1 User-Visible OpenAFS Changes
7 Introduce the rxgk Rx security class, initially limited to server-to-server
8 traffic and local keys (gerrit topic: rxgk-phase1).
10 Add options to the vos and pts commands for server-to-server rxgk support.
12 Add support to add and delete rxgk keys with asetkey. Add support to
13 generate random keys with asetkey, which can be useful to create certain
16 Raise implementation-defined anti-DoS length limits for prdb-related XDR
17 array types, which were being reached at some sites (13838).
19 Bring "-setpag" functionality in klog to parity with aklog (14146).
21 Fix potential Rx hang when an incoming call must wait (14158).
23 Fix latent bug preventing RX_CONN_NAT_PING from working (13041).
25 Fix potential rx_connection leak in pthreaded programs (13042).
27 Avoid NatPing storm with many connections to the same server (14312).
29 Do not leave empty directories behind in the file server vice partition
30 when running the "vos zap -force" command (12879, 12839).
32 Make non-verbose "vos remsite" output output more readable (14127).
34 Display the usage of simple commands (commands without subcommands) when run
35 only with the -help option (10983).
37 Replace SOURCE-MAP with a README.md (14003).
39 Improve documentation of minimum required dependency versions (14305).
41 Remove unused definition of LINUX_PKGREL from configure.ac (14117).
43 Improve logging and diagnostic messages:
44 * Add a warning message to vos when performing an incremental volume
45 restore over an existing volume which is newer than the dump
47 * Log the binding address and port during startup in the cache manager and
48 all of the server processes (13272)
49 * Improve volume server logging to provide better information during
50 volume restore failures (13252)
51 * Improved cache manager syslog tracing (11858)
52 * Improved database server logging to log important messages at the
53 default logging level, log information during database synchronizations,
54 and log diagnostic messages during recovery aborts (12617, 13079, 12618)
55 * Set a thread name for rx listener threads (13600)
56 * Avoid truncating authentication information in vlserver log
58 * Log when ubik recovery aborts a running remote transaction (13862).
60 Fix warnings issued by static code analyzers:
61 * Fix possible undefined variable in disconnected mode (13207)
62 * Remove redundant conditionals (13158, 13157)
63 * Exit if out of memory while attempting to format command help
65 * Fix possible undefined variable when reading old vldb formats (13755)
67 Assorted memory-handling fixes (13461, 12293, 13355, 13395, 13396, 13161,
68 13659, 13714, 13715, 13760, 13716, 13761).
70 Fix many (but not all) of the new warnings issued by recent versions of
71 gcc and clang (12987..12989, 13010, 13287, 13462..13464, 13467..13468,
72 13470..13476, 13494, 13660..13664, 13684, 13726, 13754, 14049, 14092,
73 14106, 14207, 14273, 14277, 14274, 14275, 14279, 14292, 14125).
75 Added unit tests for functions mapping vice partition to id (13176).
77 Fix issues resulting in parallel "make install" to fail (13786, 14137).
79 Updated libauth test program (13394).
81 General code cleanup; remove unused code or obsolete code, old comments,
82 or refactor for clarity
83 (12988, 13204, 13209, 13210, 13213, 13226, 13227, 13260, 13271, 13277,
84 13309, 13310, 13324, 13325, 13339, 13345, 13346, 13351, 13361, 13362, 13363,
85 13390, 13397, 13408, 13414, 13458, 13490, 13500, 13509, 13514, 13557, 13640,
86 13655, 13282, 13683, 13995, 14218, 14219, 14236, 14246, 14322, 14338).
88 Build system clean up and fixes
89 (12956, 12961, 12962, 12963, 12992, 12993, 12994, 13237, 13275, 13338,
90 13357, 13360, 13387, 13419, 13594, 13652, 14115, 14148..14150, 14132,
95 Improve database server logging by logging messages when and why a server
96 is marked as down (12616).
98 Log a warning message when starting server processes with no encryption
99 keys available (13911).
101 Fix use of triple-DES cell-wide keys for rxkad.krb5 (14203).
103 Remove redundant lseek system calls and use positional I/O in the database
104 servers to improve performance (12271, 12272).
106 Fix option parsing to enable parallel salvageserver operation (14201).
108 Fix an edge case where writes were errneously allowed on readonly
111 Add an option to allow members of system:administrators to perform
112 write operations on otherwise readonly fileservers (13707).
114 Allow "vos rename" to be re-run to finish a previously interrupted
115 volume rename operation (13720).
117 Return errors for short reads during volume dumps instead of silently
118 padding with NUL bytes (14255).
120 Work around potential deadlocks when the salvageserver spawns a child
121 at the same time another thread is writing to the log (14239).
123 Do not overwrite the errno variable when logging certain database sendfile
126 Avoid confusing log message ("Unable to create the volume") when
127 restoring over an existing volume (14208).
129 Fix vldb listing of created-but-not-released RO replicas (14154).
131 Avoid confusing "half-locked" state for interrupted volume renames (14157).
133 Prevent attempts to grow the VLDB past the maximum 2GB size (14180).
135 Fix a bug that prevented logging of discarded callbacks (14256).
137 Code migration to POSIX Threads (pthreads) from LWP.
138 * Convert upserver and upclient to pthreads (12754)
139 * Convert xstat libraries and related utilities to pthreads (12745, 12746,
140 12747, 12753, 13454, 13455)
144 Attempt to detect and report some common types of cache corruption
145 (13436, 13747, 13969, 14002).
147 Log a warning when the cache is "stressed" (almost full) to suggest
148 possible re-tuning (13255).
150 Require opt-in to use the historical/deprecated single-DES krb5
151 encryption types, which are being removed from krb5 distributions (13689).
153 Fix incorrect informational messages when the AFSCELL environment
154 variable is set (13371).
156 Assorted cleanup and microoptimizations (12655, 13254, 12656, 13253, 14241,
159 Tidy up the shutdown sequence, closing some memory leaks and not
160 generatin Rx traffic while Rx datastructures are being deconstructed
163 Fix reading entries of historic vldb formats (13465).
165 Suppress warning about running unauthenticated for `bos -noauth` (14306).
169 Support upstream kernels through Linux 5.9.
171 Be more careful about overriding the current credentials for operations
172 on cache files, preventing spurious permission errors when systems like
173 AppArmor and SELinux are in use (13751, 14098).
175 Avoid panics from procfs when the kernel module is loaded but afsd is
178 Improve ppc64le support (13980, 14046).
180 Improve RPM packaging (14114, 14116, 14266)
184 Simplify background-move return-code processing (13280).
186 Support macOS Catalina (13935, 13936, 13668..13671, 13928, 14062, 14222).
188 Add OpenAFS.pkg to the list of files to be codesigned (14221).
192 Remove references to (unspported) SunOS 4 (13506).
194 Build system fixes for parallel make on Solaris.
196 Support function attributes when building with recent versions of Solaris
199 Fix many (but not all) of the compiler warnings when building on the Solaris
202 Add autoconf support for Studio 12.6 tools (13867).
206 General improvements to VFS compliance.
208 Create destination kernel module directory when installing on
209 FreeBSD (13653, 13690)).
211 Add param.h files and sysnames for FreeBSD 11.2 (13534), 11.3 (13792),
214 Fix fcntl-style locks by adapting to quirky historical behavior (12579).
216 Support kernels that use VIMAGE support at runtime, not just at
219 Change LWP stack strategy to avoid SIGBUS errors (13691).
221 Skip SIGBUS test (for reasons unrelated to the previous) (14145).
228 * Address warnings and errors encountered when building OpenAFS with
229 modern compilers like gcc9 or recent clang (13727..45 13749..50 13756
232 * Avoid some rare cases of Rx calls getting stuck in the incoming queue
235 * Display the usage of simple commands (commands without subcommands) when
236 run only with the -help option (13894)
238 * Fix a memory leak in the cache manager and the fileserver while
239 processing "fs uuid" or "fs setcbaddr" (13899)
241 * Fix a memory leak when reopening krb local realms configuration (13900)
243 * Avoid possible crashes when freeing kerberos contexts (13902)
247 * Do not leave empty directories behind in the file server vice partition
248 when running the "vos zap -force" command (13897)
250 * Fix "vos zap -force" failures when the volume being zapped does not have
251 an entry in the fileserver's volume group cache (e.g., during fileserver
254 * Relax the length limits on some membership lists used in ptserver RPCs,
255 introduced in release 1.8.0 to prevent denial of service attacks, to
256 accommodate use cases of some larger existing sites (13844)
258 * Improved diagnostics and error messages (13898 13906..8 13938)
260 * Ensure that fileservers running in readonly mode actually reject all
261 write requests, but introduce a -admin-write switch allowing writes
262 by members of the system:administrators group (14018 14019)
266 * Require the -insecure_des switch to be passed to aklog and klog.krb5
267 to make them work with single-DES encryption types (13791)
269 * Avoid a panic due to a retryable error - retry in a background request
272 * Avoid blocking other functions on the completion of some potentially
273 long-running RPCs issued by the server (13893)
275 * Fix a potential memory leak in "fs getserverprefs" when the pioctl fails
278 * Avoid the local cache incorrectly reflecting the state of a file on the
279 fileserver after flushing large chunks of data to the server. This
280 issue was present on FreeBSD clients, but probably not Linux/Solaris
281 ones (13951) (RT #135041)
283 * After a VLDB lookup of a read-write volume already failed, don't bother
284 looking up corresponding read-only or backup volumes since those lookups
285 are bound to fail, in order to make the client more responsive and
286 avoid unnecessary load on the vlserver (13968)
288 * Allow a "vos rename" to succeed if the new volume name is the same as
289 that in the current VLDB, to make it possible to complete a previously
290 interrupted volume rename (14055)
292 * Allow processes which are sleeping due to PAG throttling to be killable
295 * Fix set PAG failures due to signals (13975).
299 * Support mainline kernels up to and including 5.7 (14069 14094 14095
302 * Make builds succeed with --enable-checking for mainline kernels
303 5.3-rc2 and later (13910)
305 * Avoid possible deadlocks (13748 13765)
307 * Fix build of libuafs on ppc64le (14104)
309 * Fix build on certain recent 32-bit distributions (14234) (RT #135084)
313 * Support building, packaging and notarization on macOS 10.15 "Catalina"
318 * Build fixes (13848..52)
324 * Fix OPENAFS-SA-2019-001: information leakage in failed RPC output
325 Generated RPC handler routines ran output variables through XDR encoding
326 even when the call had failed and would shortly be aborted (and for
327 which uninitialized output variables is common); any complete packets
328 assembled in the process would be sent to the peer, leaking the contents
329 of the uninitialized memory in question.
331 * Fix OPENAFS-SA-2019-002: information leakage from uninitialized scalars
332 Generated RPC handler routines did not initialize output variables of
333 scalar (fixed-length) type, since they did not require dedicated logic to
334 free. Such variables allocated on the stack could remain uninitialized
335 in some cases (including those affected by OPENAFS-SA-2019-001), and the
336 contents of uninitialized memory would be returned to the peer.
340 * Fix OPENAFS-SA-2019-003: fix crash in database servers
341 The ubik debugging RPCs prioritize being fast and non-disruptive to
342 database operations over strict correctness, and do not adhere to the
343 usual locking protocol for data access. A data race could cause a NULL
344 dereference if the second memory load was not optimized out by the
351 Build system updates to remove obsolete autoconf macros and remove missing
352 script warning during builds (13480, 13481, 13482, 13483, 13484, 13486,
355 Build system update to fix a conditional check in the pthread.m4 autoconf
358 Build system update to create the man3 subdirectory, fixing a
359 reported build failure (13535).
361 Remove the last reference to src/mcas in the documentation (13558).
365 Fix fileserver's parsing of the options -vlruthresh, -vlruinterval,
366 -vlrumax and -novbc (13680).
368 Fixes to make ptserver's behaviour when run in restricted mode consistent
369 with the documentation: Non-members of the system:administrators group
370 are no longer allowed to issue the adduser, setfields and delete pts
371 commands, and all members of system:administrators are now allowed to
372 issue pts commands in this mode, not just the admin principal (13686..88).
