commit/56a103196e7ae4c0292466f6c29f63644378a9de)
:   universal-spring-cell: allow for serialization of Optional

[83c1c32f4f](https://github.com/dcache/dcache/commit/83c1c32f4f202f3d17d2b2861a3d585f463636ec)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.32

### billing


Billing will no longer throw a NullPointerException with certain
information from an NFS door serving an NFSv3 client.



### ftp


Now  file sizes for LIST output in bytes is displayed.



The FTP door should be more robust against a (currently unknown) bug
that results in the ftp session attempting to send progress queries to
the pool after that is no longer possible.




### gplazma



The banfile and scitoken plugins, and the two admin commands test login and explain login are updated to accept the username: prefix
(e.g., username:paul). The prefix user: continues to work but is
now deprecated.

### pool


The current release improved error messaging if a setup file badly
configures an HSM instance.


A bug is fixed where removing a create hsm statement in a pool's setup
file and running the reload command kills the pool.


### xroot


The documentation  concerning TLS properties has been fixed.








### Changelog 6.2.31..6.2.32

<!-- git log 6.2.31..6.2.32 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[0cbce3329c](https://github.com/dcache/dcache/commit/0cbce3329cfbc3b0ad38ad9cab644dffe682ca78)
:   [maven-release-plugin] prepare release 6.2.32

[07b0d2977e](https://github.com/dcache/dcache/commit/07b0d2977ebbacf9e1e32da3a04ae15388fb29d0)
:   dcache-xroot, book, skel: fix documentation concerning TLS properties

[5f2ebb2fe9](https://github.com/dcache/dcache/commit/5f2ebb2fe9cbd295dcc779c4da76e076abec0657)
:   bootstrap: fix two problems with how bugs are reported on startup

[a399cadf23](https://github.com/dcache/dcache/commit/a399cadf2357f719e811893e2baa85efb714a9e3)
:   ftp: try harder to ensure any timer tasks are cancelled

[31c80a16fb](https://github.com/dcache/dcache/commit/31c80a16fbd870448ac666ddf690f49bbc78c095)
:   pool: removing hsm with `reload` command kills pool

[e49357d577](https://github.com/dcache/dcache/commit/e49357d577d7004480f341552d8eaac5c1782e3a)
:   gplazma: switch from `user:` to `username:`

[504eeda1ba](https://github.com/dcache/dcache/commit/504eeda1baee31856fe0382614debfe069c39ac5)
:   ftp: show file sizes for LIST output in bytes

[99f40a20d2](https://github.com/dcache/dcache/commit/99f40a20d2fe02e10c8c593a04d2c198bbf3e78c)
:   util/frontend: change transfer rate to double

[5fac1c3c5c](https://github.com/dcache/dcache/commit/5fac1c3c5c9d989fe2f7b703ca4c48fadcd76012)
:   bootstrap: don't hide bugs in 'create' command

[06eed198e2](https://github.com/dcache/dcache/commit/06eed198e2ec157cba6628867f7803386b23e021)
:   ftp: ensure cell is killed even if shutdown triggers a bug

[f7f6f04770](https://github.com/dcache/dcache/commit/f7f6f0477061d32ae8d817fd74314113bbb34cec)
:   billing: fix NPE in billing from NFSv3 message

[2f683966e4](https://github.com/dcache/dcache/commit/2f683966e49951a73984ecf9615c5dea8e9dbfbd)
:   pool: improve error message on badly configured hsm instance

[5e54ee71b5](https://github.com/dcache/dcache/commit/5e54ee71b552c80fd75e7d226048550ddd4b688b)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.31

### acl


The group ACEs now  apply to desired group instead of to a users with the
same numeric id.

### gplazma

The `WLCG Common JWT Profiles` (v1.0) describes the `wlcg.groups` claim
for expressing group-membership. We are increasingly seeing this being
used as the OIDC equivalent to the group-membership expressed through
the VOMS extension.

During the auth phase of the login process, the group membership
information contained in a `wlcg.groups` claim from the OP is now
available as OpenIdGroupPrincipal principals. Subsequent plugins (e.g.,
multimap) may be used to convert these principals to more directly
useful principals.

### webdav

dCache now responds with a 507 (Insufficient Storage) on GET request if
dCache must do a pool-to-pool internal-transfer or stage the file but no
pools have sufficient free capacity to support this.


### Changelog 6.2.30..6.2.31

<!-- git log 6.2.30..6.2.31 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[7b81d48510](https://github.com/dcache/dcache/commit/7b81d4851020ee6d84bd6f007fb70c9acc9b78a0)
:   [maven-release-plugin] prepare release 6.2.31

[1732b4a2aa](https://github.com/dcache/dcache/commit/1732b4a2aa04fda9a396e6d07b9422ae7f26b53c)
:   all: reformat code using Google Style Sheet

[7045c15fce](https://github.com/dcache/dcache/commit/7045c15fce8f41c202207f214ca3d5a029fd5683)
:   acl: set IDENTIFIER_GROUP flag if WHO is GROUP or OWNER_GROUP

[17ef1d8a3a](https://github.com/dcache/dcache/commit/17ef1d8a3a5ed988fdc1ff6bf0c3f71fe9985b24)
:   webdav: return 507 if insufficient space on GET request

[84e995f98e](https://github.com/dcache/dcache/commit/84e995f98ecfed11153293f4f33d89cf267531c2)
:   gplazma: scitoken make ExemptFromNamespaceChecks principal optional

[4f3fa2bd4c](https://github.com/dcache/dcache/commit/4f3fa2bd4c51630d124fca7253f752d4a21fa5e9)
:   gplazma/pnfsmanager: update namespace so scitoken 'scope' takes priority

[669f19df79](https://github.com/dcache/dcache/commit/669f19df7929b9e93db8e3ed6ac95e42c74aacb8)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.30

### gplazma

During the auth phase of the login process, the group membership
information contained in a 'wlcg.groups' claim from the OP is now
available as OpenIdGroupPrincipal principals. Subsequent plugins (e.g.,
multimap) may be used to convert these principals to more directly
useful principals.


### pool

A rare NullPointerException for HTTP-TPC transfers is fixed.



### Changelog 6.2.29..6.2.30

<!-- git log 6.2.29..6.2.30 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[d372de5fa1](https://github.com/dcache/dcache/commit/d372de5fa161253838a249b4da5d679523fb8295)
:   [maven-release-plugin] prepare release 6.2.30

[8481729ace](https://github.com/dcache/dcache/commit/8481729ace7fd4f3b873fbca4ffd158782df534b)
:   gplazma: oidc add support for the 'wlcg.groups' claim

[e664995cdd](https://github.com/dcache/dcache/commit/e664995cdd562c6df97b98e17384f35a4ec3196c)
:   pool: http-tpc fix NPE when monitoring network traffic

[3d87507028](https://github.com/dcache/dcache/commit/3d87507028157a193df6e562c6af297729fa2cf5)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.29

### frontend

SRR returns data now with official json schema

### webdav

Fix how sym-links are shown in the static HTML (web-browser) view from
the WebDAV door.


### Changelog 6.2.28..6.2.29

<!-- git log 6.2.28..6.2.29 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[41c3d128d1](https://github.com/dcache/dcache/commit/41c3d128d161b823ae33a1d2bd39c78c9fb6f95b)
:   [maven-release-plugin] prepare release 6.2.29

[24d79fdd76](https://github.com/dcache/dcache/commit/24d79fdd765c568ac4fc3ceabce502d997eb7379)
:   frontend: add service to provide Storage resource reporting

[dc6442a9ae](https://github.com/dcache/dcache/commit/dc6442a9aea8680923b4a5a5d7eed4df598ea2b2)
:   webdav: update representation of symbolic links in HTML page

[f5c36a56ea](https://github.com/dcache/dcache/commit/f5c36a56ea6b2cc376ad9a0f9e555265e860ec9a)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.28

### dcache-xroot

The next release of xrootd4j is used now, which improves handling TPC
read requests.

### namespace-chimera

There are less operations on the database now as the filesize doesn't
get updated after a file was flushed to tape.

### pool, webdav

The webdav admin interface has been extended to include monitoring
information about on-going transfers. The command can optionally show
pool information if transfer-manager is update; updating
transfer-manager is not required by this change. Percent transfer
progress for PULL requests is optionally available if pools are updated;
updating pools is not required by this change.


### Changelog 6.2.27..6.2.28

<!-- git log 6.2.27..6.2.28 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[6be706def4](https://github.com/dcache/dcache/commit/6be706def4c3032b49e9ba6f4d7bfaec32eafc6e)
:   [maven-release-plugin] prepare release 6.2.28

[c6e80f9c4a](https://github.com/dcache/dcache/commit/c6e80f9c4aca4da8a5bc11fdeb5ea9761bbc755c)
:   namespace-chimera: ignore file size update on file flush

[b86f7dfcf7](https://github.com/dcache/dcache/commit/b86f7dfcf7a356d779c4019c86a7cbcf27af2fbc)
:   webdav: add 'http-tpc ls' admin command

[be2289ff80](https://github.com/dcache/dcache/commit/be2289ff805f1cd154a51d74d2b80c76847f35e6)
:   pool/webdav: http-tpc add RemoteConnections perfmarker metadata

[f1b2c262b0](https://github.com/dcache/dcache/commit/f1b2c262b09f7c82f25203dd5246cce0ea50cd36)
:   dcache-xroot: bump dependency to next xrootd4j release

[e57b3578cd](https://github.com/dcache/dcache/commit/e57b3578cde41d3ac2470d6ac61776213ca8ad53)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.27

### pnfsmanager

Fixed a problem where dCache accepts a HSM script that, when called to
flush a file, returns successfully but without providing any URIs on
stdout. Such requests are considered failed, with the flush request
blocked until retried explicitly with the queue activate PNFSID
admin command.


### pool

The Kafka message emitted when a file is flushed to tape or staged back
from tape now includes the locations field: a JSON array of JSON
Strings, where each JSON String is a tape-location URL.
For flush operations, this is the (potentially empty, potentially multiple)
list of URLs returned by the HSM instance.
For stage operations, this is the (potentially empty, potentially multiple)
URLs that match the selected HSM instance. Both messages now also
describe a hsm JSON Object that contain the HSM type, HSM instance name,
and HSM provider.


### srmmanager

A race condition is fixed that, if triggered, results in a memory leak.
This leak can also affect the TURLs returned by SrmManager, where
out-of-date information about doors is used.



### Changelog 6.2.26..6.2.27

<!-- git log 6.2.26..6.2.27 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[ef08d9263e](https://github.com/dcache/dcache/commit/ef08d9263e7f17555c00d7a75ec1885871f75772)
:   [maven-release-plugin] prepare release 6.2.27

[2ed4135f2a](https://github.com/dcache/dcache/commit/2ed4135f2a60fe45db10a3b2194dd9cd206368a7)
:   srmmanager: fix race condition in LoginBrokerSubscriber

[616fea3eba](https://github.com/dcache/dcache/commit/616fea3eba40690aaf3ecf8e9c80af0acf002433)
:   pool/pnfsmanager: don't accept a non-Enstore flush without locations

[6528e45d8d](https://github.com/dcache/dcache/commit/6528e45d8da101c8b69abb9230357c0cc49f082f)
:   pool: update Kafka tape events to include additional information

[9863ed9322](https://github.com/dcache/dcache/commit/9863ed9322cd68e61b84d72d6e726c31abc7d727)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.26

### alarms

Clearer documentation for billing/alarms services regarding HA requirements.



### gplazma

dCache has a new session gPlazma plugin that is designed to be a viable
alternative to the StorageAuthzDB and KPWD plugins but with shorter
(hopefully less confusing) configuration, while also being more
flexible.


To support the removal of authzdb plugin, we should provide an easy way
for sites to migrate their existing configuration from using authzdb (as
a session plugin) to omnisession.

Sites now have a utility to help them migrating from authzdb to
omnisession.

Note: it is also possible to use the authzdb plugin as a mapping plugin.
This utility does not help in migrating that use to some alternative
solution.

To support the removal of authzdb plugin, we should provide an easy way
for sites to migrate their existing configuration from using authzdb (as
a session plugin) to omnisession.

Sites now have a utility to help them migrating from authzdb to
omnisession.

Note: it is also possible to use the authzdb plugin as a mapping plugin.
This utility does not help in migrating that use to some alternative
solution.


### skel

Whether a cell/service supports HA or not can
now be derived from the properties file (except
for doors).

Please see `<name>.cell.replicable`.


### srm


The access log file for SRM requests now includes the client-supplied
list of protocols, if any were provided.


