1 Openafs News -- history of user Visible changes. September 17, 2001
3 * Changes incorporated in OpenAFS 1.2.2
5 ** The namei fileserver allows vice "partitions" to be directories instead
6 of partitions and will attach and display accordingly. Creating the file
7 "AlwaysAttach" in the /vicepX directory is used as the trigger to attach it.
9 * Changes incorporated in OpenAFS 1.2.1
11 ** vfsck on Digital UNIX and Solaris will now refuse to fsck mounted
14 * Changes incorporated in OpenAFS 1.2.0
16 ** AFS now supports --prefix and the other directory options of
17 configure. By default AFS builds assuming it will be installed in
18 /usr/local. In order to get traditional AFS directory paths (/usr/afs
19 and /usr/vice/etc) use the --enable-transarc-paths option to
20 configure. More details on the new directory layout are found in README.
22 * Changes incorporated in OpenAFS 1.1.1a
24 ** Windows 95/98/ME/NT/2000 - Consistent versioning
25 Installation, AFS Control Center, Client dialog boxes and properties
26 pages for executables display a consistent OpenAFS version number.
27 Installation detects previous installation and prompts the user for upgrade
30 ** Windows 95/98/ME/NT/2000 - Installation features
31 During installation the user can select the source of the CellservDB file,
32 AFS home cell, and drive mappings. During installation a drive path
33 mapping can include a variable that will be substituted with the current
34 UserName that is logged in.
36 ** Windows 2000/NT - Integrated logon
37 The Integrated Logon feature works now.
39 ** Windows 95/98/ME - Logon script features
40 The Windows 95/98/ME client now offers a command-line option for starting up
41 the AFS client without authenication. It is now possilbe to start the AFS
42 client first and obtain tokens, and map drives all through Windows scripts.
43 This helps using Windows 95/98/ME client in Kerberos 5 environment.
45 ** Windows 2000/NT - LANA numbers
46 AFS client now scans the LANA numbers to establish the correct NETBIOS
47 connection. NetBEUI is no longer needed. The user no longer needs to find
48 the correct LANA number.
50 ** Windows 2000/NT - OpenAFS naming consistancy
51 Further progress has been made to remove references to "Transarc AFS"
52 and replace with "OpenAFS".
56 * Changes since OpenAFS 1.0
58 ** AFS now builds with configure. The README for building has been
59 updated and includes full details.
61 ** A client system can now have multiple sysname values for @sys.
62 They will be searched in order when looking up files in AFS. The
63 -newsysname argument to fs sysname can be repeated to set multiple
66 ** A new system group is created for new cells (system:ptsviewers
67 with id -203). If this group exists, members of this group can
68 examine and read the entire protection database. They can examine
69 all users and groups and can get the membership of any group.
71 ** A new program, pt_util has been added to the distribution. This
72 program allows users to print the contents of the protection
73 database or to edit the protection database without running a
74 ptserver. It can be used to set up a new cell without ever running
75 in noauth mode. Run pt_util -h for help.
77 ** The fs setcrypt and fs getcrypt commands have been added. These
78 commands allow the system administrator to require that the client
79 encrypt all authenticated traffic between the client workstation
80 and AFS. The encryption used is weak, but is likely better than
81 sending unencrypted traffic in most environments. Some functions,
82 such as looking for a volume may not be encrypted, but data
83 transfer certainly is. By default data is not encrypted. At this
84 time no significant experimentation with server performance has
87 ** By default AFS is compiled with AFS_AFSDB_ENV, enabling the -afsdb
88 option to be given to afsd on startup. If this option is used, then new
89 cells will be looked up using AFSDB records stored in DNS if they
90 are not found in CellServDB. This means that users can create
91 cross-cell mountpoints in directories they control to access cells
92 not in root.afs, and that cells in root.afs need not be in the
95 ** AFS database servers can be marked as read-only clones. Surround
96 the hostname in square brackets on the bos addhost command and the
97 database server will never be elected sync site. This is useful
98 for cells distributed over a wide region.