376 Fix missing Rx call clean-up after failing to read dcaches from a file
379 Fix an Rx call leak for calls aborted by a connection abort after the call
380 was initialized but before use (13517).
382 Remove the obsolete afs_xosi lock to remove unnecessary serialization of
383 VOP_GETATTR calls. This can lead to improved performance under heavy
386 Increase the size of the Directory Name Lookup Cache (DNLC) to improve
387 cache performance (13559).
389 Fix getting tokens for cells with a three character name (13679).
391 Avoid a misleading message about the cell being used when aklog is run
392 with the -cell parameter but the AFSCELL environment variable is set to
393 a different cell (13676).
395 Build system update to honor the CFLAGS environment variable when building
400 Support for mainline kernels up to 5.3 (13787, 13789).
402 More fixes for improper use of ENOENT fixes to avoid incorrect use of linux
403 negative dentry cache, which can lead to false ENOENT errors (13542, 13543,
404 13590, 13692) (RT #134904).
406 Return errors instead of returning incomplete directory listings when the
407 directory objects are incomplete in the cache (13591).
409 Add ppc64le_linux26 sysname for the ppc64le architecture (13636, 13637,
412 Fix configure check for a kernel time function in order to build on
415 RPM packaging update for RHEL8 adding a build requirement to ensure the
416 kernel module can be built from the SRPM (13563) (RT #134900).
418 On systemd based RHEL/Fedora systems, start the client after dkms startup
419 is finished if the latter is installed and enabled, to avoid attempting
420 starts without the kernel module being available yet (13674) (RT #134974).
424 Build system updates for MacOS (13584).
428 Add CTF debugging records to userspace objects to improve debugging
431 Convert the cache manager vnodes to be non-embebbed on Solaris 11 in order
432 to make the cache manager more resilient across Solaris 11 changes (13524,
433 13525, 13526, 13527, 13528).
440 * Improved diagnostics and error messages (13186 13411 13417)
442 * Avoid sending RX packets with random garbage in the userStatus field
445 * Fixed detection of the RX initialization status (13416)
447 * Assorted fixes to avoid segmentation faults and other potential problems
448 by detecting internal errors rather than letting them go unnoticed
453 * Fixed a build problem accidentally introduced in release 1.8.2 (13328)
455 * Assorted efficiency improvements in the ubik implementation (13153 13218
458 * Fixed locking around transaction list processing in volserver to avoid
459 segmentation faults and other potential problems (13336 13337)
461 * When the volserver attempts to remove a temporary volume after a
462 transaction, but the volume was already removed, e.g., by the salvager,
463 this is no longer treated as an error (13235)
467 * Update the CellServDB to the latest version from grand.central.org from
468 May 14th 2018 (13409)
470 * Avoid a panic during cache initialization when allocating the required
473 * Add back the packet counters and timestamps to "vos status" output
474 which had been missing since release 1.8.0 (13421)
476 * Correctly handle errors encountered while reading data from the server
477 and writing it to the cache, e.g., due to a full cache partition (13443)
479 * Avoid a panic due to a recoverable error while flushing cache items
484 * Support mainline kernels 4.20 and 5.0 and distribution kernels with
485 backports from those (13405 13406 13440 13441 13442)
487 * DKMS-related fixes in Red Hat packaging (13438 13479)
491 * Support building and packaging on macOS 10.14 "Mojave" (13412 13413)
498 * Fix OPENAFS-SA-2018-002: information leakage in RPC output variables
499 Various RPC routines did not always initialize all output fields,
500 exposing memory contents to network attackers. The relevant RPCs include
501 an AFSCB_ RPC, so cache managers are affected as well as servers.
505 * Fix OPENAFS-SA-2018-003: denial of service due to excess resource consumption
506 Various RPCs were defined as allowing unbounded arrays as input, allowing
507 an unauthenticated attacker to cause excess memory allocation and tie up
508 network bandwidth by sending (or claiming to send) large input arrays.
510 * Fix OPENAFS-SA-2018-001: unauthenticated volume operations via butc
511 On systems using the in-tree backup system, the butc process was running
512 with administrative credentials, but accepted incoming RPCs over
513 unauthenticated connections; these incoming RPCs in turn triggered
514 outgoing RPCs using the administrative credentials. Unauthenticated
515 attackers could construct volue dumps containing arbitrary contents
516 and cause these dumps to be restored and overwrite arbitrary volume
517 contents; afterward, the backup database could be restored to its
518 initial state, hiding evidence of the unauthorized changes.
520 Running butc with -localauth now requires authenticated incoming
521 connections, and the backup utility makes authenticated connections to
522 the butc. Audit capabilities have been added to the butc RPC handlers.
523 Command-line arguments are provided to retain the (insecure) historical
524 behavior until all systems have been upgraded.
530 * Support for mainline kernel 4.18 and distribution kernels with backports
537 * Improve the usability and consistency of the public API: install missing
538 headers, and add additional symbols to the export list for shared libraries.
540 * Improved Rx abort generation: use the proper serial number for an existing
541 connection if possible, and 0 otherwise (to improve debugging).
543 * Assorted minor fixes in response to static analysis of the codebase.
545 * Fix memory-safety error in XDR decoding of enumerated types.
549 * Fix reference counting error that could cause an assertion failure
552 * vldb_check -fix will no longer corrupt the vldb when multiple MH blocks are present.
554 * Assorted cleanups and efficiency improvements in the ubik implementation.
556 * Return a valid InlineBulkStatus response in error cases.
558 * The fileserver now rejects invalid partition names when attaching partitions.
562 * Fix volume callbacks (e.g., when running 'vos release').
564 * Treat failure to obtain a DSlot as a hard error for that cache partition,
565 avoiding a flood of "disk cache read error in CacheItems" log messages,
566 and reducing the chance of subsequent panic.
568 * Improve error messages for invalid values with -volume-ttl.
570 * Remove useless error message:
571 "find_preferred_connection: no connection and !create".
573 * Avoid passing NULL to a kernel memory deallocator, which is not guaranteed
574 to be safe on all systems.
578 * Add support for 64-bit ARM clients ("arm64").
580 * Fix panic when cache bypass is enabled.
582 * Improve cache manager behavior when unable to open cache files.
584 * Improvements to the RPM packaging.
586 * Detect out-of-memory when using kernel pages for writing.
590 * Fix various issues in the build process for recent Solaris versions.
594 * Fix clients on OS X 10.13.
596 FreeBSD / NetBSD / OpenBSD
598 * Fix panic triggered during periodic cleanup operations and shutdown.
604 * Substantial code quality improvements, largely spotted by Coverity and
605 clang's static analysis.
606 - Add new library for platform independent functions (opr).
607 - Remove arbitrary path name length limits.
608 - Convert to Heimdal's roken library for reliability.
609 - Avoid garbage in allocated buffers (calloc).
610 - Modernize signal handling in pthreaded server processes (softsig).
611 - Improve code comments and additional Doxygen style comments.
612 - Reduce compiler warnings, dead code, unused variables, and
614 - Fix bugs found by static code analyzer (clang-analyzer).
615 - Improved unit test coverage.
616 - Make VLDB flag definitions consistent.
617 - Improve use of run-time assertions and add static assertions.
618 - Add compiler attributes to assist static analyzers.
619 - Clean up include headers in the entire tree.
620 - Improve command-line handling library (libcmd).
621 - Replace hash functions with Jenkin's hash function for faster
622 and more evenly distributed lookups.
623 - Provide a red-black tree data structure to enable algorithmic speedups.
624 - Convert backup and salvage servers to the common logging API (libutil).
625 - Improve volume id data type consistency (VolumeId).
626 - Import APIs for kerberos-style profile configuration support.
627 - Add new APIs to support UserList identities.
628 - Add new APIs to support tabular output from command-line utilities.
629 - Convert vnode macros to inline-functions.
631 * Improved support for non-DES encryption types:
632 - Convert to Heimdal's hcrypto library to support RFC 3961.
633 - Add extended key file format replacing rxkad.keytab, and
634 new key management APIs.
635 - Add support for extended key types to asetkey.
636 - Add akeyconvert to assist in upgrading to OpenAFS 1.8.x by converting an
637 existing rxkad.keytab file to an extended key file.
638 - Do not install the kaserver and related utilities by default to
639 discourage the use of these DES-dependent components.
640 - Remove obsolete klogin and klogin.krb programs.
641 - Add new token APIs to support new rx security classes.
643 * Migrate from LWP to POSIX threads (pthreads):
644 - Convert the ptserver and vlserver from LWP to pthreads.
645 - Remove LWP version of the file server binary.
646 - Convert afsd, aklog, asetkey, klog.krb5, pts, udebug, and vos, from LWP
649 * Improvements to Rx:
650 - Restructure the Rx API to privatize the implementation.
651 - Convert rx events to a red-black tree data structure to improve
653 - Convert from mutexes to atomic operations for counters to reduce lock
655 - Provide per-opcode Rx statistics.
656 - Add an rx_opaque data type to support non-DES encryption types
657 and general code cleanup.
658 - Wake up the application thread after 'twind' is updated to avoid 100ms
659 transmit delays when the receive window transitions from closed to
661 - Fix for OPENAFS-SA-2017-001: sanity-check peer transport parmeters
662 received in ack trailers
664 * Libraries (both internal and installed) are built using libtool, including
665 libuafs. The resulting shared libraries for libafsrpc and libafsauthent
666 should be more usable than previously.
668 * Improvements to the build system:
669 - Convert to libtool to build shared libraries.
670 - Clean up and improve the build system.
671 - Support out of tree builds.
672 - Add a makefile target to generate Doxygen source code documentation.
673 - Link the Java API for OpenAFS with libuafs.a and remove the
675 - Always build the rxperf tool.
676 - Fix man-page generation by make after ./regen.sh -q
677 - Support the SOURCE_DATE_EPOCH environment variable to improve build
679 - Modernize language specific SWIG typemaps for libuafs Perl bindings.
680 - Refactor acinclude.m4 into a set of smaller m4 files (12876, 12877, 12878)
682 * Improvements to documentation:
683 - Document the new KeyFileExt file.
684 - Reorganized the README files.
685 - Improvements and fixes to documentation generation.
686 - Add experimental epub and mobi support
687 - Remove obsolete LWP information from the file server documentation.
688 - Update and reorganize the Quick Start Guide.
689 - Update the Admin Guide.
690 - Remove AIX, HP-UX, and IRIX information from the Quick Start Guide.
691 - Document the vldb and prdb (ubik) file formats.
692 - Add PtLog man page.
693 - Corrections and clarifications to man pages.
694 - Add ubik threading analysis doc.
695 - Normalize the location of text documents in the source tree.
697 * Improvements for troublshooting, debugging, and testing:
698 - Log more details on volume-server-to-fileserver communication errors
700 - Set thread names in pthreaded servers on platforms which support
702 - Add dynroot lock tracking to cmdebug
703 - Fix tracking of an fstrace call site in the cache manager background
705 - Add the afsload tool to simulate multiple cache managers for file server
707 - Add run-time checks for refcount imbalances in the cache manager.
708 - Fix missing newlines in afsd -debug output.
710 * Developer tool improvements:
711 - Improvements and fixes for rxgen (used to generate Rx RPC bindings).
712 - Add tool for man page verification of command options.
713 - Add tool to find Unix cache manager lock identification numbers.
714 - Add an option for pretty build output.
716 * RPM packaging updates:
717 - Update the spec file to keep up with accumulated changes.
718 - Move the klog.krb5 man page to the openafs-krb5 sub-package.
719 - Remove stray man pages. (12870, 12871)
720 - Prevent double-starting client on RHEL7
721 - Convert rpm spec file from deprecated 'make dest' to 'make install'.
722 - Fix rpmbuild command line option default handling.