### Changelog 6.2.25..6.2.26

<!-- git log 6.2.25..6.2.26 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[e01c39a7ba](https://github.com/dcache/dcache/commit/e01c39a7bae30476c09e567c87363a9b75c7a276)
:   [maven-release-plugin] prepare release 6.2.26

[7d560e0015](https://github.com/dcache/dcache/commit/7d560e0015c5d4916173fbf6e20690fd3919a30d)
:   rpm: add  dcache-convert-authzdb-to-omnisession into list of packaged files

[7252087e5c](https://github.com/dcache/dcache/commit/7252087e5c97072af5c106287ae8e885229d4ee7)
:   gplazma: add util to convert authzdb file to omnisession

[a78fc2594d](https://github.com/dcache/dcache/commit/a78fc2594dcf4557e286922c2e1c475fa54eeb5e)
:   alarms, billing: specify shared rdbms in the case of replicated service

[ed589449e9](https://github.com/dcache/dcache/commit/ed589449e98f63453816dde26d94b75462edbe0e)
:   skel: add explicit replicable property even when value is false

[82815edb7b](https://github.com/dcache/dcache/commit/82815edb7b0ec49466b19eb966c01714d3777e65)
:   gplazma: add omnisession plugin

[fd9179fab4](https://github.com/dcache/dcache/commit/fd9179fab48887ed80637e389d3c828de295db64)
:   srm: log transfer protocols in access log

[02a6d29785](https://github.com/dcache/dcache/commit/02a6d29785c18ee1e50792bc46835ad27ab0fbfd)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.25

### dcache-core


The old web pages claim the transfer size and speed are reported in KB and KB/s, although the actually used units are KiB and KiB/s. 
Reporting the correct unit is important for monitoring. This is now fixed.

### frontend

The current release fixed regression in generating swagger JSON for frontend's REST API.

### gplazma

dCache may now be configured so that the multimap `oidc` predicates
match the `sub` claim value from a specific OAuth2 Provider using the
format SUBVALUE@OP, where `OP` is the dCache-internal alias for the OP.
Existing multimap configuration continues to work, but admin is warned
to update the multimap configuration.


### Changelog 6.2.24..6.2.25

<!-- git log 6.2.24..6.2.25 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[63a0dcafe2](https://github.com/dcache/dcache/commit/63a0dcafe2efa93d353c616c0adca8f6819b1caa)
:   [maven-release-plugin] prepare release 6.2.25

[fc0932484a](https://github.com/dcache/dcache/commit/fc0932484a3c95ae6fcd250b2ec38db93b8e06a4)
:   gplazma: multimap now supports OP in 'oidc' predicate

[ec7329cb83](https://github.com/dcache/dcache/commit/ec7329cb83c867055170d8f6d4e2f4cbca3d10de)
:   frontend: bump swagger version to 1.6.2

[6458e8bb3c](https://github.com/dcache/dcache/commit/6458e8bb3c55282bc1b1c7f9c7c0d2b707dc0024)
:   dcache-core: correct reported units of transfer size and speed

[f901019cda](https://github.com/dcache/dcache/commit/f901019cda64664dc930294857735abd0511147c)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.24

### checksum

The policies map is now added to the JSON info object that is 
returned for checksum module information.


### Changelog 6.2.23..6.2.24

<!-- git log 6.2.23..6.2.24 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[4237fda233](https://github.com/dcache/dcache/commit/4237fda23395a92e4fb947d19be12b48c83645f1)
:   [maven-release-plugin] prepare release 6.2.24

[dfcb4a8221](https://github.com/dcache/dcache/commit/dfcb4a82213bcc28ff863e2cd79ffc4cd4dc3f96)
:   checksum-module: add missing map to JSON info

[25b46fa5d0](https://github.com/dcache/dcache/commit/25b46fa5d0d91a628ffa9bef444e5a286d0fd0d9)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.23

### xroot

The current release fixed the parsing to account for host/error pairs.


Upload transfer checksum failure is fixed and the gfal scenario now works.

### xrootd

xrootd4j is updated to new version which fixed problem with netty LogHandler slowing down TPC client
(cutting bandwidth by a factor of 10).




### Changelog 6.2.22..6.2.23

<!-- git log 6.2.22..6.2.23 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[30ea020a04](https://github.com/dcache/dcache/commit/30ea020a04a23ccbcb66fa136cb10771edae0951)
:   [maven-release-plugin] prepare release 6.2.23

[1291969a99](https://github.com/dcache/dcache/commit/1291969a99bcf0d34e98b049b82f427df746af0c)
:   dcache-xrootd: upgrade xrootd4j to 4.0.8

[203624c23e](https://github.com/dcache/dcache/commit/203624c23e294b39fff1ea3d6127b604d70e16a2)
:   dcache-xroot: parsing of 'triedrc' CGI lacks separation by optional comma

[cdd6404bea](https://github.com/dcache/dcache/commit/cdd6404bea76cd9bc31370425462efaca061bf48)
:   dcache-xroot: fix upload transfer checksum failure (stable branches)

[abe8a2b8e7](https://github.com/dcache/dcache/commit/abe8a2b8e7a76c222238b207bc87a3312ae42554)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.22

### ftp


Globus transfer agent is now able to create symbolic links.

### nfs

The current release introduced  `nfs.clientdb.config` property prefix to populate the
BerkeleyDB configuration and now 
    the nfs door is not picky about free disk space in /var/lib/dcache/nfs
and     the BerkeleyDB used as client store by nfs door can be configured
    with properties.


### pool

dCacheView now works for redirected transfers for non-anonymous data
access, provided the WebDAV door is using TLS encryption and is
configured with 'webdav.redirect.allow-https' set to 'true'. 


### poolmanager


A very rare race-condition is fixed that could be triggered if a pool
completes a stage or pool-to-pool request (to satisfy a client's read
request) immediately before dying.

### webdav

dCacheView is able to view and download files when authenticated and
when the WebDAV door proxies the transfer.


### Changelog 6.2.21..6.2.22

<!-- git log 6.2.21..6.2.22 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[2b3c319d6d](https://github.com/dcache/dcache/commit/2b3c319d6d80214e5b8a6a15080f69960d3813e0)
:   [maven-release-plugin] prepare release 6.2.22

[70b1a317d8](https://github.com/dcache/dcache/commit/70b1a317d8991b80d742e00469961e8578fa6ffd)
:   nfs: add possibility to configure BerkeleyDB client store

[c8027ca0c0](https://github.com/dcache/dcache/commit/c8027ca0c0cc8a856f50161e8cef6cd0984f6adb)
:   webdav: use Jetty's built-in support for CORS

[f63ba858c8](https://github.com/dcache/dcache/commit/f63ba858c87d04d110e1daed4c1886bb5a226318)
:   poolmanager: fix _waitingFor access outside of synchronized block

[2d7f00158c](https://github.com/dcache/dcache/commit/2d7f00158c993246e9f6062988d9efcaf8dac7b1)
:   ftp: add support for the SITE SYMLINK command

[129d87a583](https://github.com/dcache/dcache/commit/129d87a58391631ce79e9c0e1a5c1cb4be252f17)
:   pool: http allow client to send credentials when TLS is used

[5d3b1c0de5](https://github.com/dcache/dcache/commit/5d3b1c0de5d112a5ae05ac9335224a469b6bfd17)
:   dcache-chimera: use RemotePoolMonitor to discover file locality

[7de3af9df4](https://github.com/dcache/dcache/commit/7de3af9df47362a6751419c851c1d6ea9c671d7e)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.21

### frontend


frontend/api readers and writers always zero issue is fixed now

### gplazma

The LDAP plugin behaviuor now more closely follows that of other mapping
plugins. This allows deployments where LDAP is tried first and, if that
fails to identify the user, fall-back strategies are used.

### pool

The  pool size reporting when static/runtime config is not defined now is improved.


### Changelog 6.2.20..6.2.21

<!-- git log 6.2.20..6.2.21 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[f88fd1627e](https://github.com/dcache/dcache/commit/f88fd1627e523872d639e695772d2e94cfb487b2)
:   [maven-release-plugin] prepare release 6.2.21

[7ada2fef7e](https://github.com/dcache/dcache/commit/7ada2fef7ee85f7541dd4f026e2bf239392b7354)
:   gplazma: ldap throw exception if no principal is added

[91e75edacd](https://github.com/dcache/dcache/commit/91e75edacd727f9652229b48bc73f782cf9da188)
:   poolV4: fix reader/writer counts

[e29f378820](https://github.com/dcache/dcache/commit/e29f378820458a962bffe41dca9f16b529094a06)
:   pool: remove invalid test case of configured space

[8ffdfb69f7](https://github.com/dcache/dcache/commit/8ffdfb69f7ad5b90584304cd0c64465020389aa1)
:   pool: fix pool size reporting when static/runtime config is not defined.

[e0bcc3f4e6](https://github.com/dcache/dcache/commit/e0bcc3f4e67f0cdca1310f5206f49318215533b3)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.20

### dcache-xroot

The cirrent release fixed memory leak, race and other small issues with reconnect to pool.


### frontend

The `dcache-view.endpoints.webdav` property now overrides any
auto-discovered WebDAV endpoint, making explicit configuration easier.

### pnfsmanager



A regression is fixed the prevents creating a symbolic link.

### systemd

`dcache-generator` now successfully runs after restart.

### xrootd

xrootd4j is updated to 4.0.6.


The current relase has updated to xrootd4j library to 4.0.6.

The correct subject is used to access the path for both GSI and SciToken protocols.


### Changelog 6.2.19..6.2.20

<!-- git log 6.2.19..6.2.20 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[489a117972](https://github.com/dcache/dcache/commit/489a117972be75b7e380e6f5b47d7bc79692b38c)
:   [maven-release-plugin] prepare release 6.2.20

[2046a18e14](https://github.com/dcache/dcache/commit/2046a18e149071ac47b56ef13339dd665f5c176a)
:   pool: make sure that RepositoryChannel when createChannel detects error

[b4a55acb9b](https://github.com/dcache/dcache/commit/b4a55acb9b03e3f204748519aa7dfda68da17032)
:   update to xrootd 4.0.7

[22f919abd0](https://github.com/dcache/dcache/commit/22f919abd09c8aee8535ec3c12aa4a7117079599)
:   dcache-xrootd: update to xrootd4j 4.0.6

[fd9c6640ff](https://github.com/dcache/dcache/commit/fd9c6640ffbb16e39a36c4abac24de1f8a6b07ed)
:   frontend: bump version of dCacheView

[2a1a2c8bc0](https://github.com/dcache/dcache/commit/2a1a2c8bc0ae39e4c0c1ca20c3a3293abcba4a37)
:   pnfsmanager: fix NPE regression from 3dfed7e8b0

[2fdc1d9894](https://github.com/dcache/dcache/commit/2fdc1d989435a2e87ad33a9cae9d076cc3257517)
:   dcache-xroot: fix memory leak, race and other small issues with reconnect to pool

[e0b500e7b3](https://github.com/dcache/dcache/commit/e0b500e7b3a3a8b36dd45986f55a5550d86ac2cb)
:   dcache-xroot: store most recent login subject in door

[9d354f1fa1](https://github.com/dcache/dcache/commit/9d354f1fa159bd83131352e1856d184a8ba3e8b5)
:   frontend: bump dCacheView to v1.6.2

[c7fa0f6870](https://github.com/dcache/dcache/commit/c7fa0f6870378096214ff016b43f0dc8f43860d1)
:   systemd: fix generator run after reboot

[3a41bdc6eb](https://github.com/dcache/dcache/commit/3a41bdc6ebf356a4f330a6fb200f727d5071d9e2)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.19

### nearline-storage

The current release fixed  store cancel regression.

### pool

As in distributed system packet loss (due to timeout or re-connects)
can't be avoid, dCache retries many of requests. However, this is not
the case for mover redirects. If a door did not receive reqirect
information, then transfer will never happen.
This is now fixed and re-send redirect if client is not connected within 5sec.

### poolmanager

When poolmanager requests that a pool stage a file, the pool may return
the special error code HSM_DELAY_ERROR (10013). On receiving this
error, poolmanager suspends the request.

This is now fixed.


### Changelog 6.2.18..6.2.19

<!-- git log 6.2.18..6.2.19 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[780e7dcaad](https://github.com/dcache/dcache/commit/780e7dcaad07c1b73d4b01a4bd356e694f882ea1)
:   [maven-release-plugin] prepare release 6.2.19

[a53f00cca9](https://github.com/dcache/dcache/commit/a53f00cca981d4b96467a76b2e96234f41ab0f35)
:   nearline-storage: fix store cancel regression

[cb0388a2d2](https://github.com/dcache/dcache/commit/cb0388a2d237c367a5afda6dfe00c82857740d2d)
:   pool: re-send redirect if client is not connected within 5sec

[a1ad7f7e7a](https://github.com/dcache/dcache/commit/a1ad7f7e7a1f3053dd910c10d2eb5921fb31051c)
:   poolmanager: fix NPE if pool delays stage without giving a reason

[79ab2fd0f4](https://github.com/dcache/dcache/commit/79ab2fd0f4b8223c9f47101971314b6365c7d970)
:   nearline-storage: introduce  FlushRequest#getReplicaCreationTime

[c1e5a4aa6b](https://github.com/dcache/dcache/commit/c1e5a4aa6bf7ca94744641598f0bab9df6f45124)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.18

### pool

There are several cases when pool scans the various hsm queus:
 on mover start, to check load assumptions,  on heartbeat, to populate pool manager with load information,
 on `info` command, to report load numbers to admin interface of   dcache-view collectors

As this is O(n) operation, in case of a large queues those scans
might take seconds, which is unacceptable, especially wen starting
a new mover. 