100 ** The AFS servers now support the -syslog flag. This flag causes
101 them to log to syslog rather than to files. This flag is not
102 supported on NT. For all servers besides the salvager, the flag can
103 also be specified as -syslog=facility, where facility is an integer
104 facility code from syslog.h. A -syslogfacility option is provided for
105 the salvager to accomplish the same goal.
107 ** If the --enable-fast-restart flag is given when configuring AFS,
108 then the salvager supports the -dontsalvage flag which causes it to
109 exit without salvaging any volumes. If this is configured into the
110 third command of a fs process, then the fileserver will start without
111 salvaging. It will fail to attach volumes that need salvaging and they
112 can be salvaged manually. This provides significantly better server
113 startup performance at the cost of administrative complexity.
115 ** If the --enable-bitmap-later flag is given when configuring AFS,
116 then the fileserver creates bitmaps for free vnodes on demand, allowing
119 ** If bosserver finds a BosConfig.new file at startup, it reads this
120 file and renames it to BosConfig. This allows bosserver to be
121 reconfigured at next restart.
123 ** The bosserver can be placed in a restricted mode in
124 which AFS superusers are only granted limited access to the server
125 host. The following functionality is disabled when restricted mode is in
129 bos getlog (except for files with no '/'s in their name)*
135 specific exceptions are made for functionality that "bos salvage"
138 a cron bnode who's name is "salvage-tmp", time is now, and command
139 begins with "/usr/afs/bin/salvager" may be created. This bnode
140 deletes itself when complete, so no special "delete" support is needed.
141 This functionality may be removed in the future if a "Salvage" RPC is
144 The file with the exact path /usr/afs/logs/SalvageLog may be fetched,
145 since that is how bos salvage [...] -showlog is implimented.
147 Restricted mode is enabled using a new bos command (bos setrestricted)
148 or bossever command line switch (bosserver -restricted). Restricted
149 mode can be disabled by a) sending the bosserver process a SIGFPE (which
150 will then allow restricted operations until the next restart or
151 setrestricted command) or b) editing /usr/afs/local/BosConfig
152 (or BosConfig.new), and restarting the bosserver.
154 ** The bos UserList of trusted administrators can now contain
155 cross-realm Kerberos principals.
157 ** udebug now takes --server not --servers.
159 ** Several error messages have been improved to include volume
162 ** Several new ports have been included for UNIX platforms: Darwin
163 (ppc_darwin_12 and ppc_darwin_13), Linux 2.4 (i386_linux24), Linux on
164 the Powerpc (ppc_linux22 and ppc_linux24), Linux on the Sparc
165 (sparc_linux22, sparc64_linux22 and sparc64_linux24) .
167 ** Incomplete FreeBSD and Alpha Linux ports are included. The
168 FreeBSD port has a working server and the Alpha Linux port has a
169 partially working client.
171 ** A native client for Windows 95/98/ME has been added to the distribution.
172 With this program, a gateway machine is no longer required for Windows 9x
173 to access AFS files. One drive letter will be created on your machine by
174 default - Z:. The Z: drive will be the root of the AFS tree, allowing you
175 to browse all sites that have AFS servers available. Additional drive
176 letters can be defined for other AFS directories. A Windows Explorer
177 shell extension is included that allows you to right click on items
178 within an AFS tree to bring up an "AFS" menu item and perform various
179 operations on a file or directory. The most useful item is "Access
180 Control Lists", which allows you to view and edit the permissions of a
181 particular directory. Command line tools are also available in the
182 install directory. These commands include klog, unlog, tokens, kpasswd,
183 symlink, fs and pts. The installable includes a readme file that contains
184 more information on how to use the client program and known issues.
186 ** support for large caches in afsd. Cachefiles are stored in
187 subdirectories. The default is 2048 files per subdirectory, which
188 should work fine in most situations. You can use the new afsd
189 option -files_per_subdir to change this number. Note that the first
190 time you run afsd with this patch, your cachefiles will get moved
191 into subdirectories. If you subsequently run an older version of
192 afsd, you will lose all your cached files.