723 - Support older versions of rpmbuild which do not support the
724 rpmbuild %exclude directive. (12873)
725 - Move the legacy kaserver and related programs to separate sub-packages,
726 which are only built when rpmbuild is given the '--with kauth' option
728 - Package the libuafs perl bindings (12921)
730 * Add a new protection error code (PRNAMETOOLONG) instead of silently
731 truncating names which exceed the maximum name length (PR_MAXNAMELEN).
733 * Add an implementation limit (50000) on the number of names/ids which can
734 be transmitted by unauthenticated clients to the ptserver, avoiding
735 excessive resource consumption from unauthenticated requests.
737 * Add the -config option to vos, pts, and aklog to specify the path to the
738 cell configuration files.
740 * Add more details in vos release -verbose output.
742 * Add the cacheout -encrypt option to encrypt communication between the
743 cacheout client and the fileserver.
745 * Add the command line options to the afsio program to enable encryption of
746 traffic between afsio and the fileserver (-clear, -crypt).
748 * Add the vos release -force-reclone option to force recloning the volume to
749 be released without forcing a full volume dump being transmitted to all
752 * Fix vos to avoid writing loopback addresses into the VLDB in
755 * Print bos and pts error messages to standard error instead of
758 * Improve formatting of the -help output of all commands.
760 * Change -n to -dryrun in all backup subcommands.
762 * Change the backup deletedump -port command line option to -portoffset.
764 * Add user and build host in the version string returned by
767 * Support recent versions of gcc (7.2.1) (12897)
771 * Ubik servers using pthreads are now available and are used by default
773 * As part of improving Ubik reliability in certain edge cases, an extra
774 election cycle (about 60 seconds) may be needed before writes are
775 permitted. This is a conservative change that may be removed in
778 * Avoid continually retransmitting the ubik database to remote sites when
779 a write transaction occurs as remote sites are attempting to rejoin the
780 ubik cluster. (12896)
782 * Ensure the ubik database version number is updated on remote sites at the
783 point the database is transferred to remote sites instead of waiting for
784 the next ubik beacon. This avoids write transaction failures during the
785 window between the database transfer and the next ubik beacon (12885).
787 * Remove periodic background fsync by the fileserver (ihandle fsync thread).
789 * Fix potential file handle leak in the file server ihandle caching layer.
791 * Disable the so-called "hot threads" feature in the file server. The hot
792 threads feature was intended as an optimization for dispatching incoming
793 calls to the current listener thread, but has been reported to incur a
794 performance penalty on modern multi-core systems.
796 * Do not permit creation of users with id of ANONYMOUSID.
798 * Do not save/restore host states in the fsstate.dat file for hosts which
799 are in the process of retrieving CPS information from the ptserver when
800 the fileserver is being shutdown. This fixes a bug in which the fileserver
801 will incorrectly block all threads following a restart.
803 * Add the ptserver -restrict_anonymous option to inhibit exposure of user
804 names from the ptserver.
806 * Do not truncate server log files by default when server processes
807 are started. The -transarc-logs option provides backward compatibility
808 with IBM AFS log handling on server startup. Log messages may be lost
809 in back-to- back restarts when a server is running in this mode.
811 * Reopen server logs on SIGUSR1. This may be used by third-party log
812 rotation tools, such as logrotate, to reopen the log file handles after
813 log files have been renamed.
815 * Fix various bugs when logging with -mrafslogs enabled.
817 * Dynamically reload the kerberos realm to AFS cell mapping (krb.conf) and
818 exclusions for mapping kerberos principals to AFS identities (krb.excl)
819 configuration when the CellServDB cell configuration file is touched.
820 Previously, a restart of the file server was required after updating the
821 kerberos mapping configuration files.
823 * Add a command line option (-restricted_query) to the vlserver and
824 volserver to restrict information queries about volumes to a specific
827 * Add a command line option to the server programs to specify an alternate
828 fully qualified log file name (-logfile).
830 * Add a command line option (-config) to the server programs to specify
831 an alternate path to the server configuration.
833 * Add a command line option to the ptserver and vlserver to specify an
834 alternate path to the database data files.
836 * Add a command line option to the volume server to enable encryption of
837 volume-server-to-volume-server-traffic (-s2scrypt).
839 * Increase the maximum number of LWP threads allowed for the ptserver and
840 vlserver from 16 to 64 (-lwp).
842 * Remove an unused file server command line option (-k).
844 * Fix an incorrect assertion in Demand Attach File Server which could cause
845 the file server process to abort in certain rare conditions.
847 * Deprecate the -bitmap-later configure option for non-Demand-Attach File
850 * Add -vhashsize support to non-Demand-Attach File Servers (DAFS).
852 * Add support for subnet ranges in the NetInfo and NetRestrict
855 * Add the GetXStats RPC to the audit log.
857 * Fix directory creation by bosserver when built for non-Transarc paths.
859 * Fix incomplete list of server addresses retreived by vos listaddr when the
860 vldb contains unreferenced multi-homed server entries.
862 * Remove obsolete bos blockscanner and unblockscanner commands that
863 were only needed for the removed MR-AFS functionality.
865 * Remove obsolete bos salvage options that were only used by the
866 removed MR-AFS functionality..
868 * Remove calls to the deprecated sbrk() function.
870 * Add an experimental feature to database servers to support ubik reads
871 while write transactions are in progress, enabled at build time with the
872 --enable-ubik-read-while-write configure option. This feature is not
873 considered ready for production usage at this time.
875 * Avoid filling the FileLog with "Volume x offline: not in service" when
876 a volume is administratively taken offline with vos offline.
878 * Print an error message when bosserver is started with an unknown
881 * Modify the volume updateDate when the volume is changed by a salvage.
883 * Volume usage statistics are now preserved during reclone and restore
884 operations by default, the behavior previously enabled by
885 the -preserve-vol-stats flag to the volserver. The historical behavior
886 can be retained via the -clear-vol-stats argument.
890 * Use rxkad_crypt by default for connections to fileservers. This matches
891 the existing behavior of the Windows client and has been applied by
892 the distribution packaging on many platforms already.
894 * Add support for relative ACL changes with fs setacl. If a single plus (+)
895 or minus (-) character is appended to the rights' letters argument, the
896 new rights are computed relatively to the existing ones.
898 * Remove afsd -settime and afsd -nosettime support.
900 * Add the afsd -inumcalc option to specify the method used to calculate
901 inode numbers presented by AFS.
903 * Add the afsd -volume-ttl option to specify set the maximum amount of time
904 information retrieved from the vlserver will be cached, regardless of
905 callback expiry times.
907 * Return EIO on internal errors instead of the misleading ENOENT.
909 * Log ICMP errors received, if any, for unreachable servers.
911 * Improve performance of clients with multiple PAGs for different cells.
913 * Fix race condition between changing and using user tokens among cache
916 * Fix fs sysname for users with UID 2748 and 2750 when not running
919 * Add Perl bindings for the user-space cache manager library (libuafs).
921 * Fixes to the bypasscache feature.
923 * Fix fs getcacheparms miscounts.
925 * Remove the obsolete Netscape plugin.
927 * Fix building gtx when ncurses is linked against libtinfo.
929 * Update to the GCO CellServDB update from 14 March 2017.
933 * Remove Linux 2.2 and 2.4 support.
935 * Changes to avoid EIO errors with multiple processes doing intensive mmap
936 writing. (Drop PageReclaim AOP_WRITEPAGE_ACTIVATE.)
938 * Prevent fakestat data inconsistencies in certain cases (131855).
940 * Fix dentry leak which can cause a crash on shutdown.
942 * Fix improper use of ENOENT and avoid incorrect use of linux negative
945 * Use a more correct (less aggressive) scheme to react to downward
946 pressure on cache usage, avoiding d_invalidate(), which can cause
947 getcwd() failures on RHEL 7.4.
949 * Apply a workaround to be compatible with RHEL 7.5's KABI preservation
950 strategy for reading directories.
952 * Improve error reporting when encountering corrupt directories.
954 * Improve rx error handling in the Linux cache manager.
956 * Rename kpasswd to kapasswd when packaging RPMs to avoid colliding with
959 * Do not use the obsolete --enable-largefile-fileservers configure option
962 * In Red Hat packaging, use a separate rpm for kmod debuginfo,
963 removing a needless tight version dependency on the userspace package.
966 * Use the RemainAfterExit systemd feature to avoid premature exit
967 when -afsdb is not given, for RPM packages.
969 * Remove Debian packaging files from the OpenAFS source tree. Debian
970 packaging files are currently maintained in the downstream Debian
973 * Add the sparc_linux26 sysname.
975 * Desupport 32-bit Linux kernels on s390/s390x.
977 * Fix Debian/Ubuntu build regression on kernel 3.16.39.
979 * Fix --enable-kernel-debug for linux 4.8+.
981 * Fix a hang encountered when accessing a previously removed
982 directory entry (12811).
984 * Support linux 4.10, 4.11, 4.12, 4.13, 4.14, 4.15
988 * Remove support for all Solaris and SunOS platforms prior to Solaris 8.
990 * Build 64-bit binaries for Solaris x86 by default.
992 * Use one-group PAGs on Solaris 11, which is required for PAG support
993 on Solaris 11 since supplemental groups must be sorted starting with
996 * Update search paths for solaris cc for recent versions Solaris Studio.
998 * Modernize declaration of module dependences by converting from the
999 deprecated _depends_on symbol to ELF dependencies.
1001 * Avoid BAD TRAP panic due to invalid opcodes on x86 with Studio 12.5.
1003 * Add ctf debug records to Solaris kernel modules when debug builds
1004 are enabled and the ctf tools are present (ctfconvert/ctfmerge).
1006 * Save kernel module function arguments on x86 for debugging purposes.
1010 * Stop processing upcalls once rx shutdown starts.
1012 * Enable atomics for the darwin kernel.
1014 * Add a syscall to enable/disable bulkstat at run-time, which is
1015 disabled by default.
1017 * Fix path to binaries in the prefpane.
1019 * Fix builds on MacOS 10.12 by building only the active architecture
1022 * Support versions up through 10.13 (High Sierra) and APFS
1026 * Use the native kernel module build system instead of an ad hoc
1027 replacement build system.
1029 * Remove FreeBSD packaging files from the OpenAFS source tree. FreeBSD
1030 packaging files are currently maintained in the downstream FreeBSD Ports
1033 * Stay up to date with new FreeBSD releases (through 10.3).
1035 * Do not claim AFS_VM_RDWR_ENV
1037 * Add sysnames and files for i386 and amd64 10.4, 11.1, and 12.0
1038 (12-CURRENT, at present). (12887, 12888)
1040 * Remove trailing semicolons to fix the build on FreeBSD (12899)
1044 * Stay up to date with new NetBSD releases (through 7.x)
1046 * Update to use cprng(9) as the randomness source on NetBSD 6.99/7.x.
1048 * Build system updates for NetBDS 6.99.x
1050 * Do not claim AFS_VM_RDWR_ENV
1054 * Stay up to date with new OpenBSD releases (through 4.7)
1056 * Do not claim AFS_VM_RDWR_ENV
1060 * Updates for AIX support.
1062 * Fix build system for AIX exports.
1064 * Add the uidpag and localuid runtime options to the aklog LAM plugin.
1065 (These runtime options override the use of UID-based PAGs, which were
1066 introduced to appease the CDE screensaver.)