This is now fixed and getting hsm start is O(1) and doesn't impact pools operation

### xrootd


Now the door will ignore `xrootd.enable.tried-hosts` property if property false instead of returning errror. 


### Changelog 6.2.17..6.2.18

<!-- git log 6.2.17..6.2.18 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[e428eb796f](https://github.com/dcache/dcache/commit/e428eb796f9775d14ad826ded7addceb77796124)
:   [maven-release-plugin] prepare release 6.2.18

[d98a894414](https://github.com/dcache/dcache/commit/d98a894414d504d3b9e4a33dff683ed85efad9b1)
:   pool: don't scan flush/restore/remove queue to get stats

[dddbab46f7](https://github.com/dcache/dcache/commit/dddbab46f7c0dcafdeb1ebfc0fdf28e498429ae6)
:   dcache-xroot: (door) ignore tried if property false instead of returning error

[2a333645c0](https://github.com/dcache/dcache/commit/2a333645c0d24b427fce3f69d3c1956b35b93290)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.18

### pool

There are several cases when pool scans the various hsm queus:
 on mover start, to check load assumptions,  on heartbeat, to populate pool manager with load information,
 on `info` command, to report load numbers to admin interface of   dcache-view collectors

As this is O(n) operation, in case of a large queues those scans
might take seconds, which is unacceptable, especially wen starting
a new mover. 

This is now fixed and getting hsm start is O(1) and doesn't impact pools operation

### xrootd


Now the door will ignore `xrootd.enable.tried-hosts` property if property false instead of returning errror. 


### Changelog 6.2.17..6.2.18

<!-- git log 6.2.17..6.2.18 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[e428eb796f](https://github.com/dcache/dcache/commit/e428eb796f9775d14ad826ded7addceb77796124)
:   [maven-release-plugin] prepare release 6.2.18

[d98a894414](https://github.com/dcache/dcache/commit/d98a894414d504d3b9e4a33dff683ed85efad9b1)
:   pool: don't scan flush/restore/remove queue to get stats

[dddbab46f7](https://github.com/dcache/dcache/commit/dddbab46f7c0dcafdeb1ebfc0fdf28e498429ae6)
:   dcache-xroot: (door) ignore tried if property false instead of returning error

[2a333645c0](https://github.com/dcache/dcache/commit/2a333645c0d24b427fce3f69d3c1956b35b93290)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.17

### nfs

Fixes regression introduced in 6.2.15.


### Changelog 6.2.16..6.2.17

<!-- git log 6.2.16..6.2.17 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[598ec78fb7](https://github.com/dcache/dcache/commit/598ec78fb7b4ce08cd3e2d448a0410d95825bcf1)
:   [maven-release-plugin] prepare release 6.2.17

[929340be36](https://github.com/dcache/dcache/commit/929340be36620fb853601447b322165dbc7c127d)
:   nfs: fix access to path before namespace info available

[243b3d4daa](https://github.com/dcache/dcache/commit/243b3d4daae1ef6b9dacf787d5b30a2cf3f16d30)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.16

### Changes affecting multiple services

Sometimes file checksums are missing in namespace. Transfer requiring checksum verification fails then with an error saying that "No checksums found", but doesn't log a stack trace server side anymore.

### dcache-xroot

During periods of heavy usage on a pool node, if I/O stalls during read, the xroot client may try to reconnect and continue reading. This release fixes a bug which fails the transfer on the attempted reconnect with a "uuid no longer valid" error (because the file mover has already been closed and removed).  Clients should now be able to resume reading the file on retry.


### Changelog 6.2.15..6.2.16

<!-- git log 6.2.15..6.2.16 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[ac73913b6b](https://github.com/dcache/dcache/commit/ac73913b6b1078236d18dfc7bbf4fd926bf632d8)
:   [maven-release-plugin] prepare release 6.2.16

[d4883ca2c3](https://github.com/dcache/dcache/commit/d4883ca2c3dcb600e99237e4c845fd10445774e2)
:   dcache-xroot: Allow client to reattempt open on pool when I/O stalls

[b4349ced2f](https://github.com/dcache/dcache/commit/b4349ced2f83b5e11b605276b68ab7c7b1e0b112)
:   check if checksums are present and throw CacheException if they are not

[41fc04fd04](https://github.com/dcache/dcache/commit/41fc04fd0462b798cd1ee812d6ab4eaa59db3ec6)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.15

### admin

The current release fixed  doors `login dump cache` admin command  to show the
information sent by the door along with the login result.

### common

Printing of bearer tokens is improved to provide better assurance that
bearer tokens are not leaked.

### gplazma

All login failures are now recoreded in pinboard as a single-line
summary, explaining why the login attempt failed.

### namespace

Now Path information available for all transfers.

### webdav

The current release fixed  a regression where dCache would complain about badly formatted IPv6
addresses, preventing those addresses from being included in the access
log files.

The current release fixed a regression where dCache would complain about badly formatted IPv6
addresses, preventing those addresses from being included in the access
log files.

### xroot

The current relase updated xrootd4j to 4.0.5 which fixes improper use of destination token when
contacting source server during third-pary transfer.




### Changelog 6.2.14..6.2.15

<!-- git log 6.2.14..6.2.15 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[5b5da688ad](https://github.com/dcache/dcache/commit/5b5da688ad6438f1ddb7291c04917929819e6e75)
:   [maven-release-plugin] prepare release 6.2.15

[c32494919a](https://github.com/dcache/dcache/commit/c32494919acbf17576370798ca1523eb4048ff1e)
:   dcache-xroot: update to xrootd4j-4.0.5

[8c6a6a96b1](https://github.com/dcache/dcache/commit/8c6a6a96b1f3a802521ce246485c5644b9d7f0c1)
:   webdav/frontend: fix IPv6 address logging

[34ee7f95f4](https://github.com/dcache/dcache/commit/34ee7f95f44e19a2a720f7de26465cbea099331f)
:   common: update how BearerToken is shown in Subjects#toString

[19cfc9d636](https://github.com/dcache/dcache/commit/19cfc9d6360bc710c56cc00a8a36faed8f2d7378)
:   authn: add missing hashCode and equals methods for PasswordCredential

[735fbe2210](https://github.com/dcache/dcache/commit/735fbe22108d6a35ee80c0de11d208a705d3b79b)
:   authn: fix "login dump cache" admin command output

[08b9944719](https://github.com/dcache/dcache/commit/08b994471997445779dc772ccc8d835245cbd60f)
:   gplazma: provide single-line summary in pinboard for each login failure

[827c6195e1](https://github.com/dcache/dcache/commit/827c6195e1b74290627420910ba95538138974e7)
:   authn: log failures in UnionLoginStrategy

[a18373b6be](https://github.com/dcache/dcache/commit/a18373b6be85530074746ff287e1288428455274)
:   authn: add missing hashCode and equals methods for BearerTokenCredential

[881ea70cbb](https://github.com/dcache/dcache/commit/881ea70cbba6151723dfde96d2f04b1750680b90)
:   common: Update BearerToken representation to include some information

[3264f7b4e2](https://github.com/dcache/dcache/commit/3264f7b4e2f1e80ed36f6ab2956129bcfb7f454b)
:   namespace: ensure that file's path always set on GetAttributes

[0d3261d6df](https://github.com/dcache/dcache/commit/0d3261d6df4891ea7cf061b1b9833874e253d2c2)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.14

### gplazma

dCache now supports OPs that assert group-membership with
eduPersonEntitlement claims (as described by AARC guideline G002). The
multimap plugin may be used to map these to corresponding group/gid
values

### webdav

Restarting transfermanager while there are ongoing HTTP-TPC transfers no
longer results in an endless loop, with transfermanager logging a
message every ~5 seconds per ongoing HTTP-TPC transfer.


### Changelog 6.2.13..6.2.14

<!-- git log 6.2.13..6.2.14 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[315ad704aa](https://github.com/dcache/dcache/commit/315ad704aab7c9938228b1ff235923d37037080d)
:   [maven-release-plugin] prepare release 6.2.14

[8f289b6d0c](https://github.com/dcache/dcache/commit/8f289b6d0c7416a7824d8658435a12f33e736e3f)
:   Revert "pool: do not update file size on flush"

[96bcb14900](https://github.com/dcache/dcache/commit/96bcb1490059fcce74fcca191ad5adbd33f6144d)
:   gplazma: add support for eduPersonEntitlement assertions

[e3d68154eb](https://github.com/dcache/dcache/commit/e3d68154eb7a39992f69be65032895e393fd5f74)
:   build(deps): bump version.jackson from 2.10.1 to 2.12.1

[d430a76b9b](https://github.com/dcache/dcache/commit/d430a76b9b732f962c489fec92e05e1de37048e0)
:   webdav-transfermanager: fail gracefully if transfermanager restarted

[544829d5ce](https://github.com/dcache/dcache/commit/544829d5ce3c0ea723dcae6c04de08795ddbb9ee)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.13

### biiling

The current relase fixed  unit info for bandwidth measurements in billing.properties (bytes/sec, not MiB/sec).

### frontend

Frontend now logs any time it returns 500 Internal Server Error to the
client.

dcache-view Previously displayed   MB/sec for transfer rate, but the
value is the old KB/sec. This is now improved and pages display the values advertised.


### pool

Less memory consumption by pool, especially on startup.

The current release assures  now  that  checksum scanner wiill mark files broken and sends alarm.


### webdav

An HTTP-TPC transfer will abort automatically if transfer-manager is
restarted, without waiting for the client (FTS) to time-out.


### Changelog 6.2.12..6.2.13

<!-- git log 6.2.12..6.2.13 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[c159dc6d54](https://github.com/dcache/dcache/commit/c159dc6d54fdcf60378f768a1c001ba2a3998b4b)
:   [maven-release-plugin] prepare release 6.2.13

[6c4faecd00](https://github.com/dcache/dcache/commit/6c4faecd00fd826adee673469bb58ad2f57986d2)
:   dcache-pool: Assure checksum scanner marks files broken and sends alarm

[e4e0bae712](https://github.com/dcache/dcache/commit/e4e0bae7121aea5e49cafd9114e7192f822bb25e)
:   pool: do not re-read storage info when creating CacheRepositoryEntry

[f17bfa3d4a](https://github.com/dcache/dcache/commit/f17bfa3d4a350454cdeb018aed6cb33170b77ad5)
:   webdav/transfermanager: fail gracefully on restart, for perf marker

[e644f58438](https://github.com/dcache/dcache/commit/e644f58438c668b6482017c14c86836129e7bcbf)
:   default: fix unit info for bandwidth measurements in billing.properties

[daa8b11173](https://github.com/dcache/dcache/commit/daa8b1117331d6a64f5b490f8347a6ad5d6f4dff)
:   frontend: create a log entry when we return 500 Internal Server Error

[98719cd6a3](https://github.com/dcache/dcache/commit/98719cd6a3bbbddd536b4885396cd6a438dcfb05)
:   pool: do not update file size on flush

[7da96d813a](https://github.com/dcache/dcache/commit/7da96d813a2f5f9602a2cd2e46eb314556bb441b)
:   dcache-frontend: change transfer rate to compute what it advertised

[660d88600b](https://github.com/dcache/dcache/commit/660d88600badf766f2c1d2575f78f22910b629c9)
:   pool: use soft reference to storage info object

[27370e09e4](https://github.com/dcache/dcache/commit/27370e09e4a3c05831bd49fd3166ca04dfe9ae6f)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.12

### book


A new section is added to the xrootd chapter explaining the need for
SAN extensions on the hostcert in the case of hostname aliasing.

### ftp

Globus transfer service can now list directories that contain incomplete
files, those that are still being uploaded.

The FTP no longer leaking sockets when dynamically calculating file
checksums (e.g., MD5). In practise, this issue only affects transfers
via the Globus transfer service.

The current release fixed  Globus transfer service directory listing for `medium` size
directories.

The current release fixed  Globus transfers hanging when `verify file integrity after transfer`
is enabled and the pool is not configured to calculate an MD5 checksum.

Honour the `ftp.net.internal` configuration property for dynamic
checksum calculation.