1073 * Avoid a possible 100ms transmit delay in the RX protocol when a peer's
1074 receive window transitions from closed to open (12627)
1076 * Documentation improvements (12476 12477 12559[RT #133339])
1078 All server platforms
1080 * When bosserver is started with an unknown option, print an error message
1081 and exit with a non-zero value rather than failing silently (12631)
1083 All DB server platforms
1085 * Hold the DB lock while checking for an aborted write transaction (12516)
1087 All file server platforms
1089 * On demand attach fileservers, don't save or restore a client's host
1090 state if CPS ("Current Protection Subdomain") recalculation for it is
1091 in progress, to avoid fileserver thread exhaustion (12568)
1093 * On demand attach fileservers, avoid flooding the log with error messages,
1094 which could happen when the fileserver was restarted while a volume was
1097 * Update a volume's "Last Update" time when its content is modified by
1098 the salvager, to make the change visible in the output of "vos examine"
1099 and to backup services (12633)
1101 All client platforms
1103 * Corrected the DCentries bucket counts for very large and zero length
1104 files in the output of "fs getcacheparms -excessive" (12604 12605)
1106 * Fixed a bug that prevented users with GID 2748 and 2750 from executing
1107 the "fs sysname" command on clients running afsd with -rmtsys (12607)
1109 * Provide a new -inumcalc switch for afsd to allow enabling the alternative
1110 MD5 method of inode number calculation, which was previously only
1111 possible on Linux and through the sysctl interface (12608 12632)
1115 * Support for mainline kernel 4.12 and distribution kernels with backports
1116 from it (12624 12626)
1118 * Re-added the improved algorithm for freeing unused vcaches to reduce
1119 memory consumption first introduced with the 1.6.18 release, together
1120 with a fix for the issue leading to its removal in 1.6.18.2 (12448..12451)
1124 * Fixed a crash while stopping the client on macOS 10.12 "Sierra" (12602)
1131 * Build fixes required by recent compilers or platforms (12514 12521 12534
1134 * Allow the bos server to start successfully in the presence of those, by
1135 accepting a now checked return value indicating that the client ThisCell
1136 and CellServDB already exist (12522)
1140 * Support for mainline kernels 4.10 and - most likely - 4.11 and
1141 distribution kernels with backports from them (12530 12588..12590 12598)
1143 * Support for distribution kernels with partial backports from 4.9 (12535)
1146 * In Red Hat packaging, moved the klog.krb5 manual page into the krb5
1149 * In Red Hat packaging, prevent systemd from double-starting the client
1152 * Allow aklog to function on current S390/S390x (12499)
1156 * Make process authentication groups work on Solaris 11, now using a single
1157 group ID (12524..12527)
1159 * Fix a BAD TRAP panic on Solaris 11 clients built with Studio 12.5 (12567)
1163 * Fixed the preference pane for OS X 10.11 and later (12512)
1169 * Build fixes required by recent compilers (12482..12484)
1173 * Support for mainline kernel 4.9 and distribution kernels with
1174 backports from it (12478..12480)
1176 * In Red Hat packaging, make systemd deal correctly with the client
1177 when no userland processes remain after starting it (12481)
1182 * Support for release 10.12 "Sierra" (12431 12432)
1184 * Avoid a crash in the Mounts tab of the OpenAFS preference pane (12447)
1186 OpenAFS 1.6.20 (Security Release)
1190 * Fix for OPENAFS-SA-2016-003: file and directory names leak due to
1191 reuse of directory objects without zeroing the contents
1192 (12461 12462 12463 12464 12465)
1198 * Documentation improvements (12304)
1199 * Fixes for test failures (12396 12415)
1201 All DB server platforms
1203 * Avoid potentially writing to an out of date volume location or protection
1204 database, or losing a database write, which could happen in rare cases
1205 under special conditions during database leader election
1210 * Allow the fsinfo::: DTrace provider to work with AFS files (12371)
1214 * Don't commit more data to a file than was actually copied during writes,
1215 which could happen on architectures with a page size > 4 KiB (12413)
1216 * Fixed build on PPC64 with GCC 6.1 (12388) (RT #133407)
1217 * Fixed build on x86_64 with recent GCC (12365 12366)
1224 * Support for mainline kernel 4.7 and distribution kernels with
1225 backports from it (12348)
1229 * Fixed memory mapped I/O on files >= 4 GiB (12349 12350)
1231 Note that there is a suspicion that this might break the client
1232 on very old Solaris releases (2.6). If it does, the breakage should
1233 occur at build time.
1237 * Added tooling to build a package for OS X 10.10 "Yosemite" and
1238 10.11 "El Capitan" (12335 12351)
1245 * Support for mainline kernel 4.6 and distribution kernels with
1246 backports from it (12332)
1248 * Switch back to the pre-1.6.18 algorithm for freeing unused vcaches.
1249 While the new algorithm is still believed to be correct, it turned
1250 out that at least on some kernels, including 4.5 and 4.6, the dentry
1251 for the current working directory may be erroneously invalidated.
1252 This could lead to errors like "Unable to read current working directory"
1253 when a directory wasn't accessed for a few minutes. (12323)
1255 * Use a secure URL to retrieve the CellServDB in the script to create
1256 the Red Hat source package (12330)
1260 * Added sysname IDs for 10.2 and 10.3 to fix the build on those platforms
1268 * Support for mainline kernel 4.5 and distribution kernels with
1269 backports from it (12300..12302)
1276 * Documentation improvements (12224 11675 11613 12197)
1278 * Improved diagnostics and error messages (12129 12207 12185 12211 12113
1281 * Check that CellServDB entries are valid IPv4 addresses, to avoid
1282 occasional hangs or potentially other erratic behaviour due to invalid
1283 entries (12210) (RT #131794)
1285 All client platforms
1287 * Gracefully handle cases where a client shutdown sequence is initiated
1288 while the client is already shutting down, rather than cause a panic
1291 * Fixed several bugs that could cause erratic behaviour when the write
1292 offset into a file was more than 2 GiB beyond the file's current end
1293 on the server (12213 12214)
1295 All server platforms
1297 * Avoid a possible volserver crash during volume dump or restore due
1298 to invalid ACL entries (12127)
1300 * Allow recovering from a DAFS fileserver operation which allocates a
1301 new vnode but fails to update the vnode index, rather than crashing the
1304 * Fixed a longstanding bug which could damage the volume location database
1305 when "vos changeaddr" was run with "-oldaddr" and "-newaddr" and the
1306 old address was present in a multi-homed entry (12089)
1310 * Added support for releases 10.2 and 10.3 (12232)
1314 * Support for mainline kernel 4.4 and distribution kernels with
1315 backports from it, alas at a performance penalty (12226 12227 12228)
1316 (RT #132677 #132819)
1318 * Avoid using excessive amounts of kernel memory for dynamically
1319 allocated vcaches, by improving the algorithm to free unused ones
1322 * In Red Hat packaging, make the init script use "ip" if available, with
1323 "ifconfig" as a fallback (12193)
1327 * Basic support for release 10.11 "El Capitan" (12212)
1331 * Fixed kernel module builds with optimization (12198) (RT #131261)
1334 OpenAFS 1.6.17 (Security Release)
1336 All server platforms
1338 * Fix for OPENAFS-SA-2016-001: foreign users can create groups as
1339 if they were an administrator (RT #132822) (CVE-2016-2860)
1341 All client platforms
1343 * Fix for OPENAFS-SA-2016-002: information leakage from sending
1344 uninitialized memory over the network. Multiple call sites
1345 were vulnerable, with potential for leaking both kernel and
1346 userland stack data (RT #132847)
1348 * Update to the GCO CellServDB update from 01 January 2016 (12188)
1352 * Fix a crash when the root volume is not found and dynroot is not
1353 in use, a regression introduced in 1.6.14.1 (12166)
1355 * Avoid introducing a dependency on the kernel-devel package corresponding
1356 to the currently running system while building the srpm (12195)
1358 * Create systemd unit files with mode 0644 instead of 0755
1359 (12196) (RT #132662)
1365 * Documentation improvements (11932 12096 12100 12112 12120)
1367 * Improved diagnostics and error messages (11586 11587)
1369 * Distribute the contributor code of conduct with the stable release (12056)
1371 All server platforms
1373 * Create PID files in the right location when bosserver is started with
1374 the "-pidfiles" argument and transarc paths are not being used (12086)
1376 * Several fixes regarding volume dump creation and restore (11433 11553
1379 * Avoid a reported bosserver crash, and potentially others, by replacing
1380 fixed size buffers with dynamically allocated ones in some user handling
1381 functions (11436) (RT #130719)
1383 * Obey the "-toname" parameter in "vos clone" operations (11434)
1385 * Avoid writing a loopback address into the server CellServDB - search
1386 for a non-loopback one, and fail if none is found (12083 12105)
1388 * Rebuild the vldb free list with "vldb_check -fix" (12084)
1390 * Fixed and improved the "check_sysid" utility (12090)
1392 * Fixed and improved the "prdb_check" utility (12101..04)
1394 All client platforms
1396 * Avoid a potential denial of service issue, by fixing a bug in pioctl
1397 logic that allowed a local user to overrun a kernel buffer with a single
1398 NUL byte (commit 2ef86372) (RT #132256) (CVE-2015-8312)
1400 * Refuse to change multi-homed server entries with "vos changeaddr",
1401 unless "-force" is given, to avoid corruption of those entries (12087)
1403 * Provide a new vos subcommand "remaddrs" for removing server entries, to
1404 replace the slightly confusing "vos changeaddr -remove" (12092 12094)
1406 * Make "fs flushall" actually invalidate all cached data (11894)
1408 * Prevent spurious call aborts due to erroneous idle timeouts (11594)
1410 * Provide a "--disable-gtx" configure switch to avoid building and
1411 installing libgtx and its header files as well as the depending
1412 "scout" and "afsmonitor" applications (12095)
1414 * Fixed building the gtx applications against newer ncurses (12125)
1416 * Allow pioctls to work in environments where the syscall emulation
1417 pseudo file is created in a read-only pseudo filesystem, like in
1418 containers under recent versions of docker (12124)
1422 * In Red Hat packaging, avoid following a symbolic link when writing
1423 the client CellServDB, which could overwrite the server CellServDB,
1424 by removing an existing symlink before writing the file (12081)
1426 * In Red Hat packaging, avoid a conflict of openafs-debuginfo with
1427 krb5-debuginfo by excluding our kpasswd executable from debuginfo
1428 processing (12128) (RT #131771)
1430 OpenAFS 1.6.15 (Security Release)
1432 All client and server platforms
1434 * Fix for OPENAFS-SA-2015-007 "Tattletale"
1436 When constructing an Rx acknowledgment (ACK) packet, Andrew-derived
1437 Rx implementations do not initialize three octets of data that are
1438 padding in the C language structure and were inadvertently included
1439 in the wire protocol (CVE-2015-7762). Additionally, OpenAFS Rx in
1440 versions 1.5.75 through 1.5.78, 1.6.0 through 1.6.14, and 1.7.0
1441 through 1.7.32 include a variable-length padding at the end of the
1442 ACK packet, in an attempt to detect the path MTU, but only four octets
1443 of the additional padding are initialized (CVE-2015-7763).
1449 * Support kernels up to 4.2
1451 Due to changes to internal data structures with this kernel release,
1452 the OpenAFS client can no longer reset the link count during path
1453 lookups. Since volume root directories must behave like symlinks
1454 instead of normal directories in order to satisfy Linux kernel
1455 invariants, looking up paths containing more than 40 mount points
1456 will fail with ELOOP on such kernels.
1460 All server platforms
1462 * Prior to the OpenAFS security release 1.6.13, the Volume Location
1463 Server (vlserver) RPC VL_ListAttributesN2() supported wildcard volume
1464 name lookups via regular expression (regex) pattern matching. This
1465 support was completely disabled in 1.6.13 because it was judged to be
1466 a security risk due to buffer overruns in the implementation, as well
1467 as the possibility of denial of service attacks where certain regular
1468 expressions could cause excessive CPU usage in some regex
1471 Unfortunately, after 1.6.13 was released, it was discovered that
1472 the native OpenAFS 'backup' system uses the VL_ListAttributesN2()
1473 regex support to evaluate configured volume sets. If you use the
1474 OpenAFS 'backup' system (or another backup system which relies on it,
1475 such as Tivoli Storage Manager (TSM, aka Tivoli ADSM)), and are using
1476 volume sets which require regular expressions for the volume name,
1477 then those volume sets cannot be resolved by OpenAFS 1.6.13. The next
1478 paragraph provides details on how to identify any affected volume sets.
1480 OpenAFS backup volume sets may be described by fileserver, partition
1481 name, and volume name. The fileserver and partition specifications
1482 never require regular expression support. The volume name specification
1483 always requires regular expression support except for when specifying
1484 _all_ volumes via two special cases: the universal wildcard ".*", or "".
1485 For example, volume name "proj" or "*.backup" or "homevol.*" all
1486 require regex support - even if the specification contains no wildcard
1487 characters and/or exactly matches an existing volume name.
1489 As a result of this issue, OpenAFS 1.6.14 replaces the 1.6.13 changes
1490 to VL_ListAttributesN2. 1.6.14 prevents the buffer overruns and
1491 reenables the regex support, but restricts it to OpenAFS super-users
1492 and -localauth only. This is sufficient to restore the OpenAFS 'backup'
1493 system's ability to work correctly with any previously supported volume
1494 set. The OpenAFS 'backup' commands are already documented to require
1495 super-user authorization, so this restriction is moot for the backup
1498 There are no other direct consumers of the VL_ListAttributesN2() regex
1499 support in the OpenAFS tree. However, the VL_ListAttributesN2 RPC is
1500 publicly accessible and might be used by third party tools directly or
1501 indirectly via OpenAFS's libadmin. Any such tools that issue
1502 VL_ListAttributesN2 RPCs must now be executed using super-user or
1505 None of the other security fixes in OpenAFS 1.6.13 are known to have
1506 any issues, and are still included unchanged in OpenAFS 1.6.14.
1508 If there are any questions concerning the possible impact of OpenAFS
1509 1.6.13 or 1.6.14 at your site, please contact your OpenAFS support
1510 provider or the openafs-info@openafs.org mailing list for further
1515 All server platforms
1517 * Fix for CVE-2015-3282: vos leaks stack data onto the wire in the
1518 clear when creating vldb entries
1520 * Workaround for CVE-2015-3283: bos commands can be spoofed, including
1521 some which alter server state
1523 * Disabled searching the VLDB by volume name regular expression to avoid
1524 possible buffer overruns in the volume location server
1526 All client platforms
1528 * Fix for CVE-2015-3284: pioctls leak kernel memory
1530 * Fix for CVE-2015-3285: kernel pioctl support for OSD command passing
1535 * Fix for CVE-2015-3286: Solaris grouplist modifications for PAGs can
1536 panic or overwrite memory
1540 All server platforms
1542 * Avoid database corruption if a database server is shut down and then
1543 brought up again quickly with an altered database (11773 11774)
1546 All client platforms
1548 * Fixed a potential buffer overflow in aklog (11808)
1550 * Avoid a bogus warning regarding the checkserver daemon, which could be
1551 logged during startup when the cache initialization was very fast (11680)
1553 * Added documentation of the inaccuracy of the 'partition' field in
1554 'fs listquota' output for partitions larger than 2 TiB (11626)
1558 * Support kernels up to 4.1 (11872 11873)
1560 * Avoid spurious EIO errors when writing large chunks of data to
1561 mmapped files (11877)
1565 * Build fixes required at least on OS X 10.10 Yosemite with the latest
1566 XCode (11859 11876 11842..11845 11863 11878 11879)
1572 * Support kernels up to 4.0 (11760 11761)
1576 * Fixed kernel module build on systems with an updated clang which no
1577 longer accepts the -mno-align-long-strings as a no-op (11809)
1583 * Allow aklog to succeed creating native K5 tokens even when mapping
1584 the K5 principal to a K4 one fails (11538)
1586 * Build fixes (11435 11636)
1588 All client platforms
1590 * Avoid a potential kernel panic due to connection reference overcounts
1591 (11645) (RT #131885)
1593 * Avoid potential corruption of files written using memory mapped I/O
1594 when the file is larger than the cache (11656) (RT #131976)
1598 * Support kernels at least up to 3.19 (11549 11550 11569 11570 11595
1599 11658..11662 11694 11752)
1601 Note: By default this excludes kernels 3.17 to 3.17.2, which will leak
1602 an inode reference when an error occurs in d_splice_alias(). The
1603 module will build and work, but leak kernel memory, leading to
1604 performance degradation and eventually system failure due to
1605 memory exhaustion. Since it's impossible to detect this condition
1606 automatically, the switch --enable-linux-d_splice_alias-extra-iput
1607 must be passed to configure when building the module for those
1608 kernels. The same would be necessary for any kernel with backports
1609 of commit 908790fa3b779d37365e6b28e3aa0f6e833020c3 or commit
1610 95ad5c291313b66a98a44dc92b57e0b37c1dd589 but not the fix in commit
1611 51486b900ee92856b977eacfc5bfbe6565028070 in the linux-stable repo
1612 (git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git) or
1613 the corresponding changes on other branches.
1615 * Fixed a regression introduced in OpenAFS release 1.6.10 which could
1616 make the spurious "getcwd: cannot access parent directories" problem
1617 return (11558 11568) (RT #131780)
1619 * Avoid leaking memory when scanning a corrupt directory (11707)
1623 * Support OS X 10.10 "Yosemite" (11571 11572 11611) (RT #131946)
1627 * Avoid reading random data rather than correct cache content when using
1628 ZFS as the cache file system on Solaris >= 11, and fix potential similar
1629 problems on other platforms (11713 11714)
1633 * Build fix for releases >= 11.0 (11610)
1637 * Support release 5.4 (11700)
1644 * Don't hide the "version" subcommand in help output (11214)
1646 * Documentation improvements (11126 11216 11222 11223 11225 11226)
1648 * Improved diagnostics and error messages (11154 11246 11247 11249 11181
1651 * Build system improvements (11158 11221 11224 11225 11227..11241 11282
1652 11342 11350 11353 11242 11367 11392)
1654 * Avoid potentially erratic behaviour under certain error conditions by
1655 either avoiding or at least not ignoring them, in various places (11008
1656 11010..11065 11112 11148 11196 11530)
1660 * Support releases 9.3 and 10.1 (11368 11369 11402 11403 11404)
1662 * Makes a disk cache more likely to work on FreeBSD, though such
1663 configurations remain not very tested (11448)
1665 All server platforms
1667 * Added volscan(8) (11252..11280 11387 11388)
1669 * Fixed a bug causing subgroups not to function correctly if their
1670 ptdb entry had more than one continuation entry (11352)
1672 * Logging improvements (10946 11153)
1674 * Allow log rotation via copy and truncate (11193)
1676 * Avoid a server crash during startup only observed on a single platform
1677 and when using a 3rd party library under certain circumstances, which is
1678 a collateral effect of the security improvements introduced in OpenAFS
1679 release 1.6.5 (11075) (RT #131852)
1681 All client platforms
1683 * Raised the free space reported for /afs to the maximum possible value of
1684 just under 2 TiB - the old value was 9 GiB on most platforms (10984)
1686 * Reduced the amount of stack space used (11162 11163 11203 11164..11167
1687 11338 11339 11364..11366 11381)
1689 * Sped up a periodic client task which could be problematically slow
1690 on systems with a large number of PAGs and files in use (11307)
1692 * Fixed failure of the up command with large ACLs (11111)
1694 * Avoid a potential crash of aklog (11218)
1696 * Avoid potential crashes of scout and xstat_fs_test (11155)
1700 * Support kernels up to 3.16 (11308 11309)
1702 * Fixed a regression introduced in OpenAFS release 1.6.6 that made
1703 checking for existing write locks incorrectly fail on readonly volumes
1706 * Fixed a regression introduced in OpenAFS release 1.6.8 that could
1707 cause VFS cache inconsistencies when a previously-accessed directory
1708 entry was removed and recreated with the same name but pointing to a
1709 different file on another client (11358)
1711 * Use the right path to depmod in Red Hat packaging to avoid dependency
1712 calculation incorrectly failing unless a link /sbin -> /usr/sbin is
1713 present on the system performing it (11171) (RT #131860)
1715 * Do not ignore kernel module build errors (11205)
1719 All server platforms
1721 * Fix for OPENAFS-SA-2014-002
1727 * Documentation improvements (10751 10875 10931 10897 10883 10954 10955)
1729 * Improved diagnostics and error messages (10756 10814 10949)
1731 * Fixed a bug in RX that could make errors during packet reception go
1734 * Fixed a bug that made "vos size -dump" display the wrong size for
1735 large volumes. (10933) (RT #131819)
1737 All server platforms
1739 * Change the default fileserver sync behavior from "delayed" to "onclose".
1740 This means that explicit syncing only happens when a volume is detached.
1743 * Added the -offline-timeout and -offline-shutdown-timeout options to the
1744 fileserver, to implement interrupting clients accessing volumes we are
1745 trying to take offline. (6266 10799)
1747 All client platforms
1749 * When a client is shut down, it will give up its callbacks. The Windows
1750 client has been doing this since 2007. Note that older fileservers
1751 (1.3.50 to 1.4.5 and 1.5.0 to 1.5.27) had a bug in the implementation of
1752 the relevant RPC that could cause crashes or other undefined behavior
1753 when this happens. (6272 8840 10855)
1755 * Restored the pre-1.6 behavior of "vos e" being an alias for "vos examine".
1758 * Avoid flooding logs with warnings about byte-range locks, by throttling
1759 them per file. Also, make the messages more useful by including the
1762 * Avoid a possible panic during shutdown while tracing. (10932)
1766 * Fixed a bug that could cause the "getcwd: cannot access parent
1767 directories" problem (10804 10984)
1769 * Avoid a delay when accessing uncached data in AFS in a confined
1770 context under SELinux. (10598)
1772 * Red Hat packaging improvements (10600 10767 10807)
1776 All server platforms
1778 * Fix for OPENAFS-SA-2014-001
1780 * Fix for a potential DOS attack against RX servers
1786 * As of this release, OpenAFS no longer ships uncompressed source tarballs.
1787 Tarballs are still shipped with both compression formats, gzip and bzip2.
1790 * Documentation improvements (10136 10314 10601)
1792 * Improved diagnostics and error messages (9412 10085 10274)
1794 * Avoid redefining "assert" in our public header files, which could
1795 cause failures when building some applications using them. (10096)
1797 * Fixes for parallel builds (10005 10309 10337)
1799 * Added a -s switch to afscp (not installed by default) to help simulate
1800 a slow client. (9416 9417)
1802 * Added a -probe switch to vlclient test program (not installed by default)
1803 to ping all vlservers in a cell in parallel. (9570)
1805 All server platforms
1806 * The fileserver now ignores any vice partitions with a NeverAttach flag
1807 file present in the root directory. (RT #130561) (9470 9471)
1809 * Restrict forcing CPS ("Current Protection Subdomain") recalculation in
1810 the fileserver to administrators. Also fixed a bug that could cause this
1811 operation to be incomplete. (9485 9487)
1813 * Allow non-DAFS fileservers to attach unusable volumes, restoring pre-1.6
1814 behaviour. (RT #131505) (9499)
1816 * Restored the pre-1.6 behaviour when running vos examine for a volume
1817 currently in a transaction, showing the volume as busy again rather than
1818 offline. (9685 9915 9916)
1820 * Reduced the minimum time a bos salvage takes from 5 seconds to 1. (9476)
1822 * Fixed buserver to not segfault when started with the -servers option.
1823 (RT #131706) (10166)
1825 * Salvager fixes, addressing a wide variety of possible problems from
1826 unnecessary salvaging to aborts (9282 9283 9457 9458 9459 9461 9462 9480
1829 * Fixed a bug that could cause saved state information to be discarded
1830 when restarting a large or busy fileserver, which negatively impacted
1833 * Fixed a bug that could have caused undefined behaviour in the vlserver
1834 in rare cases when a fileserver registered its addresses in the VLDB.
1837 * Added the -preserve-vol-stats switch to volserver, allowing it to keep
1838 the access statistics across volume restore and reclone operations
1839 instead of resetting them. (9477)
1841 * Inserted an exponential delay between retries when bosserver attempts to
1842 restart a server process. (9571 10199)
1844 * Improved vldb_check (not installed by default) to cope with broken
1845 vlentry names and volids, and provide more output to aid debugging.