### Changelog 6.2.11..6.2.12

<!-- git log 6.2.11..6.2.12 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[3581765d10](https://github.com/dcache/dcache/commit/3581765d10ce01a2d7c3e10b6459c46581981ba4)
:   [maven-release-plugin] prepare release 6.2.12

[241581617b](https://github.com/dcache/dcache/commit/241581617b6440c8d44a4c2a7f390cea969043af)
:   ftp: do not leak sockets when calculating checksums dynamically

[a1a0a167e6](https://github.com/dcache/dcache/commit/a1a0a167e63cb74b190158f9365c885353c194bc)
:   ftp: add work-around to calculate MD5 for Globus

[16afc1af6b](https://github.com/dcache/dcache/commit/16afc1af6b025b419a5fc6231499e3f4a27a2423)
:   ftp: add place-holder file size work-around for Globus directory listing

[5d46fbe63f](https://github.com/dcache/dcache/commit/5d46fbe63f6a5484bac367f0db612049e0871d34)
:   rpm take build directory path into quotes

[c692f6da11](https://github.com/dcache/dcache/commit/c692f6da1152ad7adde5f6d282d3ec24f0706325)
:   ftp: fix MLSC support for medium-length directories

[825f517834](https://github.com/dcache/dcache/commit/825f5178346f14515c3d138c93e2d8cc88f3cb39)
:   ftp: fix on-the-fly checksum calculation

[3d592c7ea7](https://github.com/dcache/dcache/commit/3d592c7ea758a494decd04c1d16280ccbf60e630)
:   book: document host alias issue with xroot TPC

[f66725dbd4](https://github.com/dcache/dcache/commit/f66725dbd4955313f4e7172dd222439c386e0a6b)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.11

### nfs

The new version of nfs4j-0.21.1 fixed readdir reply size miscalculation for NFSv3.

### pool

The current release fix a problem where, under heavy load, redirected https transfers result
in garbled SSL information, preventing the HTTP client from working.

### services

Recovery processe in the case where a pool's message queue is overloaded,
as old (and now useless) requests may be simply discarded is improved.


### vehicles

The current release improved  memory consumption on pools.

### webdav

There were  reports of the access log file missing entries. This problem
seems to be triggered if the client disconnects before dCache has
finished processing the request, which is certainly true for cancelled
HTTP-TPC transfers. This is now fixed.

### xrootd

xrootd4j-authz-plugin-alice is updated to 1.2.0.

The xroot protocol access log entries for the xrootd door and pool have
been enhanced to include information about the kXR_query requests.


### Changelog 6.2.10..6.2.11

<!-- git log 6.2.10..6.2.11 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[ec8b1e67a8](https://github.com/dcache/dcache/commit/ec8b1e67a870c3bde851ac4cac44a9a25add95bb)
:   [maven-release-plugin] prepare release 6.2.11

[78040db522](https://github.com/dcache/dcache/commit/78040db522d076afa40015c55588745f2edc221b)
:   prepare for next development iteration

[3689629eb1](https://github.com/dcache/dcache/commit/3689629eb13d242a26a1457049440c8e2fcf434c)
:   [maven-release-plugin] prepare release 6.2.10

[01f71f5f59](https://github.com/dcache/dcache/commit/01f71f5f59863f3443e417cd36a860860cbb536a)
:   TransferManager: choose better pool query message TTL

[4597553c31](https://github.com/dcache/dcache/commit/4597553c31bf59f076656320e53bec66d2627046)
:   webdav/frontend: ensure cancelled HTTP-TPC transfers are logged

[15fede73da](https://github.com/dcache/dcache/commit/15fede73da00907d989ed5bfbf85425315920e65)
:   xrootd/pool: improve access log to record more details of kXR_query

[0fff2d36db](https://github.com/dcache/dcache/commit/0fff2d36db108738ffd511ef71c619e5dd3d5cbf)
:   libs: use nfs4j-0.21.1

[42e840560b](https://github.com/dcache/dcache/commit/42e840560b939aa0eeb7ff0db3986ffd7d177cf6)
:   vehicles: internalize common strings in StorageInfo

[25bbf82fba](https://github.com/dcache/dcache/commit/25bbf82fbafb3ae2a466edca9fb2433542da8821)
:   pool: sort flush queue only if we going to use the result

[932055e31b](https://github.com/dcache/dcache/commit/932055e31b98d0b79e8e5968378955b6df7e4950)
:   pool: https avoid sharing SSLEngine between TCP connections

[04c96a851f](https://github.com/dcache/dcache/commit/04c96a851fa6f10238fce9c61b2e9ca9d6ec3306)
:   removing commit-msg file

[395acb44d6](https://github.com/dcache/dcache/commit/395acb44d63ef13b4148900c24db690b50c323e3)
:   updated alice-plugin version to 1.2.0

[851452f57d](https://github.com/dcache/dcache/commit/851452f57d78295df147c38948e7722ebf19cf1a)
:   pom.xml:update xrootd4j-authz-plugin-alice version to 1.2.0

## Release 6.2.10

The current release fixes EGI-SVG-2020-16939 vulnerabilities.



## Release 6.2.9

### dcache

The log files now can be enforced even with systemd deployments.

`dcache.log.destination` property has been introduced which  controls the log
destination. The default value `console` preserves the current
behaviour: systemd services log to journald, system-V services log to
stdout (redirected to /var/log/dcache/.log).

The option `file` instruct logback to send message to the location
defined by `dcache.log.file` property. The plain file FileAppender is
used as dCache packages already comes with pre-defined logrotate
configuration.

### xrootd

The xrootd4j version was updated to 4.0.4.


### Changelog 6.2.8..6.2.9

<!-- git log 6.2.8..6.2.9 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[f8ffbdacd4](https://github.com/dcache/dcache/commit/f8ffbdacd4e5c3204bf5204a17d6360f483efe7e)
:   [maven-release-plugin] prepare release 6.2.9

[88ef6a9fc5](https://github.com/dcache/dcache/commit/88ef6a9fc52d8397d0126db13685e30ebb87ce19)
:   logging: add an option to control logger destination

[ec72bc0f61](https://github.com/dcache/dcache/commit/ec72bc0f61bb352ce6a3e874ba4c62dea622ce16)
:   pom: update to xrootd4j 4.0.4

[64961d79a9](https://github.com/dcache/dcache/commit/64961d79a97f668396f3e3a5a35e4c9fa81d353b)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.8

### common-auth

Fix regression introduced by limiting UidPrincipal to be only an output principal.

### pool

The mover thread is not interrupted outside of IO activity to avoid disabling of repository.

HTTP-TPC transfers where dCache pushes data to an Apache server (for example as used by Dynafed) will now work for zero-length files.

### webdav

HTTPS-PUT requests are now possible.


### Changelog 6.2.7..6.2.8

<!-- git log 6.2.7..6.2.8 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[464e3e0330](https://github.com/dcache/dcache/commit/464e3e03309a647bcd3caeba0e3b0496044b010e)
:   [maven-release-plugin] prepare release 6.2.8

[452bc43016](https://github.com/dcache/dcache/commit/452bc43016823600aa67ad891fc9294386431620)
:   pool: http-tpc do not loop if HEAD 'Content-Length' response is missing

[7054e2791a](https://github.com/dcache/dcache/commit/7054e2791a775621b7d813a1d412ab78f3c6e45f)
:   webdav:HTTPS PUT req issue

[bcbb79f1ca](https://github.com/dcache/dcache/commit/bcbb79f1ca12a95c7ad9d274e98b92367659f11f)
:   pool: preserve CDC on p2p transfer

[1b76cac1b6](https://github.com/dcache/dcache/commit/1b76cac1b6a6109d90865110f973b9a4f21eae63)
:   pool: http-tpc drop 'Accept-Encoding' on HEAD requests

[f3dc5f36e7](https://github.com/dcache/dcache/commit/f3dc5f36e74b1f07886d8f126874961696edda4d)
:   pool: detach IO thread when mover finished

[6cf85465f7](https://github.com/dcache/dcache/commit/6cf85465f7c636c058a0218469a6405ed9995b4f)
:   common-auth: mark UidPrincipal as In/Out principal

[eb65fa3679](https://github.com/dcache/dcache/commit/eb65fa3679d8415a84d83c7492de1aa817c501b6)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.7

### pool

dCache pools now support GSI-based xrootd-TPC by default.


### Changelog 6.2.6..6.2.7

<!-- git log 6.2.6..6.2.7 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[fe2631db39](https://github.com/dcache/dcache/commit/fe2631db393841876808fe115731b2b1d56bd2e2)
:   [maven-release-plugin] prepare release 6.2.7

[1ded2cdb9a](https://github.com/dcache/dcache/commit/1ded2cdb9a1f9840f84eaf49c9199dd4ad4e820f)
:   pool: update xrootd-tpc authenication default

[e932921c28](https://github.com/dcache/dcache/commit/e932921c28dffe1a1a3b0806ef618e56e2bc30a8)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.6

### nfs

If door failed to start a mover due to timeout or `no route to cell`,
then pool selection or mover start is retried. However, as the retry
procedure in the transfer class was not idempotent, the `nfs` door has
it's own workaround to avoid extra pool selection. This partial
solution plays not well with retry logic of transfer class and
produced inconsistent results. 
This is fixed now and lost messages to start mover successfully delivered after number of retries.

### pool


The HTTP-TPC PUSH requests (which use the HTTP PUT request to send data)
are now more robust against slow remote servers that redirect the
transfer.

The current release fixed  NullPointerException bug in MongoDB-backed pool metadata storage 
and SpotBugs NORMAL-level warning.

With the chenges introduced in current release, when using HTTP-TPC, the timeouts dCache pool uses when requesting
information from the remote server have been adjusted, based on
operational experience. In general, dCache will now wait longer for the
remote server to complete any post-processing before giving up and
failing the transfer.


### Changelog 6.2.5..6.2.6

<!-- git log 6.2.5..6.2.6 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[3c8b6b0e56](https://github.com/dcache/dcache/commit/3c8b6b0e56d73ed6434d520b0bff16e738ce84c1)
:   [maven-release-plugin] prepare release 6.2.6

[1bcc96fbbd](https://github.com/dcache/dcache/commit/1bcc96fbbd7e19b6fb293afdada8a53b7a935235)
:   chimera: update EnstoreStorageInfoExtractor to use FileState

[f29ccdb158](https://github.com/dcache/dcache/commit/f29ccdb15837200958cc9b99b79d80c3101a6bba)
:   chimera: use UTF-8 constant instead of string in ChimeraEnstoreStorageInfoExtractor

[a24c79412b](https://github.com/dcache/dcache/commit/a24c79412b6370846288659d2708150fd8b8a3e4)
:   pool: http-tpc adjust GET and HEAD request timeouts

[c45529130d](https://github.com/dcache/dcache/commit/c45529130d70b95033f93ba93c07f3129c5ef14e)
:   pool: http-tpc PUT request are repeatable

[7b710e4a16](https://github.com/dcache/dcache/commit/7b710e4a16d84c64806c3b3a3d8753ea4bc5c5aa)
:   nfs: drop internal mover re-start loop

[31d869d32f](https://github.com/dcache/dcache/commit/31d869d32f8ea84e9f4c2d9409fa7765371553f0)
:   pool: support removing MongoDB storage-info entry

[7dfbe630ce](https://github.com/dcache/dcache/commit/7dfbe630cea5f0b15acfc34609085f7a3db05bec)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.5

### dcap

Sometimes file restores on dCap door were hanging. This is now fixed.


### Changelog 6.2.4..6.2.5

<!-- git log 6.2.4..6.2.5 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[8629039c76](https://github.com/dcache/dcache/commit/8629039c7677ae07b7b62a8f9434380a0589f781)
:   [maven-release-plugin] prepare release 6.2.5

[d94a5f5a06](https://github.com/dcache/dcache/commit/d94a5f5a06b694b96066a83e267a2828d3ce8dc7)
:   [maven-release-plugin] prepare for next development iteration

[efeb443cbe](https://github.com/dcache/dcache/commit/efeb443cbed7efbdf1477eeb597e3801474ffbf6)
:   dcap: fix automatic door retry on transient errors

## Release 6.2.4

### gplazma

X.509 certificates that use the "SHA-384 with RSA" algorithm are now
logged with this name instead of the raw OID value.

### httpd

The current release fix pool usage color scheme css used for UsageInto and PoolInfo pages.


### pool

dCache pools that are undertaking HTTP-TPC transfers will now wait
longer for the remote servers to complete any post-transfer activity.
Transfers that involve heavily loaded remote servers are now more likely
to succeed.


### Changelog 6.2.3..6.2.4

<!-- git log 6.2.3..6.2.4 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[1e55f3b3ff](https://github.com/dcache/dcache/commit/1e55f3b3ff02dd96c62a0870da851c73c6077eb6)
:   [maven-release-plugin] prepare release 6.2.4

[317ce07c20](https://github.com/dcache/dcache/commit/317ce07c20e6407a4bda7f509782f1dee515da20)
:   fix error, tag 6.2 instead 6.2.3

[f485ddc295](https://github.com/dcache/dcache/commit/f485ddc295333bb2d00c3467d48724eb116f6f17)
:   srm-common: make X509 client authn optional, support bearer tokens

[7f6978aae7](https://github.com/dcache/dcache/commit/7f6978aae7be7d34d6094fdee7de0013264b01c0)
:   gplazma: include additional algorithm in LoginResultPrinter

[20a7493253](https://github.com/dcache/dcache/commit/20a7493253a46b88a3e4990ad466502d861e310f)
:   pool: http-tpc increase timeout waiting for remote server post-processing

[819d18a334](https://github.com/dcache/dcache/commit/819d18a33454a871dc048fb0623df72672867ceb)
:   httpd: fix pool usage color scheme css

[65c01798d0](https://github.com/dcache/dcache/commit/65c01798d0bf5e28dbbe0402e4dd1364acebead7)
:   correct snapshot version for logback-test-config

[2352b87474](https://github.com/dcache/dcache/commit/2352b87474a93474afc7414f70f0b927def6230e)
:   correct snapshot version

## Release 6.2.3

### nfs

The current release fixed previously observed  infinite WRITE+COMMIT loop.