1848 * Releasing a volume after adding a new RO site no longer touches any of
1849 the existing RO sites, if the RW data hasn't changed since the last
1852 * Make the copyDate field for RO clones have the same meaning as for
1853 remote RO volumes. Previously, the copyDate field for clones was updated
1854 every time we released. (9451)
1856 * Fixed potentially undefined behaviour in ptserver when too many pts
1857 ids are allocated. (10124)
1859 * Note that the server side NAT pings feature present in the prereleases
1860 was removed before the final release, since no positive feedback
1861 was provided during prerelease testing. (9420 10135)
1865 * Start bosserver with -nofork in the systemd unit file, to allow systemd
1866 to track its state (10093)
1868 All client platforms
1870 * No longer track file locks on read-only volumes. Write locks can't
1871 succeed, read locks always will. Avoids log messages about this kind
1874 * Added the "fs flushall" subcommand, which makes the client discard all
1875 cached data. This was previously available on Windows only. (9065 9388
1878 * Fixed a bug that could make the client incorrectly believe its cache
1879 is up to date. This change could negatively impact AFS <-> DFS
1880 translators, should those still be running anywhere. (8898)
1882 * Several changes to avoid panicing in certain error conditions.
1883 (9131 9287 10354 10355 10356 10357) (partially addressing RT #131747)
1885 * Added the -rxmaxfrags switch to afsd, allowing to limit the number
1886 of UDP fragments sent or received per RX packet. (9430)
1888 * Build fixes for aklog on several platforms (RT #131716) (9917 10107 10275)
1890 * Require that the AFS mountpoint specified in the cacheinfo file is
1891 an absolute path. Relative paths result in a client that basically
1892 works but is not fully functional. (10253)
1894 * Fixed a bug that could cause one of the afsd threads to enter an infinite
1895 loop (10431 .. 10436)
1899 * Support Linux kernels up to 3.13 (10241)
1901 * Fixed a bug that made readv/writev calls in AFS space fail with Linux
1902 kernels where generic_file_aio_read exists but those operations have
1903 not been switched to using aio_read/aio_write. This was a regression
1904 introduced with release 1.6.3 and affected at least RHEL 5.9 kernels.
1907 * Fixed a similar bug making core dumps fail in AFS space, affecting
1908 a much wider range of kernels including the most recent ones.
1909 (RT #131729) (10254)
1911 * Enhanced the keyring code to make PAGs work correctly on kernels with a
1912 distribution specific change to the Linux keyring code. This affected at
1913 least SLES 11 SP3 kernels. (10252)
1915 * Fixed a bug that could make failures during PAG instantiation go
1918 * Fixed a bug that made compilation fail for Linux kernels without
1919 keyring support. This affected at least the SLE 10 SDK and an
1920 OEM version of SLES 11 SP1. (10325)
1922 * Fixed build for kernels with user namespace support enabled. Likely
1923 to be required for Ubuntu 14.04 and eventually other distributions.
1924 (10456 10457 10458 10518 10472)
1926 * Support RHEL 6.5 kernels, and possibly others with changes backported
1927 from recent mainline kernels that touch getname/putname, by no longer
1928 using those functions. Previously, the client could cause a kernel
1929 panic when syscall auditing was enabled. (10578)
1931 * Make tmpfs usable as the cache filesystem again. This had been broken
1932 since kernel 3.1 (9950 10193)
1934 * When starting the client fails, clean up the backing device information
1935 created in sysfs, to avoid error messages during a subsequent start
1936 and possible system instability later on (10454)
1938 * Update Red Hat packaging to support Fedora >= 20, RHEL >= 7 and
1939 ELrepo kernels (10597 10619 10622 10703 10704)
1943 * Support OS X 10.9 "Mavericks" (10519 10541 10542 10543 10548 10549)
1947 * Fixed a bug that caused the 1.6 AIX client to never receive any RX
1948 packets in the kernel. (RT #131725)
1952 * Support Solaris 11 (9454 9455)
1954 * Allow other users to access filesystems mounted by root. (9452)
1958 * Build tvolser and dvolser on this platform (10122)
1959 * Several fixes to catch up with newer releases (10374 .. 10381)
1963 * Build tsalvaged, tvolser and dvolser on this platform (10121)
1964 * Fixed build on NetBSD 5 and newer. (10138)
1970 * Fixes for OpenAFS-SA-2013-0003 and OpenAFS-SA-2013-0004
1976 * Obey the jumbo/nojumbo settings for ubik servers (the DB servers)
1977 too. In previous releases, those servers may have used jumbograms
1978 even if they were not configured to do so. This change corrects
1979 the actual behaviour, and will improve performance and reliability
1980 for sites where jumbograms are problematic. It could cause a decrease
1981 in performance for sites where jumbograms work, but those can turn
1982 them back on manually.
1984 * Dozens of fixes for common coding problems like use after free,
1985 use of possibly uninitialised memory, reading or writing past the
1986 end of arrays and potential NULL pointer derefences. Spotted by
1987 code analysis tools or human inspection.
1989 * Documentation improvements.
1991 * Fixes and improvements to the diagnostic or log messages printed by
1992 vos, the fileserver and others.
1994 * Build fixes, making parallel builds more reliable with certain
1995 configuration options and helping various platforms including
1996 recent releases of IRIX, Solaris and several flavours of Linux.
1998 * Avoid sending a small amount of data over the wire unencrypted
1999 under certain conditions, and emit the correct error message in
2002 All server platforms
2004 * Avoid generating duplicate IDs for readonly and backup volumes,
2005 which could happen under certain conditions.
2007 * Allow the fileserver to return volume data like quota or free space,
2008 which is available publicly elsewhere, without the additional access
2009 check for read permissions on a volume's root directory the fileserver
2012 * The fileserver now emits a log message when it ran out of memory for
2015 * Avoid several potential fileserver problems, including memory
2016 corruption and segmentation faults, due to client bookkeeping.
2018 * Avoid known cases of silent data corruption due to background syncs
2019 on the fileserver, especially during Copy on Write.
2021 * Make the fileserver sync behaviour runtime configurable. Up to 1.4.5,
2022 we had synchronous syncs which were safe but really slow. Since 1.4.5,
2023 we've had asynchronous syncs which are much faster but believed to
2024 be the cause of rare data corruption issues, and while all known cases
2025 of these happening are believed to be fixed in the 1.6.3 release, doubts
2026 remain. This change allows choosing between those, and in addition allows
2027 to turn syncs by the fileserver off altogether, thus relying on the vice
2028 partition's backend filesystem and the operating system, or to just
2029 execute them when a volume is detached. The default behaviour is
2030 unchanged from releases since 1.4.5, but it's highly recommended to
2031 consider the additional options this change provides. Future OpenAFS
2032 releases will default to "-sync=none".
2034 * For dbservers, avoid a situation where misinterpreting transient
2035 network errors causes long-term issues with achieving ubik quorum.
2037 All UNIX client platforms
2039 * Improvements to the detection of an aklog-specific krb5 configuration
2040 file, for the purposes of turning on "weak crypto" for aklog.
2042 * Fixed a regression introduced in release 1.6.2 which caused the
2043 supposedly persistent disk cache to be discarded upon client start.
2048 * Support Linux kernels up to 3.10
2050 * Fixed two bugs making it impossible to unmount a disk cache filesystem
2051 after it has been used by the client. (RT #131613)
2053 * Fixed a bug that could cause an oops with kernels 3.6 and later
2057 * Improved support for OpenBSD 4.9 to 5.3
2061 This release number had to be skipped for technical reasons.
2067 * Support Linux kernels up to 3.8.
2069 * Make the init script cope with the output of ifconfig on recent Fedora.
2075 * Fix buffer overflows in fileserver and ptserver.
2077 * Abort an rx connection when given an unknown service (Gerrit 7593).
2079 * "idle dead" behavior improvements.
2081 * Documentation updates.
2083 All server platforms
2085 * Fix rare file corruption during background sync (Gerrit 8796).
2087 * Fix corrupting clients' metadata cache during certain errors (Gerrit
2090 * Avoid saying a volume doesn't exist when accessed as the volume is
2091 going offline (Gerrit 7488).
2093 * Fix fileservers to properly report >2 TiB partitions.
2095 * Fix stale volume info from vos examine on non-DAFS filservers.
2097 * Fix possible volume corruption with vos convertROtoRW.
2099 * Fix bosserver to preserve all command-line options over restart.
2101 * Fix bosserver to properly kill hung processes during shutdown.
2103 All UNIX client platforms
2105 * Fixes for memcache, especially on Solaris.
2107 * Increase the size of the DNS resolver answer buffer to allow sites
2108 with a long response list to use SRV and AFSDB records.
2110 * Fix a crash when a server appears to run out of addresses (Gerrit
2113 * Fix cache corruption when reading from a file another client is
2114 simultaneously writing to (Gerrit 7994).
2116 * Improve handling of disk cache disk errors.
2120 * fix DKMS configuration for DKMS 2.2.
2122 * Avoid generating inode number 0 with md5 inodes (Gerrit 7276).
2124 * Fix a crash when reading /proc/fs/openafs/unixusers (Gerrit 7914).
2126 * Make PAG-less access use the real UID of the calling process
2127 instead of the effective UID, when determining what credentials to
2130 * Fix possible abuse of fs mkmount.
2131 Prior to 1.6.2, users could crash a client by nesting volume mounts.
2133 * Fix fileserver memory corruption on RHEL 6
2134 Prior to 1.6.2, fileservers on RHEL 6 may crash under heavy load.
2136 * Fix client page cache corruption on Linux
2137 When multiple clients read and write to a file, the reading client
2138 may see first page (4096 bytes) of a file as nulls.
2140 * Support Linux kernels up to 3.7.
2142 * Support newer glibc versions.
2144 * Improve client systemd unit file.
2146 * Update Red Hat packaging.
2150 * Fix crashes on shutdown.
2152 * Prevent unloading the module before shutdown completes.
2154 * Security improvement for the OpenAFS preference pane.
2158 * Support newer versions of the Sun Studio compiler software.
2160 * Support compiling on newer versions of Solaris 11 and Solaris 10.
2163 OpenAFS 1.6.0 (2011-08-15)
2167 * Substantial Rx updates to correct erroneous behavior.
2169 * vos now properly deals with matching sites when servers are
2172 * Don't stop Rx keepalives after an ackall is received, avoiding
2173 spurious connection timeouts. (128848)
2175 * Don't retry Rx calls on channels returning busy errors and improve
2176 Rx busy call channel error handling. (128671)
2178 * Properly enable Rx connection hard timeouts.
2180 * Rx NAT pings are not enabled until peer has answered.
2182 * Initialize rx_multi lock before use.
2184 * Avoid spurious crashes when initializing in "backup" client.
2186 * Revert UUID support in vos.
2188 * pt_util fixed to properly create new databases.
2190 * MTU discovery now properly shut down on call reset.
2192 * Avoid leaking references to hosts during callback break multi-Rx
2193 operations. (129376)
2195 * xstat tools now cope with differing timeval structures between
2198 * Numerous fixes to command argument parsing.
2200 * Documentation updates.
2202 All server platforms
2204 * A file descriptor leak which could result in corrupted files in the
2205 fileserver was fixed. An IMMEDIATE upgrade from previous 1.5 release
2206 fileservers is recommended.
2208 * Fix ptserver supergroups support on 64 bit platforms.
2210 * Demand attach salvaging doesn't use freed volume pointers.
2212 * Properly hold host lock during host enumeration in fileserver.
2214 * Attempt to recovery more quickly from timed out volume release
2217 * Auditing now properly byte order swaps IP addresses when printing.
2219 * vos split now has improved error handling.
2221 * Many changes to again support Windows fileservers.
2223 * During volume removal, data removal speed improved.
2225 * Improve CPU utilization during volume attaching by DAFS.
2227 * In salvager check-only mode, avoid potentially fixing a vnode.
2229 * Fix support for large (greater than 2gb) volume special files.