### Changelog 6.2.2..6.2.3

<!-- git log 6.2.2..6.2.3 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[2bd19d2080](https://github.com/dcache/dcache/commit/2bd19d208000e03052ec0e54043326c1fc19040f)
:   [maven-release-plugin] prepare release 6.2.3

[0709f64e67](https://github.com/dcache/dcache/commit/0709f64e6751d04f72897a29067efcabdb2547a1)
:   nfs-proxy: op WRITE must use the same verifier as COMMIT

[295ed840a9](https://github.com/dcache/dcache/commit/295ed840a93905d94901c106e401cfdc9ba94a2b)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.2

### dcache

There have been several occasions where in a dCache instance using an embedded ZooKeeper server such HA services stopped working because 
an ephemeral node was elected leader that has no associated service anymore; it should have been deleted. 
This state might go undetected for a longer time, and removing such stale nodes in order for the services to continue functioning as intended requires manual intervention.

This is fixed now and the functioning of HA services using ZooKeeper-based leader elections is more reliable.

### resilience

A more robust handling of PSU changes which remove pool, unit or group
mappings was introduced.

Recently introduced improvements changed the way resilience handles file "removal"
(no longer setting the repository entry to 'removed'
but simply by caching the replica).
This change, however, did not take into account
the handling of broken files.  Encountering
a broken file, it would indiscriminately attempt
to remove it, whether it was cached or not;
this was leading to an infinite loop, with the
file operation continuously iterating without
doing any further work. This situation could potentially hang the pool scans
(if there are as many broken files as there are
scan threads), and even the file operation
queue. The current release fixed this issue and there is no  any potential for stalled
operations when encountering broken replicas.


### Changelog 6.2.1..6.2.2

<!-- git log 6.2.1..6.2.2 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[d91ba83234](https://github.com/dcache/dcache/commit/d91ba83234fb129331bd45f3d43409bfc71862f8)
:   [maven-release-plugin] prepare release 6.2.2

[44fabfc33e](https://github.com/dcache/dcache/commit/44fabfc33e193ddec79bc86b78ccab2a38e2d8e9)
:   dcache-core: fix embedded ZooKeeper persisting stale ephemeral nodes

[859be7aca0](https://github.com/dcache/dcache/commit/859be7aca0f0dec1344f473af04c00281176cae2)
:   dcache-resilience: ignore broken cached files

[d7ddc2e486](https://github.com/dcache/dcache/commit/d7ddc2e486344950b8aca982a576ea63612cc590)
:   dcache-resilience: protect access of pool info map against NoSuchElementException

[12287c4beb](https://github.com/dcache/dcache/commit/12287c4bebcace11a728e91d8c8b73dddfb0779b)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.1

### macaroons

Fixed macaroons validation where in case of multiple combined caveats for some of them only the digital signature was checked.

### resilience

If a FileOperation is canceled while its subtask is running a NullPointerException was thrown. This is now fixed.

### rpm

dCache rpm-package requires now Java 11.

### systemd

dCache forces now the use of systemctl on systemd-capable systems.


### Changelog 6.2.0..6.2.1

<!-- git log 6.2.0..6.2.1 -no-merges -format='[%h](https://github.com/dcache/dcache/commit/%H)%n:   %s%n' -->

[130a5c708a](https://github.com/dcache/dcache/commit/130a5c708a0455b0aee63f2d1a677ac9de461c63)
:   [maven-release-plugin] prepare release 6.2.1

[61d44927ef](https://github.com/dcache/dcache/commit/61d44927ef728513ef3afce7cc5a24642d466680)
:   dcache-resilience: avoid NPE in file operation cancel

[916d8c4e04](https://github.com/dcache/dcache/commit/916d8c4e04a6e9173cf0b629b33535c9b8b352bb)
:   pool: fix issue #5491 NoSuchFileException

[9a2dea5446](https://github.com/dcache/dcache/commit/9a2dea544659aa29537e2c96651acd320341851e)
:   macaroons: verifyCaveat should return false for unprocessed caveats

[b970c780e8](https://github.com/dcache/dcache/commit/b970c780e848372016e09812d910b975addb4d29)
:   rpm: make dcache package depend on java-11

[c47ffcf8b9](https://github.com/dcache/dcache/commit/c47ffcf8b96a4d22791205db3f5b4f01539684d8)
:   systemd: add option to enforce systemd

[fa4f6851fc](https://github.com/dcache/dcache/commit/fa4f6851fc58a30e6bb4fa21fc3d05d8260ca9e0)
:   [maven-release-plugin] prepare for next development iteration

## Release 6.2.0

An optional telememetry service is added to collect dCache statistics by dCache.org. The `telemetry`
cell has to be explicitly defined in a layout file as well as enabled:

```
[telemetryDomain]
[telemetryDomain/telemetry]
telemetry.cell.enable=true
telemetry.instance.site-name=dCache instance on \${host.name}
telemetry.instance.location.latitude=53.5772
telemetry.instance.location.longitude=9.8772
```

The dcache version, online capacity, site name and optional location will be sent to the stats.dcache.org collector.

Starting from version 3.2.0 dcache domain processes can be managed as systemd services. However, this functionality was available for debian-based systems only. With version 6.2.0 systemd integration is added into RPM packages as well. The Debian based installations `must stop dcache.service` manually before installing new package. Please check the [documentation](https://github.com/dCache/dcache/blob/master/docs/TheBook/src/main/markdown/install.md#using-systemd-service) for further information. To support RHEL-6 based systems, the legacy
sysV-like daemon still available.

### Billing

The data from the mover info message and door request message has been combined into a single message
when reporting to the kafka server. Kafka receives a request message type with mover info integrated,
if it exists.  A failed door request or a remove request (which also uses DoorRequestInfoMessage)
will simply have a ``null`` mover message field.

### Chimera

The minimal PosgreSQL version is changed to 9.5.
A new table `t_xattr (inumber, key, value)` is introduced to store user defined extended attributes.

### NFS

The embedded NFS server publiches itself as 4.2 protocol compatible.

Each NFS door gets an unique identifiert that becomes a part of nfs state ids. This prevents unlikely
event of nfs mover conflicts. The unique id for each door is stored in zookeeper as:

```
/dcache/nfs/doors/<cell>@<domain>/state-handler-id
```

The NFS transfer service was returning a multipath address list to nfs clients that contains duplicate entries. This was triggering kernel warnings like:

```
[Di Apr 23 13:50:01 2019] RPC:   addr 131.169.a.b already in xprt switch
[Di Apr 23 13:50:01 2019] RPC:   rpc_clnt_test_xprt failed: -98 addr 131.169.a.b not added
[Di Apr 23 13:50:02 2019] RPC:   addr 131.169.a.c already in xprt switch
[Di Apr 23 13:50:02 2019] RPC:   rpc_clnt_test_xprt failed: -98 addr 131.169.a.c not added
[Di Apr 23 13:55:00 2019] RPC:   addr 131.169.a.d already in xprt switch
[Di Apr 23 13:55:00 2019] RPC:   rpc_clnt_test_xprt failed: -98 addr 131.169.a.d not added
```

This is fixed now.

The discovery of an NFS4 domain, which is used by idmapper, is made more robust against invalid configurations of the dns resolver.
Improved throughput of parallel opens.

### Pool

Pools that use BerkeleyDBReplicaStore have impoved startup time by reducing the number of stat requests to the underlying filesystem.

### SRM / SRM Manager

Removed `hidden` possibility to generate perfomance HTML reports and plots.

### Telemetry

An optional telememetry service is added to collect dCache statistics by dCache.org.

### Transfer Manager

### WebDAV

A Webdav door can pass `xattr.` prefixed url params as extended attributes to a pool. For example:

```
    $ curl --upload-file file.txt \
        https://localhost:2881/tape/file.txt?xattr.key1=value1&xattr.key2=value2"
```
This information will be available to an HSM as part of the storage info.

### XRootD

TLS can now be enabled for connections to both door and pool.   Please read the documentation
in _The Book_ for details (https://dcache.org/old/manuals/Book-6.2/config-xrootd.shtml#tls).  There
is also further information in the xrootd.properties file.

SciToken support has been added to the xrootd door.  Please read the documentation
in _The Book_ for details (https://dcache.org/old/manuals/Book-6.2/config-xrootd.shtml, under "SciTokens").
There is also further information in the xrootd.properties file.

When using TPC with GSI, the option to fall back to generating a proxy from the
host certificate or to use a proxy provided at a given path instead of a delegated one,
can cause issues if third-party source endpoints do not have a mapping for the
proxy DN.  Before 6.2, this fallback was automatic, but with 6.2 it can be controlled
via the property

```
    xrootd.gsi.tpc.delegation-only=true
```

Turn on fallback (set this property to false) only if you are certain all potential
endpoints will recognize the alternate DN.

As a reminder:  we have also changed the dCache door to behave like the xrootd server
and create missing directories (see [229210209c]); the default pool plugin has also
been changed to ``unix`` (rather than undefined), as this is needed for TPC with dCache
and EOS sources (but is otherwise ignored): see [a5482ad5f2]).


### Zookeeper

The ZooKeeper ensemble which is used by dCache is required to be of version 3.5. Version 3.4 will no longer be supported.

### Cleaner

The Cleaner cell may be run in high availability mode. Several Cleaners negotiate leadership via ZooKeeper and only the leader is active at any point in time. When the leader disappears, a new leader is elected automatically.

### Changelog from 6.1.0 to 6.2.0

[fa4f6851fc](https://github.com/dcache/dcache/commit/fa4f6851fc58a30e6bb4fa21fc3d05d8260ca9e0)
:   [maven-release-plugin] prepare for next development iteration

[a732fcb967](https://github.com/dcache/dcache/commit/a732fcb967130a177e90d29461031bad00946fde)
:   [maven-release-plugin] prepare release 6.2.0

[70caee8202](https://github.com/dcache/dcache/commit/70caee820206e83909384d5095cd1b48b5799ac5)
:   archetype: configure maven-compiler-plugin to use java11

[2621b05455](https://github.com/dcache/dcache/commit/2621b054552d6b61c6ab47c6b98d1808aa15fbbf)
:   pool: do not fail transfer if RFC3230 is badly formed.

[5b3888fb87](https://github.com/dcache/dcache/commit/5b3888fb87bece79640a6c96d514d76885fe4096)
:   nfs: don't attempt to select online-only pools when file on HSM

[948217aebb](https://github.com/dcache/dcache/commit/948217aebb30c5f8b3b453294096f6d299809444)
:   cleaner: add support for db password file

[70bff6adb5](https://github.com/dcache/dcache/commit/70bff6adb5d7244db4dd659f94bde6466a709e9d)
:   util: fix pgpass support for jdbc urls with options

[8eff87bec9](https://github.com/dcache/dcache/commit/8eff87bec954db8d8c02d974b169761ce113070c)
:   pool: rework interrupt processing on p2p

[eaada9757f](https://github.com/dcache/dcache/commit/eaada9757f7b32fafda741e6c876984b4f315ffb)
:   systemd: convert dcache.service into dcache.target

[a5cb11ad1b](https://github.com/dcache/dcache/commit/a5cb11ad1b2ca47942fa2413f62b69e0ae4ccb76)
:   [maven-release-plugin] prepare branch 6.2

[9df0bd2330](https://github.com/dcache/dcache/commit/9df0bd233061705a79533f023575548bbd7da955)
:   change &lt;tag&gt;

[e5f3fe470c](https://github.com/dcache/dcache/commit/e5f3fe470cd12f2bef82942fba9ef6a68e812734)
:   [maven-release-plugin] prepare branch 6.2

[ae91987797](https://github.com/dcache/dcache/commit/ae91987797086490dc818d0d6d0779ee1666e606)
:   libs: use nfs4j-0.21.x

[c52d53cd73](https://github.com/dcache/dcache/commit/c52d53cd732ecddb70f6dba0812dfe3b0fa8e274)
:   Revert "libs: use nfs4j-0.21.x"

[fcb4a168f0](https://github.com/dcache/dcache/commit/fcb4a168f0b51bb390caa4b1f44434ea5ae0ad1a)
:   libs: use nfs4j-0.21.x

[a1d8b9abab](https://github.com/dcache/dcache/commit/a1d8b9ababc9d7d174f304e9fbf776c7960c7220)
:   gplazma: automate filtering of principals

[b4fe9166f4](https://github.com/dcache/dcache/commit/b4fe9166f4937c7898136f06aac2ffe30f3608a1)
:   common: annotate principals based on their role during login.