2231 * Salvager will not crash if multiple or bad volume link tables are
2234 * Avoid erroneous full dump by remembering which sites were out of
2235 date at the start of the release.
2237 * A deleted volume can now be recreated properly.
2239 * Callbacks are again not broken during whole partition salvages.
2241 * Positional vectored IO fixed for largefile (>2GB) capable systems.
2243 * Fileserver per-client thread usage again properly enforced.
2245 * Anonymous dropbox support improved and drawbacks documented.
2247 * Demand attach: ensure vnodes are not reallocated while in use due to
2248 volume bitmap errors.
2250 * Properly support large volume numbers (larger than 2147483647).
2252 * Allow salvager to be run manually again when DAFS is being
2255 * Avoid leaking references to hosts during callback break multi-Rx
2256 operations. (129376)
2258 * Demand attach: unlink fileserver state file on standalone salvage.
2260 * Salvager tries harder to detect linktable issues.
2262 * Demand attach: don't attach volumes with special status set.
2264 * Avoid crashing on host table exhaustion. Instead, defer clients.
2268 * afs_config will not longer set the Tray Icon State in the registry
2269 if the checkbox is not present in the dialog. (128591)
2271 * AFS Explorer Shell Extension now works from folder backgrounds.
2272 Overlays for mount points and symlinks are present in the dll, but
2273 are not registered at present by the installers.
2275 * Do not use RankServerInterval registry value as the value for
2276 PerformanceTuningInterval.
2278 * When the data version of a mountpoint or symlink changes, the target
2279 string in the cm_scache_t object must be cleared.
2281 * "fs checkservers" now includes vldb servers in the output and only
2282 lists multi-homed servers once. A multi-homed server that has at
2283 least one up interface is no longer considered to be down.
2285 * When asynchronously storing dirty data buffers to the file server
2286 ensure that (a) the cm_scache_t object and the cm_buf_t object are
2287 for the same File ID so that locking and signalling work properly;
2288 and (b) if the FID no longer exists on the file server, do not
2289 panic, just discard the buffer.
2291 * When processing VNOVOL, VMOVED and VOFFLINE errors perform server
2292 comparisons by UUID or address and not simply by cm_server_t
2293 pointer. Otherwise, server failover may not succeed.
2295 * Do not preserve status information for cm_scache_t objects when the
2296 issuing server is multi-homed.
2298 * Giving up all callbacks when shutting down or suspending the machine
2299 is now significantly faster due to the use of an rx_multi
2300 implementation. (This functionality is still off by default and
2301 must be activated by a registry value.)
2303 * Race conditions were possible when updating the state of the
2304 cm_volume_t flags and when moving the volumes within the least
2307 * Ensure that the lanahelper library does not perform a NCBRESET of
2308 each lan adapter when enumerating the current network bindings.
2309 Correcting this permits OpenAFS to work on Windows 7 when the
2310 network adapter settings change.
2312 * Fix creation of mount points and symlinks as \\AFS\xxxx
2314 * Icon tray state now conditionally set. (128591)
2316 * Properly create new cell mount points in freelance mode.
2318 * Avoid recursive offline volume checks.
2320 * Fix caching of non-existent volumes. The test to trigger an
2321 immediate CM_ERROR_NOSUCHVOLUME in cm_UpdateVolumeLocation() was
2324 * Prevent the background daemon from checking the status of
2325 non-existent volumes. cm_CheckOfflineVolumes() should skip volume
2326 groups with the CM_VOLUMEFLAG_NOEXIST flag set.
2328 * The afskfw library should return an error immediately if the
2329 krb5_32.dll library cannot be loaded. Affects afslogon.dll and
2332 * No longer depend on leashw32.dll in afskfw library.
2334 * NPLogonNotify must provide the user password in all calls to
2335 KFW_AFS_get_cred(). It cannot count on a credential cache being
2336 preserved between calls. Permits tokens to be acquired for all
2337 cells listed in the TheseCells registry value for a domain.
2339 * Improve the trace logging from NPLogonNotify().
2341 * Avoid a race when writing the cm_scache_t mountPointString
2342 when acquiring mount point or symlink target data via
2343 cm_GetData(). The race could result in bogus target
2346 * Permit the use of des-cbc-md5 and des-cbc-md4 enctypes
2347 as DES keys in asetkey.exe.
2349 * aklog supports dotted Kerberos v5 principal names.
2351 * afskfw library always attempts afs/cell@USER-REALM
2353 * afskfw library must test return code from krb5_cc_start_seq_get() or
2354 will trigger a null pointer exception when using Heimdal.
2356 * Lock protected fields must be 32-bit in order to avoid memory
2359 * Add support for NTFS symlinks.
2361 * Handle file search requests for virtual syscall ioctl file.
2363 * Process SyncOps properly to enforce ordered operations.
2365 * Avoid recursing during NewServer operations.
2367 * Correct lock acquisition order during SMB locking.
2369 * Add shutdown message to event log.
2371 * Check offline volume status by policy rather than on each daemon
2374 * Return error on directory object not found instead of crashing.
2376 * Improve error message output.
2378 * afslogin.dll can start afsd_service if it's not starting or started.
2380 * Optimize away release lock RPCs for deleted files.
2382 * Background Daemon will not perform operations on deleted files.
2384 * Resort recently used directories to the top of the LRU if the
2385 directory is larger than the stat cache.
2387 * Resort deleted objects to the bottom of the LRU.
2389 * Use interlocked operations for state and queue fields to allow safe
2390 bit set and clear on multiprocessor systems.
2392 All UNIX client platforms
2394 * Servers now marked down when GetCapabilities returns error.
2396 * In-use vcache count is now properly tracked.
2398 * Check for /afs existance before starting, unless -nomount is
2401 * Avoid a potential panic when using /afs/.:mount syntax.
2403 * Avoid a panic in memcache mode due to missing CellItems file.
2405 * FUSE client support fixed for non-/afs mounts.
2407 * Avoid a potential deadlock (which times out) when we need to
2408 allocate more callback returns and must flush some already in use.
2410 * Deal with libcom_err conflicts with other packages using it
2411 (e.g. krb5) (128640)
2413 * Fall back to afs3-vlserver SRV record values when afs3-ptserver SRV
2414 record is not available.
2416 * Avoid holding unneeded locks when probing server capabilties.
2418 * Do not attempt page flushes for directories.
2420 * Rx connection reference counting is enabled.
2422 * An Rx connection reference count leak is fixed in bulkstat.
2424 * Handle unparsable directory objects.
2426 * Handle Kerberos cred cache errors in aklog.
2430 * Fix PAG usage to track by PAG identifier, not group list.
2434 * Fix socket termination on shutdown.
2436 * Support for 7.2, 7.3, 7.4 and 8.2 included.
2438 * References to vcaches are no longer leaked during root or reclaim.
2440 * Remove support for "Giant" lock as we no longer need to use it.
2442 * Don't sleep with AFS GLOCK.
2444 * Properly enable 64 bit long long support.
2446 * Restore support for FreeBSD 7 (128612)
2448 * Fix locking issues at shutdown and avoid panic at shutdown due to
2451 * Support for virtual network stacks.
2453 * New RC script, updated packaging.
2457 * Properly create new vnodes to avoid crashing in the client.
2461 * Support through kernel 2.6.39. Treat Linux 3.0 as Linux 2.6 for
2464 * Use rx_Readv in cache bypass to improve performance.
2466 * Properly handle 0-length replies during cache bypass operations.
2468 * Properly handle non-contiguous readpage cache bypass operations.
2470 * Do proper locking when transitioning to or from cache bypass.
2472 * Avoid extra runs of vcache freeing routine. (128756)
2474 * Perform vcache eviction via a fast path before visiting vcaches
2475 where sleep is needed.
2477 * setpag() errors are now properly reported.
2479 * Avoid attempting to free stat cache entries when we are below
2480 user-specified number of entries in use.
2482 * Properly track user-specified number of stat cache entries to use as
2483 a desired usage target.
2485 * Don't read pages beyond EOF in the cache. (128452)
2487 * Various corrections and improvements to Red Hat packaging, including
2488 modifying the init script to allow deferring for a new binary
2489 restart and properly supporting RHEL6.
2491 * Fix lockup in 2.6.38 due to erroneous kernel feature configure test.
2493 * Improve RPM building tools.
2495 * Attempt to properly handle SELinux in packaging.
2497 * Init script properly returns status as exit code.
2499 * RPM packaging fixes (executable libraries, no postinstall message)
2501 * Kill i386 from RPM packaging.
2505 * MacOS 10.7 support.
2507 * Properly handle setpag errors. PAGs are not supported.
2509 * Check for unloaded kernel extensions when decoding AFS panics.
2511 * Disable "get tokens at login" in prefs pane if AD authentication
2512 plugin is configured.
2514 * aklog AuthorizationPlugin now provided.
2516 * Preferences Pane behavior fixed for 1.6 series (version detection is
2517 used to select default behavior).
2519 * A potential kernel panic during bulkstat operations is
2522 * 64-bit MacOS kernel performance is greatly improved. (128934)
2524 * Properly shut down AFS, closing the Rx socket in the upcall handler
2525 to avoid attempting to process data after we can no longer do so.
2527 * Rework logic for bulk status operations to avoid a potential hang.
2529 * Avoid panic when doing FSEvent synthesis.
2531 * Fix bug when using non-dynroot.
2533 * Update Kerberos support in PreferencesPane.
2537 * Updates for platform support.
2541 * Bug fixes for issues introduced previously in 1.5 series.
2543 * Support through OpenBSD 4.8.
2547 * Switch to ioctl() syscall replacement for Solaris 11 since syscall
2550 * Fix support for Solaris pre-10.
2552 * Corrected Solaris 11 startup script.
2554 * vcache mappings freed on shutdown to avoid panic.
2556 * Properly report errors for AFS system call callers.
2558 * Don't leave dangling function references if kernel extension fails
2561 * Try harder to avoid deadlocks on file-larger-than-cache operations.
2563 * Avoid panic on shutdown when mount failed.
2568 All systems: Minor bugfixes.
2570 ADDITIONAL CHANGES IN 1.6.0PRE2
2574 - Documentation updates.
2576 - Don't stop Rx keepalives after an ackall is received, avoiding
2577 spurious connection timeouts. (128848)
2579 - Don't retry Rx calls on channels returning busy errors. (128671)
2581 - vos will not die with a double free error at command completion.
2583 - Properly enable Rx connection hard timeouts.
2585 - Initialize rx_multi lock before use.
2587 - Avoid spurious crashes when initializing in "backup" client.
2591 - Check for /afs existance before starting, unless -nomount is specified.
2593 - Avoid a potential panic when using /afs/.:mount syntax.
2595 - Avoid a panic in memcache mode due to missing CellItems file.
2597 All server platforms:
2599 - Attempt to recovery more quickly from timed out volume release
2602 - Auditing now properly byte order swaps IP addresses when printing.
2604 - vos split now has improved error handling.
2606 - Many changes to again support Windows fileservers.
2608 - During volume removal, data removal speed improved.
2610 - Improve CPU utilization during volume attaching by DAFS.
2612 - In salvager check-only mode, avoid potentially fixing a vnode.
2614 - Fix support for large (greater than 2gb) volume special files.
2616 - Salvager will not crash if multiple or bad volume link tables
2619 - Avoid erroneous full dump by remembering which sites were out of date
2620 at the start of the release.
2624 - Remove support for "Giant" lock as we no longer need to use it.
2626 - Don't sleep with AFS GLOCK.
2628 - Properly enable 64 bit long long support.
2630 - Restore support for FreeBSD 7 (128612)
2632 - Fix locking issues at shutdown.
2636 - support through kernel 2.6.38.
2638 - RedHat packaging now properly supports RHEL6.
2640 - Use rx_Readv in cache bypass to improve performance.
2642 - Properly handle 0-length replies during cache bypass operations.
2644 - Properly handle non-contiguous readpage cache bypass operations.
2646 - Do proper locking when transitioning to or from cache bypass.