[6a79ecb4ce](https://github.com/dcache/dcache/commit/6a79ecb4ce4ffcf8edd9fe0384bb8d4c77c92313)
:   pnfsmanager: add the "show list activity" command

[05a910fae8](https://github.com/dcache/dcache/commit/05a910fae857c03b5e4482399ad9f4c76b84b648)
:   common: add support for sections in ColumnWriter

[985a43c2cb](https://github.com/dcache/dcache/commit/985a43c2cb4f464ac80da1da2543a0fbfb280855)
:   dcache-bulk: fix several issues with request storage

[92fca35216](https://github.com/dcache/dcache/commit/92fca35216d45361ed4f379c93b93260b8c67955)
:   dcache-chimera: Show that Cleaner service is replicable

[a79fd7c12b](https://github.com/dcache/dcache/commit/a79fd7c12b41b3dc0cc9407af4d24743fa6a4fea)
:   systemd: print deprecation warning only on systemd capable systems

[f22003dbe9](https://github.com/dcache/dcache/commit/f22003dbe93f5732388f38aff2b7677a5c0b733b)
:   pool: add Account wrapper that checks file capacity usage

[4af94c84cb](https://github.com/dcache/dcache/commit/4af94c84cbc516e95c9a0bc9ba4304b8d0e8cb09)
:   docs: UserGuide describe extended attributes in frontend

[87a6fbe54d](https://github.com/dcache/dcache/commit/87a6fbe54d29554c9d450870a7eee490cf2c487d)
:   dcache-core: Move LeadershipListenerGroup for reusability

[86ce323540](https://github.com/dcache/dcache/commit/86ce323540d466df6748a9dd69b44f37f37af514)
:   systemd: drop dependency on zookeeper service

[9cde8bf80b](https://github.com/dcache/dcache/commit/9cde8bf80b33a90824a8dd8ccfdf7cf934c4541c)
:   docs: UserGuide fix .html -> .shtml extension in links

[eab0b80276](https://github.com/dcache/dcache/commit/eab0b80276638e9e7979c4167793074190a3d7d1)
:   dcache-core: Move HAServiceLeadershipManager for reusability

[17654d4318](https://github.com/dcache/dcache/commit/17654d431834677e7690d675f0bb4f55e6907f4c)
:   docs: Add common chapter on extended attributes

[065c6d3042](https://github.com/dcache/dcache/commit/065c6d3042721722158074bb6620c8f58d02587d)
:   dcache-bulk: restructure test jobs

[4105665d8d](https://github.com/dcache/dcache/commit/4105665d8d1df064b10f21eedd79075e23e06cbe)
:   dcache-bulk: add ping service for testing waiting state

[4d273857b0](https://github.com/dcache/dcache/commit/4d273857b0fcb93ce40cf45d8440b9dfc06a1be5)
:   dcache-bulk: modifications to bulk jobs

[c45da26e27](https://github.com/dcache/dcache/commit/c45da26e27e787ff56c81e780df242ea2e9909c5)
:   common: do not log bearer token values.

[16f56cba36](https://github.com/dcache/dcache/commit/16f56cba367facac3cd30ed5c3f80d0b46aa9e61)
:   frontend: add support for extended attributes

[b751c39b14](https://github.com/dcache/dcache/commit/b751c39b140bd3f1f430550087d4ff1ef4aa5158)
:   pnfsmanager: avoid NPE if file is deleted during directory listing

[4ace8e1e16](https://github.com/dcache/dcache/commit/4ace8e1e16e9a209c4a1e3d878acbb1d24bb2dfa)
:   dcache-chimera: high available cleaner

[5dfef491ce](https://github.com/dcache/dcache/commit/5dfef491ce8420ec0ab09c5ecf049c0cf38ea4b8)
:   rpm: stop dcache service before update and disable on uninstall

[5fb54f364f](https://github.com/dcache/dcache/commit/5fb54f364f2fdd216959291a8d0b5b41f06db008)
:   systemd: export PATH variable in the dcache-generator

[8fcde432fb](https://github.com/dcache/dcache/commit/8fcde432fb18ce62f289eb3e0bf649c1fbf6cc74)
:   rpm: remove pre-historic rpm support

[a5e4f7adbe](https://github.com/dcache/dcache/commit/a5e4f7adbef92ff80f2dcb4382a09dde32b84e9a)
:   pool: rework interrupt processing in AbstractMoverProtocolTransferService

[ca257e79f5](https://github.com/dcache/dcache/commit/ca257e79f5a44b448d818c1715c3455f6293829f)
:   rpm: don't use RPM's native systemd macros to stop dcache

[d7de1f0030](https://github.com/dcache/dcache/commit/d7de1f003088dc8e52d04b5cc7497319c6f5d370)
:   rpm: add systemd target and generator

[8e2a926545](https://github.com/dcache/dcache/commit/8e2a92654504cf7127df60d2149bc2b890eea58a)
:   rpm: drop pre-historic package compatibility

[96101cdc9f](https://github.com/dcache/dcache/commit/96101cdc9f93c6d483fab069bcfae950a117f288)
:   docs: UserGuide update WebDAV to describe xattr on upload

[d205d6ba19](https://github.com/dcache/dcache/commit/d205d6ba19a23e09c9a64f0fd76ae9244ed1989d)
:   src: don't use deprecated Throwables#propagate(Throwable throwable)

[a5688b1745](https://github.com/dcache/dcache/commit/a5688b17458c8a96b6287d321f765da5e064a0f8)
:   srm-server: use URLDecoder#decode(String s, Charset cs)

[300fd1c8f1](https://github.com/dcache/dcache/commit/300fd1c8f169bd1b6551aac8a8678bda93a562bc)
:   docs: fix issues with WebDAV chapter in the user-guide.

[e06f4ef029](https://github.com/dcache/dcache/commit/e06f4ef029292800aa5b9f50f292c6dae70b4630)
:   cells: fix stacktrace dump if cell takes too long to shutdown

[ee4de45062](https://github.com/dcache/dcache/commit/ee4de4506263e284542ed7d35ff5ea8ba909868b)
:   docs: describe how WebDAV properties may be used with extended attributes

[61cdbebfc8](https://github.com/dcache/dcache/commit/61cdbebfc8484cbcbc3e49e1f96dcd17c323738b)
:   webdav: add support for extended attributes

[de40f748db](https://github.com/dcache/dcache/commit/de40f748db8c4b1050f3da846b0911979010eecd)
:   Revert "chimera: use hazelcast cache for pnfs id to inumber mapping"

[7765e99f6f](https://github.com/dcache/dcache/commit/7765e99f6f9af82b34f9c3f169793d3aeb4d25b8)
:   poolmanager: fix tab usage in RendezvousPoolManagerHandlerTest.java

[2243d6d696](https://github.com/dcache/dcache/commit/2243d6d696a1b9bf7333682f290a750578a77207)
:   common: fix LoAPrincipal deserialisation

[f0dbff3d1c](https://github.com/dcache/dcache/commit/f0dbff3d1c9ce7ab4f828a5f2e4328f32192176c)
:   frontend: events make backlog configuration

[834b5702bd](https://github.com/dcache/dcache/commit/834b5702bd56762ddf209d6a001d9926d506be7e)
:   webdav/pnfsmanager: fix problems with xattr assignment on file creation

[8dd7ea6fa0](https://github.com/dcache/dcache/commit/8dd7ea6fa07ead94f049c232388607739c480f52)
:   pnfsmanager: support storing and querying FileAttribute.XATTR

[71f957c4fa](https://github.com/dcache/dcache/commit/71f957c4fa748841b71c51d42458c324be1c891c)
:   core: update PnfsHandler to support extended attributes

[ff1b5e74ac](https://github.com/dcache/dcache/commit/ff1b5e74ac098daaea7d4ee09cb39baa9062e0a0)
:   pool: shutdown NettyTransferService implementations asynchronously

[b3b421ae31](https://github.com/dcache/dcache/commit/b3b421ae3105a25c902d322c247830eb9854039e)
:   dcache-xrootd: bump to xrootd4j 4.0.3

[be5de06f6b](https://github.com/dcache/dcache/commit/be5de06f6b803bb0f64ee98e811e44eb39b015a8)
:   pool: clean interrupted state after mover complete (again)

[9caf6d7e9c](https://github.com/dcache/dcache/commit/9caf6d7e9ccfd569dce46951ff38cb42a2250625)
:   chimera: allow default durations for 'pin', 'stage' and 'bringonline' dot commands; add 'unpin'

[0ef6d91fe2](https://github.com/dcache/dcache/commit/0ef6d91fe293bc429906bc893488eebab5c9a947)
:   Update srmmanager.properties

[905e39e281](https://github.com/dcache/dcache/commit/905e39e281b39b9d0ddd81142a95d473be6db3b6)
:   Update gplazma.properties

[ac6dbc3bdf](https://github.com/dcache/dcache/commit/ac6dbc3bdfc553ce68566b03105d90f0d410292e)
:   Update pnfsmanager.properties

[c96eee8e50](https://github.com/dcache/dcache/commit/c96eee8e50bec22663d3436e06327ee563dfefd8)
:   Update spacemanager.properties

[74cfffa038](https://github.com/dcache/dcache/commit/74cfffa0386357fdc65255cf152bbbf0d7232649)
:   Update pinmanager.properties

[f1857d3c91](https://github.com/dcache/dcache/commit/f1857d3c9160588986098f9af3d4cf3b9ab25b1a)
:   Update topo.properties

[db42b3f9f1](https://github.com/dcache/dcache/commit/db42b3f9f1848b7d9519336ca4736448516335ee)
:   pnfsmanager.properties: fix typo in comment

[465f6cb4f1](https://github.com/dcache/dcache/commit/465f6cb4f1930777cec7934e90adfcc20d5760a0)
:   pinmanager: use PoolManagerStub when talking to pool manager

[3f48856942](https://github.com/dcache/dcache/commit/3f488569423ac00babb8ee39c9e8ca3e9d164b40)
:   cells: make ThreadGroup dump a single log message

[a3de7c09f6](https://github.com/dcache/dcache/commit/a3de7c09f67246195121886ff1ed85d1893db194)
:   dependencies: exclude spring's implementation of Jakata Common Logging

[8697edac15](https://github.com/dcache/dcache/commit/8697edac1515587eb348909f5fc6ba493f327d18)
:   gplazma2-argus avoid shipping dCache with commons-logging

[17360de1a1](https://github.com/dcache/dcache/commit/17360de1a117ed220e5af09e1d3498c90d9ca393)
:   pool: avoid instantiating http server twice

[d60801bfee](https://github.com/dcache/dcache/commit/d60801bfeee60c3e2736f3168cb8fbb4329c1189)
:   pool: shutdown xrootd TPC event-loop group asynchronously

[af7878c447](https://github.com/dcache/dcache/commit/af7878c447a3360f894c7f14a1badf595fe024a7)
:   build(deps): bump guava from 24.1-jre to 24.1.1-jre

[e3680d2874](https://github.com/dcache/dcache/commit/e3680d28744938d5ff4d0e0977e200d9074b6561)
:   build(deps): bump xercesImpl from 2.11.0 to 2.12.0

[6b9e505616](https://github.com/dcache/dcache/commit/6b9e5056164b58c429eb95a0ee2c345fa70175e7)
:   build(deps): bump version.netty from 4.1.45.Final to 4.1.50.Final

[b5f12700a4](https://github.com/dcache/dcache/commit/b5f12700a47e8b74389b75812b731a1701fd8b4a)
:   dcache (pool manager): override suspend when "excluded" (hosts) is not empty'

[0132c7aca4](https://github.com/dcache/dcache/commit/0132c7aca4f552acee3fd64f4494cfcbc35798ad)
:   pool: clear mover thread's interrupted state before returning to pool

[784b9b27a8](https://github.com/dcache/dcache/commit/784b9b27a83ab1bb7aa14025153f5e46e972a424)
:   nfs: fix door startup crash on DNS error

[9ee78c3fae](https://github.com/dcache/dcache/commit/9ee78c3faeb0db20cc844320ae5ac0f922286bd9)
:   Doc bug: `rm ls` shows remove queue, not store queue

[17d542576a](https://github.com/dcache/dcache/commit/17d542576a3dcf2acbb0441f095eeb0a996741c2)
:   pool: avoid duplicate IP addresses in nfs multipath array

[1ebad872c2](https://github.com/dcache/dcache/commit/1ebad872c22603563b0f13b02af734f6aa980b13)
:   pool: use Long#compare to sort cache entries

[b2317d35c1](https://github.com/dcache/dcache/commit/b2317d35c1280ec591869f98f15cdd827cf8ba3e)
:   nfs: remove redundant methods from PoolDeviceMap

[7832755ce9](https://github.com/dcache/dcache/commit/7832755ce9766243d96ea94d663cb10cec97cec1)
:   The Book: fix typo in config-nfs

[81f4d682d0](https://github.com/dcache/dcache/commit/81f4d682d0c2d472aef9571f4cc01666a9577460)
:   dcache-xrootd: cancel TPC transfer when client disconnects unexpectedly from pool

[ae8354b532](https://github.com/dcache/dcache/commit/ae8354b5321dadd0abf76cb8693288d600f473f9)
:   core: support extended attributes in RemoteNamespaceProvider

[65286ee10b](https://github.com/dcache/dcache/commit/65286ee10b7f5558af2a729fb0c5dcf3435250e4)
:   dcache-xrootd: fix ssl handler context loading when TLS is not enabled

[ebeb9076e9](https://github.com/dcache/dcache/commit/ebeb9076e93bda58dd87db57330d0d81f78c26d1)
:   pool: check compare fileSize from namespace and fileSize on disk before starting Mover

[b7712bc23e](https://github.com/dcache/dcache/commit/b7712bc23ed3d2a64c30e15f13eefbe4ce8bc481)
:   telemetry: new cell to collect usage data

[504a729931](https://github.com/dcache/dcache/commit/504a7299313729b85b805302e678987ff3b018b0)
:   PnfsManager: implement support for extended attributes

[b37b9850d8](https://github.com/dcache/dcache/commit/b37b9850d80ce63e0128a33cd12202605aec3673)
:   srm: remove rrd based stats counter and gauges

[d322e8800f](https://github.com/dcache/dcache/commit/d322e8800ff0440b829f939f4e9f398ca13ff042)
:   pool: repository account capacity correctly if file channel closed

[2231b12e45](https://github.com/dcache/dcache/commit/2231b12e451aaa80240eb54861a965c2468d3a99)
:   dcache-xrootd: make 'tried'/excluded hosts an optional feature

[16a42a8a78](https://github.com/dcache/dcache/commit/16a42a8a789854547c0e3b3e907fa6412482981b)
:   cells: fix logger configuration before SystemCell is created

[9891b06108](https://github.com/dcache/dcache/commit/9891b06108c64003e35ac07e556b7628ff60942a)
:   src: suppress VA_FORMAT_STRING_USES_NEWLINE warning

[1c4e0e9fd9](https://github.com/dcache/dcache/commit/1c4e0e9fd98805a02d76bbc64074ac4ab0028066)
:   logback: remove special zookeeper-3.4 workaround

[0abb24a601](https://github.com/dcache/dcache/commit/0abb24a60187282c78433c3d723dcaa7d933a209)
:   namespace: add support for extended attributes

[a73d71d4cb](https://github.com/dcache/dcache/commit/a73d71d4cbe6ac2fa548e8a59f99a129642833f3)
:   chimera: update FileSystemProvider so listing xattr returns a Set

[559746c786](https://github.com/dcache/dcache/commit/559746c7869f8c6401911368b7f8b6fff575a4e2)
:   pool:add property je.freeDisk

[fa52f1b15d](https://github.com/dcache/dcache/commit/fa52f1b15ddd1fdc5ce87190809d6c6c9b187d6e)
:   pool: remove historic VspDataOutputStream

[6adab4c292](https://github.com/dcache/dcache/commit/6adab4c292fa4ef59fc3850c2410b0609c92f575)
:   pool: add file's PNFS-ID to capacity accounting

[86e7b84f3a](https://github.com/dcache/dcache/commit/86e7b84f3a9c1917c2375d8b31cd8c0b9197f0da)
:   pool: avoid unnecessary pool capacity account modification

[9212eb3116](https://github.com/dcache/dcache/commit/9212eb31160d5bc941f6908d172dbd90139e1ac4)
:   pool: deleting empty files need not update pool capacity account

[7c3fa201c7](https://github.com/dcache/dcache/commit/7c3fa201c7f6d0d01f8939b1006e32361ef60aa3)
:   docs: document maven 3.5.0 requirement

[db6c1cd3e5](https://github.com/dcache/dcache/commit/db6c1cd3e583d096fca38013836f33318df08071)
:   pom: require maven version 3.5.0 in maven-enforcer-plugin

[d4d16e5147](https://github.com/dcache/dcache/commit/d4d16e5147a958ef9d676391e1c59fdf8471ad53)
:   pool: fix space miscalculation for partially uploaded files

[4da5e01bf4](https://github.com/dcache/dcache/commit/4da5e01bf4cd9494fee1d3af64fe81d4b619f1f4)
:   Fix Strings#toThreeSigFig for negative numbers

[20be71cbce](https://github.com/dcache/dcache/commit/20be71cbce019525f665b21f86cf3762770574ef)
:   pool: remove boolean 'force' argument from sendPoolManagerMessage

[bfa76eca68](https://github.com/dcache/dcache/commit/bfa76eca683be29bc29fc94a7528c17cd26205f3)
:   system-test: updated required maven version in README

[79fe6a15a7](https://github.com/dcache/dcache/commit/79fe6a15a72ddb4c8cf0402095da615d9f9cedd1)
:   docs: removed typos in system-test README

[97d64c8c58](https://github.com/dcache/dcache/commit/97d64c8c587eb58114ec1c4c603e943f1ac7b537)
:   docs: added embedded db connection info

[4618e5c8ff](https://github.com/dcache/dcache/commit/4618e5c8ffe0d20861bd5e91346b7da5e9e11710)
:   docs: TheBook update index to include the chapter on Kafka

[122c15ec33](https://github.com/dcache/dcache/commit/122c15ec332cc1118d91bdef0ab8f9e5bfaa6dd9)
:   pool: don't use RequestExecutionTimeGuage to measure startup time

[49f17c89f6](https://github.com/dcache/dcache/commit/49f17c89f6b43d415077771f29c44217ee46eb49)
:   dcache: rework QoS Transition Engine synchronous mode

[f34c0700d6](https://github.com/dcache/dcache/commit/f34c0700d690b0236a37110b8fee7634ebb271b0)
:   dcache-core: embedded ZooKeeper may start without existent snapshots

[c04aa4336a](https://github.com/dcache/dcache/commit/c04aa4336afe156e37dc0d6b21e3615bf6085143)
:   shell: update chimera shell to support extended attributes

[1f8abae6dd](https://github.com/dcache/dcache/commit/1f8abae6dd68f0026df235e1c9c0c003ef471c11)
:   poolmanager: fix output of 'rc ls' command

[45e4221b12](https://github.com/dcache/dcache/commit/45e4221b12d47ceab6f6bff8b51b9adc9f69945c)
:   pool: pool restart optimization

[58dd557411](https://github.com/dcache/dcache/commit/58dd5574118525d8b917335e2ad46ff04408cf48)
:   pool: don't use hard-coded time constant to query nfs door about stall clients

[9c35cacf27](https://github.com/dcache/dcache/commit/9c35cacf277e65ee5b3766f06b876b77b1a27630)
:   Revert "dcache-core: Fixed exception thrown in admin interface"

[f509dd6b67](https://github.com/dcache/dcache/commit/f509dd6b677eeb35ea19c06044c1b5049470be13)
:   cells: prettify outputs of zk admin commands

[a5482ad5f2](https://github.com/dcache/dcache/commit/a5482ad5f2df98d76ad43d9ad1898f5991aba264)
:   pool (xrootd): make tpc security plugin default unix

[dac76a51c9](https://github.com/dcache/dcache/commit/dac76a51c998bfb483b498569470a98c2b957ad5)
:   dcache-core: Fixed exception thrown in admin interface

[6a34873492](https://github.com/dcache/dcache/commit/6a348734927e8c6f3edfff608e01e3f8e148fc2a)
:   docs: formatting for better readability

[60e3de4dbf](https://github.com/dcache/dcache/commit/60e3de4dbf03050be0841759317f2f462e286d08)
:   util: update PnfsId#compareTo to use Arrays#compare

[0023f22347](https://github.com/dcache/dcache/commit/0023f223472c31ae0dcadc14bd527b02746d5fc7)
:   pool: don't wrap with optional a nonnull annotated objects

[60d56c6af5](https://github.com/dcache/dcache/commit/60d56c6af5e575912340895cb2d6dcfec76269fe)
:   docs: remove duplicate system requirements

[858a313e7b](https://github.com/dcache/dcache/commit/858a313e7b51caecd96370c6ab268eba0e53a66a)
:   libs: update to zookeeper 3.5

[651c8e7567](https://github.com/dcache/dcache/commit/651c8e75671899842c343cba2637c4b866541315)
:   Updated system requirements

[8d46aa7c3b](https://github.com/dcache/dcache/commit/8d46aa7c3bf9f5d37297f240344fe8a9b1bf70b6)
:   src: end of col.toArray(col.size()) vs col.toArray(new T[0])

[9980df241f](https://github.com/dcache/dcache/commit/9980df241f7b46dcceceb33d978bef020dff2fdc)
:   docs: add missing architecture diagram

[721776a80c](https://github.com/dcache/dcache/commit/721776a80c996c520c9eddf5207b48479834e675)
:   src: simplify Collection->stream->toArray(T[]::new)

[5bbb74d3c0](https://github.com/dcache/dcache/commit/5bbb74d3c05818e1b0901a2145eb7b7d0ca56cd9)
:   libs: update to pg-jdbc 4.2.12

[48049b525d](https://github.com/dcache/dcache/commit/48049b525d8def2336b76d2ee338555b6cc555da)
:   srm: remove historic ant build script

[dc2dd74062](https://github.com/dcache/dcache/commit/dc2dd74062c874f0012f545cf314bd3a05021f08)
:   docs: UserGuide fix missing back-tick

[a4d62f40ea](https://github.com/dcache/dcache/commit/a4d62f40ea90b147a46d788bb07be88804cdecfd)
:   frontend: honour door and user root for inotify subscriptions

[89dc2d3800](https://github.com/dcache/dcache/commit/89dc2d3800e365f316129492e7ba02a660c01939)
:   frontend: refactor inotify client-path to dCache-path mapping

[98169977ff](https://github.com/dcache/dcache/commit/98169977ffc9150d50c10051b4d58b7ed16fc100)
:   frontend: add SelectionContext for event subscription

[e309156938](https://github.com/dcache/dcache/commit/e30915693879ed8d85d565002b3598e824ec71b2)
:   nfs: don't use CDC in try-with-resource block

[3045e80cbb](https://github.com/dcache/dcache/commit/3045e80cbbd987d609c9f11ef6e61d2c6b8b1fe2)
:   nfs: restore transfers debug context on mover shutdown

[a899884dd7](https://github.com/dcache/dcache/commit/a899884dd73e768a53a2bac9265772b6e2b259a0)
:   common: annotate in which dCache version Principals were added

[f011a98209](https://github.com/dcache/dcache/commit/f011a9820934e9a4386eeeb8886556d81e552ec9)
:   pool: drop Authorization HTTP header on redirected

[8e3ecb3ab1](https://github.com/dcache/dcache/commit/8e3ecb3ab15cea0f27e6a51b53fc3e8a4f2510a5)
:   util: don't call String#toString in Transfer class

[179d5e7bd0](https://github.com/dcache/dcache/commit/179d5e7bd0c197b867add8eeb6a9742374cd5fee)
:   cells: fix links in javadoc of CDC

[80a905a01a](https://github.com/dcache/dcache/commit/80a905a01ab97977d3f2a26fd06680d2fb7e1735)
:   login-broker: fix 'lb set update' command

[4ec1f835d3](https://github.com/dcache/dcache/commit/4ec1f835d3ca701b7d1b41d8b28e9d10448695ba)
:   nfs: close directory stream after use

[f1d61f2a2e](https://github.com/dcache/dcache/commit/f1d61f2a2e005894e8a6484fe131cd1427db6981)
:   chimera: remove unused DirectoryStreamHelper#listOf

[0030d66fc7](https://github.com/dcache/dcache/commit/0030d66fc73df82da88218dcab1ababa106ae4a8)
:   nfs: use TreeSet when directory listing is created

[ed48aa21ba](https://github.com/dcache/dcache/commit/ed48aa21bab47ea0b310b27bff7daeba2e91cb17)
:   chimera: make DirectoryStream java8 friendly

[2930138d85](https://github.com/dcache/dcache/commit/2930138d85ce0340894ed725682c99de977469be)
:   nfs: fix missing place holder in log a message

[229210209c](https://github.com/dcache/dcache/commit/229210209cd99376a62b6452731e3129aae4c369)
:   dcache-xrootd: always create missing directories on write

[c9a685a184](https://github.com/dcache/dcache/commit/c9a685a184a6db772c0e4e85b2ed12d20f11410e)
:   dcache-xrootd: enforce failure when clients without TLS attempt TPC where it is required

[d348c76d2c](https://github.com/dcache/dcache/commit/d348c76d2c618b52d471936a0fa2f4ad192d01d5)
:   dcache-frontend: remove retry flag on sendAndWait to history service

[8e156be0db](https://github.com/dcache/dcache/commit/8e156be0dbd9fc0a7567dabaf3b1a2db4a4f785f)
:   src: don't use guava's Charsets in favor of StandardCharsets

[0c155981dd](https://github.com/dcache/dcache/commit/0c155981dd469df2604708a145e21ef1e286284b)
:   dcache-bulk (05): add request storage (in-memory/disk)

[086bcc2c40](https://github.com/dcache/dcache/commit/086bcc2c4074f96ee3b29529472096ab3890c19c)
:   dcache-bulk: don't overwrite BulkJob state

[39d63ed78b](https://github.com/dcache/dcache/commit/39d63ed78b6bf9ed9b5eb71d5f620e7b8cc4444b)
:   nfs: add client store for server reboot recovery

[48b0c2d19d](https://github.com/dcache/dcache/commit/48b0c2d19d83a1fcfdee256eb697ad4dbf0f2b7b)
:   enstore: populate the correct storage info information on set

[b511d7b453](https://github.com/dcache/dcache/commit/b511d7b453b5f9077b8dd57a92691364a7b8aa45)
:   dcache-bulk: copy paste error in BulkRequestArgumentDescriptor constructor*

[5bef4b8301](https://github.com/dcache/dcache/commit/5bef4b830126a0f2f3cce6f4c2c23595d382fd9d)
:   dcache-parent: Use Objects#requireNonNull instead of guava's alternative

[cc5ee9b3d1](https://github.com/dcache/dcache/commit/cc5ee9b3d15d9329b06e40148cbaac3696938dcb)
:   pom: fixed typo in maven-compiler-plugin java version

[4e414e6dcb](https://github.com/dcache/dcache/commit/4e414e6dcb3d221c31d6b4178a03e3acfd25be62)
:   dcache-bulk: add BulkJobArgumentDescriptor

[dfcd446cfe](https://github.com/dcache/dcache/commit/dfcd446cfea33d40fb5ae0d56705f4e93879252d)
:   dcache-bulk: fix two bugs in the TargetExpansionJob

[bbc04fa94f](https://github.com/dcache/dcache/commit/bbc04fa94fdaef6cc1a349662efe341d69d4a716)
:   src: revisit 'java 9+' marked todos

[8531c4e2e5](https://github.com/dcache/dcache/commit/8531c4e2e564212a90b3068410f13c5eebe2db68)
:   dcache: restore synchronized on two methods in QoSTransitionEngine

[1072059639](https://github.com/dcache/dcache/commit/10720596399ad43d3681d4d934138828f2be4e7e)
:   pom: enable modernizer plugin to help java version migration

[99f2fe49bb](https://github.com/dcache/dcache/commit/99f2fe49bb49ec8134df24d638c1e52132f07a83)
:   dcache: fix QoSTransitioEngine logic

[56f9c75d3c](https://github.com/dcache/dcache/commit/56f9c75d3c572df42ac48eb370f29d9a882f4e3e)
:   pom: dont use deprecated options for maven-compiler-plugin

[d163c1a33a](https://github.com/dcache/dcache/commit/d163c1a33a5e528da9bcf38d51f2899c35b87f5f)
:   dcache-resilience,dcache: move utility class to pool manager package

[6aa4553e0a](https://github.com/dcache/dcache/commit/6aa4553e0a0c463393756a4bb7e68cf92f54aa7a)
:   docs: describe dependency on java-11

[e25a93613b](https://github.com/dcache/dcache/commit/e25a93613b59b62d5f99abf67118a0169323ba31)
:   docs: specify dependency on java11

[11799e7271](https://github.com/dcache/dcache/commit/11799e72710e94f105910621a6e29e87ae20f939)
:   libs; use nfs4j-0.20.2 with minor bugfixes

[da9e15a353](https://github.com/dcache/dcache/commit/da9e15a3531fee47075592885494f1a4ca1f4eb3)
:   nearline-storage: remove disk copy if restore from HSM failed

[00b40161c8](https://github.com/dcache/dcache/commit/00b40161c8b7ccb4a198cfd6e785c2f20de8c242)
:   pom: use property agsLine

[051dd05ba8](https://github.com/dcache/dcache/commit/051dd05ba8a75d4da3ea3e6a37f2410c3d4200b8)
:   pom: require Java-11 at compile and run time

[986abe48a7](https://github.com/dcache/dcache/commit/986abe48a789020b3f445e503478a12ba8f9f7df)
:   hsm: fix missing closing bracket in error message

[6f81aff617](https://github.com/dcache/dcache/commit/6f81aff6175f71418d2ec8c9349d7222cb08be21)
:   tag: unify snapshot package name with deb and rpm

[f8f9979586](https://github.com/dcache/dcache/commit/f8f997958609af523948448001d7e485a58540c4)
:   system-test: use CopyNearlineStorage as configure HSM

[e137380001](https://github.com/dcache/dcache/commit/e1373800015b5e7188b0c7829d637a2cc22bb314)
:   chimera: make PostgreSQL 9.5 minimal supported version

[311e45ad01](https://github.com/dcache/dcache/commit/311e45ad014076b9ac883a1f035297dd29ccd708)
:   dcache-bulk (04): add job store

[fba82bb73b](https://github.com/dcache/dcache/commit/fba82bb73ba985989819b0f45b68dad867878de1)
:   dcache-bulk: fix possible NPE in completion handler

[311a70e39f](https://github.com/dcache/dcache/commit/311a70e39f9d802e1f237b5a2f861835667f23f6)
:   dcache: give QoSTransitionEngine a synchronous option

[550860147e](https://github.com/dcache/dcache/commit/550860147efbf8539321d7938f78be75f49cc543)
:   chimera: fix broken commit b44fa4e

[890e156311](https://github.com/dcache/dcache/commit/890e156311a6d69f62c4615dbe6af5e3662d21b6)
:   chimera: fix broken commit b44fa4e

[babcbad1a2](https://github.com/dcache/dcache/commit/babcbad1a271051ca7a10f203da00442963135f7)
:   chimera: fix broken commit b44fa4e

[7764dd82b3](https://github.com/dcache/dcache/commit/7764dd82b3368e890b345b54c6106eb11bf0cb93)
:   chimera: fix broken commit b44fa4e

[b44fa4e85e](https://github.com/dcache/dcache/commit/b44fa4e85e467a6a7f8ccde3ce1e5c909b289335)
:   chimera: introduce postgresql 9.5 friendly f_create_inode95 procedure

[f9c4cfb148](https://github.com/dcache/dcache/commit/f9c4cfb1483c3b64ee96eec296e4005fa42161f0)
:   dcache-bulk (03): define single target job providers and factory

[71d74bc230](https://github.com/dcache/dcache/commit/71d74bc230b9f6fd85ecd5789052a750c2bbd048)
:   dcache-bulk (02): define multiple and single target jobs

[e14905061e](https://github.com/dcache/dcache/commit/e14905061ef8c66e7afce226988ad27b4fbe2679)
:   dcache-bulk: (1) add module, base job, completion handler

[a4b8ba78c8](https://github.com/dcache/dcache/commit/a4b8ba78c88e3f29819c334dfb161191390aba15)
:   nfs4: add xattr support

[782fcead53](https://github.com/dcache/dcache/commit/782fcead53242f5cae0886380b6dc9fd2825145f)
:   doc: add README.md to system test with configuration description

[1a480ecde4](https://github.com/dcache/dcache/commit/1a480ecde4f2f77cda32de268d0999f4a9643daf)
:   chimera: optimize FsSqlDriver#setXattr for postgres

[56620b06a7](https://github.com/dcache/dcache/commit/56620b06a79067147175c5c94cc0301e93a9650c)
:   chimera: add extended attribute support

[658233b128](https://github.com/dcache/dcache/commit/658233b128b8da95c5fda391e167dda91710d52f)
:   libs: use nfs4j-0.20.1

[0b57f11a33](https://github.com/dcache/dcache/commit/0b57f11a33a5b9e56547fa6242d1fc928ef4802b)
:   chimera: fix postgres version discovery

[639cc34212](https://github.com/dcache/dcache/commit/639cc34212bf274b7b0434482b74b6bc01d74dcb)
:   dcache-xrootd: add SciToken plugin

[4e8c33b382](https://github.com/dcache/dcache/commit/4e8c33b382201c7e3be97358d58cd4ae117d3688)
:   dcache-xrootd: add TLS support to door and pool

[2354a29eda](https://github.com/dcache/dcache/commit/2354a29eda764f0541c14a6fb2a576ee19b74abb)
:   dcache-xrootd: add delegation-only GSI property

[dbdb7f6e75](https://github.com/dcache/dcache/commit/dbdb7f6e75f86e27e055867c09cef194f930bfe6)
:   dcache-xrootd: eliminate try-catch block (InterruptedException no longer declared)

[dec851bce5](https://github.com/dcache/dcache/commit/dec851bce5e0c3241efaeee8a479e06f4f19d35c)
:   chimera: fsstat should handle big file systems

[1ba70abfc2](https://github.com/dcache/dcache/commit/1ba70abfc2c2e6c69dd135f9d755bab892f4ad7b)
:   dcache-frontend: make ErrorResponseProvider return the more specific error message

[b5f9e5d2e4](https://github.com/dcache/dcache/commit/b5f9e5d2e44a172a5fa8c7fdd6daf30f87fecc5b)
:   dcache: qos migration policy engine should not raise JVM error when no tape pool found

[0d1cdd7964](https://github.com/dcache/dcache/commit/0d1cdd79643d8bb28619765d29438382bb9409c2)
:   dcache-frontend: request file attributes explicitly

[a7a940bc0c](https://github.com/dcache/dcache/commit/a7a940bc0caed8bd0484e60c48651bb6a4852db7)
:   dcache: send merged mover and door info to kafka as request

[dba949e0ac](https://github.com/dcache/dcache/commit/dba949e0ac77d461ae0130a48aeee1641d3c0532)
:   sweeper: make sure the histogram object is properly configured

[01b7061ba4](https://github.com/dcache/dcache/commit/01b7061ba43723c0fd694da4dfdb813c15eeacd3)
:   namespace: accept XATTR as supported attribute

[933cedb4f3](https://github.com/dcache/dcache/commit/933cedb4f3c4709eefd490ce5d062b83cda37823)
:   The Book: Update documentation about how to use maven archetypes

[1a13e26772](https://github.com/dcache/dcache/commit/1a13e26772368e7ab08bddf26156cdfb6b6776c8)
:   dcache-history,dcache-frontend: guard against unconfigured sweeper histogram

[68e44b8b24](https://github.com/dcache/dcache/commit/68e44b8b241b968857d246e3bc9a22877a32cbbf)
:   pom.xml: sleepycat version update

[a1080dd2cc](https://github.com/dcache/dcache/commit/a1080dd2cc778733a91155933e7a568bff0d57d2)
:   wendav: add url param based xattr support

[5fc1d8a813](https://github.com/dcache/dcache/commit/5fc1d8a81317c6182d4d5786111bb8cf2c58b61a)
:   vehicles: add FileAttribute#XATTR to represent extended attributes

[28cb37a59d](https://github.com/dcache/dcache/commit/28cb37a59d4adc5d43b9b2e7aa61dd041d774a84)
:   common: add Xattrs to handle extended attributes

[f1a55a3a9b](https://github.com/dcache/dcache/commit/f1a55a3a9bb7e39ae3c13e1ebfcc6c03a1b447ff)
:   message: cells call of message toString() as part of CellMessge.toString()

[bf147085e3](https://github.com/dcache/dcache/commit/bf147085e30de136f69a399c92d65c54da662452)
:   dcache-frontend,history: protect against missing highest bin in histogram data

[f0aba8f424](https://github.com/dcache/dcache/commit/f0aba8f4249f58968051d53ccd3ac1a12702000a)
:   dcache-frontend: allow pool enable/disable to use boolean JSON value

[c7bd1a5942](https://github.com/dcache/dcache/commit/c7bd1a5942e3920a3f93dbbca71e0a471914a669)
:   Documentation: Update webdav write and read url

[8a2d5c991e](https://github.com/dcache/dcache/commit/8a2d5c991e6825fee939b4c84acd4f95ec0c7fd2)
:   ftp-client: Remove whitespaces in blank lines and line endings

[b864ff1d33](https://github.com/dcache/dcache/commit/b864ff1d33b7530c55692638c65a8bdcc5454f24)
:   nfs: give each door a unique state handler id

[08298eeafc](https://github.com/dcache/dcache/commit/08298eeafce424268bf40e298169af59d87283dd)
:   frontend: events inotify decouple sending events from message queue

[a77a06bd14](https://github.com/dcache/dcache/commit/a77a06bd14aef1c464b6a9a7b619cc125127117e)
:   frontend: fix memory leak in long-running SSE connections

[20e3c76dce](https://github.com/dcache/dcache/commit/20e3c76dced61811b103ef4ccd2c2d1d23dc2230)
:   libs: use nfs4j-0.20.0

[70987bc53e](https://github.com/dcache/dcache/commit/70987bc53e6b92587134bed6c7782abe13cf1961)
:   [maven-release-plugin] prepare for next development iteration

</div>
</div>
</div>

<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js" type="text/javascript"></script>
<script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"
        integrity="sha384-0mSbJDEHialfmuBBQP6A4Qrprq5OVfW37PRR3j5ELqxss1yVqOtnepnHVP9aJ7xS" crossorigin="anonymous"></script>