2648 - Avoid extra runs of vcache freeing routine. (128756)
2652 - Check for unloaded kernel extensions when decoding AFS panics.
2654 - Properly handle setpag errors. PAGs are not supported.
2656 - Disable "get tokens at login" in prefs pane if AD authentication
2657 plugin is configured.
2661 - support through OpenBSD 4.8.
2665 - Fix support for Solaris pre-10.
2669 - afs_config will not longer set the Tray Icon State
2670 in the registry if the checkbox is not present in
2671 the dialog. (128591)
2673 - AFS Explorer Shell Extension now works from folder
2674 backgrounds. Overlays for mount points and symlinks
2675 are present in the dll, but are not registered at present
2678 - Do not use RankServerInterval registry value as the value for
2679 PerformanceTuningInterval.
2681 - When the data version of a mountpoint or symlink changes,
2682 the target string in the cm_scache_t object must be cleared.
2684 - "fs checkservers" now includes vldb servers in the output
2685 and only lists multi-homed servers once. A multi-homed
2686 server that has at least one up interface is no longer
2687 considered to be down.
2689 - When asynchronously storing dirty data buffers to the
2690 file server ensure that (a) the cm_scache_t object and
2691 the cm_buf_t object are for the same File ID so that
2692 locking and signalling work properly; and (b) if the
2693 FID no longer exists on the file server, do not panic,
2694 just discard the buffer.
2696 - When processing VNOVOL, VMOVED and VOFFLINE errors perform
2697 server comparisons by UUID or address and not simply by
2698 cm_server_t pointer. Otherwise, server failover may not
2701 - Do not preserve status information for cm_scache_t objects
2702 when the issuing server is multi-homed.
2704 - Giving up all callbacks when shutting down or suspending
2705 the machine is now significantly faster due to the use
2706 of an rx_multi implementation. (This functionality is
2707 still off by default and must be activated by a registry
2710 - Race conditions were possible when updating the state
2711 of the cm_volume_t flags and when moving the volumes
2712 within the least recently used list.
2714 - Ensure that the lanahelper library does not perform a
2715 NCBRESET of each lan adapter when enumerating the
2716 current network bindings. Correcting this permits OpenAFS
2717 to work on Windows 7 when the network adapter settings
2720 - Fix creation of mount points and symlinks as \\AFS\xxxx
2726 - vos now properly deals with matching sites when servers are multihomed.
2730 - Servers now marked down when GetCapabilities returns error.
2732 - In-use vcache count is now properly tracked.
2734 All server platforms:
2736 - Fix ptserver supergroups support on 64 bit platforms.
2738 - Demand attach salvaging doesn't use freed volume pointers.
2740 - Properly hold host lock during host enumeration in fileserver.
2744 - Fix socket termination on shutdown.
2746 - Support for 7.2, 7.3, 7.4 and 8.2 included.
2748 - References to vcaches are no longer leaked during root or reclaim.
2752 - Define llseek handler to avoid ESPIPE error in 2.6.37.
2754 - Mount interface replaces get_sb (new for 2.6.37, not yet required).
2756 - RedHat init script allows deferring for a new binary restart.
2758 - DEFINE_MUTEX replaces DECLARE_MUTEX for 2.6.37.
2762 - Correct return value from setpag syscall.
2766 - Bug fixes for issues introduced previously in 1.5 series.
2770 - Switch to ioctl() syscall replacement for Solaris 11 since syscall 65
2774 OpenAFS 1.5.78 (2010-11-04)
2778 * Revisions to Rx to fix performance issues.
2780 * Make fs getfid behave consistently across all platforms. (128372)
2782 * Properly check IDs handed to pts when creating users or groups so
2783 useful error messages can be provided. (128343)
2785 * Correct byte order handling of port in afsconf_LookupServer for SRV
2788 * Force a full dump when releasing to a site which was previously
2789 marked "don't use", in case the previous clone was out of date.
2791 All server platforms
2793 * Demand salvage of attached volumes now correctly track attachment
2796 * Avoid a potential crash due to failure to hold a lock when attaching
2801 * Track SMB connections by SID rather than username.
2803 * Error write attempts to known-readonly volumes earlier.
2805 * Validate directory buffers to avoid potential crashes.
2807 * Handle VIO errors from bulkstatus.
2809 * Make PMTU discovery configurable and register error handlers for it.
2811 All UNIX client platforms
2813 * Use larger I/O sizes in memcache to improve performance.
2815 * Avoid potential alignment issues doing I/O for pioctl calls.
2819 * Avoid panicing if the listener process is not findable.
2821 * Avoid deadlock issues while performing lookups.
2825 * Handle stale file handle errors for some cache partition types.
2827 * Avoid blocking with xvcache lock when attempting to free in-use
2830 * Build fixes for older kernels.
2832 * Properly configure LWP to use ucontext() on platforms where it
2835 * Eliminate spurious errors from AFS system call returns. (126230)
2839 * Attempt to honor configured Kerberos defaults in Preferences Pane.
2842 OpenAFS 1.5.77 (2010-09-08)
2846 * Rx path MTU detection will terminate detection in cases where the
2847 minimum required packet size cannot be transferred.
2849 * vos dryrun mode now shows effects for syncvldb single volume case.
2851 * vos dryrun mode now shows "status after" for syncvldb and syncserv.
2853 All server platforms
2855 * RXAFS_GetStatistics64 now returns statistics properly.
2859 * Attempt to properly identify the local system SMB connection for
2862 * Remap timeout and offline errors to proper NT RPC errors.
2864 * Properly fail over to other replicas on bulkstat IO errors.
2866 * Properly error delete-mode createfile if a file is set readonly.
2868 * Validate directory entry buffers to avoid crashing the service.
2870 * Log file modes properly.
2872 * Log cell name when logging server information.
2874 All UNIX client platforms
2876 * cacheout program for discarding callbacks is now built.
2878 * bulkstatus kernel locking is corrected to avoid a potential panic.
2882 * userspace support update
2886 * Updated vnode locking for children returned via lookup().
2888 * Avoid file open undercount with needed calls to
2889 FakeOpen/FakeClose().
2891 * Use vnode_pager_setsize to properly track file size during kernel
2894 * Update system call installation.
2896 * Fix shutdown of Rx kernel listener to avoid potential dereference
2899 * Avoid closing vnodes during vnode recycle.
2901 * Fix bogus call to FlushVS for vnode reclaims.
2905 * Packaging updated for current configure options and built files.
2907 * Cache bypass now holds reference on pages during readpage.
2909 * s390x setgroups32 patching update.
2913 * DNS resolver is reinitialized on IP address change. (126440)
2916 OpenAFS 1.5.76 (2010-08-16)
2920 * Updates to build-time configuration.
2922 * Fix XDR support in Rx to match header definition.
2924 * vos status now shows transaction creation, not action creation.
2926 * Rx avoids reporting loopback adapters when listing interfaces.
2928 All server platforms
2930 * Demand-Attach Fileserver always built and installed (dafileserver,
2931 davolserver, dasalvager).
2933 * Return VNOVOL from fileserver when a volume is deleted.
2935 * Ignore duplicate tags during volume restore operation.
2937 * Update inode array after salvage repairs volume.
2939 * Zero a corrupted header in memory during salvage to avoid further
2942 * Fix NAMEI backend to allow low-numbered volumes to work properly.
2944 * ptserver does not include cell name as part of length check for
2947 * Updated error messages for unblessed volumes.
2949 * vlserver avoids buffer overflow with regex pattern
2951 * Attach-time failures now note failures as the rest of the fileserver
2954 * Server argument logging will no longer overflow stack.
2956 * Provide fast-restart-like unsafe-nosalvage option for DAFS.
2958 * Deal with host hash collisions in the fileserver.
2962 * Avoid crashing when interpreting a drive letter as potentially
2963 matching a cell name.
2965 * Properly handle volume package errors.
2967 * Allow page recycling from known-readonly content without ensuring
2970 * 32 bit tools installer should not override client configuration.
2972 * Ensure root scache item has a valid callback when use is attempted.
2974 * Freelance directory changes now properly invalidate and replace the
2977 All UNIX client platforms
2979 * Support disconnected reconnecting with specified UID for PAGless
2982 * Proper disconnected vnode reference tracking.
2984 * Update server site blacklisting to not return success if nothing was
2987 * Avoid a panic during vcache contention due to CVInit vcache
2992 * Update for network stack in 8.1/9.0.
3002 * Disable PMTU error packet handling.
3006 * Debian packaging updated.
3008 * freezer interface updates.
3012 * Hold references to disconnected mode written vnodes properly.
3016 * Handle NFS translator module references for amd64.
3018 * INODE fileserver backend support now exists for amd64.
3021 OpenAFS 1.5.75 (2010-07-07)
3025 * Prevent rx_rpc_stats global lock from being a bottleneck.
3027 * Path MTU discovery is now provided to allow traffic to pass networks
3028 with sub-1500 byte MTUs and poor fragment handling.
3030 * Further reduce Rx NAT ping transmission when enabled.
3032 * Update Kerberos 5-based token handling in rxkad from upstream
3035 * Update version numbers emitted during build to reflect what is
3036 actually being built.
3038 * Add "-human" switch for human-readable units in fs diskfree and
3041 * vos provides reasons for locked volumes when known.
3043 * Do not count retransmission and ping acks as non-idle for Rx
3046 * Rx: provide service-specific data getter and setter routines.
3048 * Update build-time Kerberos detection.
3050 * Updated userspace AFS client.
3052 * Beginning of a modernized test suite.
3054 * Additional documentation.
3056 * Updated documentation, notably the Administrators Guide.
3058 * Substantial code cleanup.
3060 All server platforms
3062 * Update handling of vnode allocation failures.
3064 * DAFS: allow salvaging volumes not known to the fileserver, to allow
3065 cleanup of data not attached to a current volume.
3067 * Properly handle volumes slated for destruction.
3069 * Handle volumes with many files properly.
3071 * Force core file generation in bosserver by overriding default
3072 resource limits when possible.
3074 * Update vlclient and vldb_check.
3076 * Avoid potentially corrupting a volume on creation if files are left
3077 from previous failed cleanup.
3079 * Note volume changed during salvage as needed.
3081 * DAFS: do not assume invalid addresses are in fileserver address hash
3084 * Avoid tying up fileserver threads with volumes that are being taken
3087 * Do not set inUse on volumes for non-DAFS other than in fileserver.
3089 * Break origin's callback on target of rename operation.
3091 * Avoid unneeded parent directory link updates during some rename
3094 * Do not open /dev/console for writing in the fileserver.
3096 * DAFS: avoid spurious restarts when binary restarts are configured.
3098 * Avoid spurious and unneeded calls to sync(), which can slow down the
3103 * Revised SMB QuerySecurityInfo to address issues caused by MS10-020
3104 (http://support.microsoft.com/kb/980232)
3106 * Prevent use of the AFSCache file contents if mapped to a new
3109 * Make fs newcell include behavior compatible with the non-Windows
3112 * Provide a registry option (FreelanceImportCellServDB) to pre-create
3113 mount points in the AFS root for all cells in CellServDB.
3115 * Fix a memory leak in the cm_FreeServerList() routine.
3117 * Reduce privilege when reading registry CellServDB.
3119 * Add support for RPC Pipe Service NetWkstaGetInfo levels needed for
3122 * Prevent overflow when computing quota percentage in Explorer Shell.
3125 * Generate meaningful errors for ACL operations on freelance AFS root.
3127 * Fix error handling on InlineBulkStatus RPCs.
3129 * Show configuration pages for all types of MSI installations.
3131 * Improve freemount AFS root directory handling and operations.
3133 * Properly validate GetVolumeStatus pioctl responses.
3135 * Commit file length changes and dirty buffers when flushing a file.
3137 All UNIX client platforms
3139 * Update version of files for disk cache.
3141 * Do not call afs_FlushVCBs with xvcache lock held, to improve
3144 * Add mariner log messages for creating and removing files.
3146 * Don't hold xvcache lock while creating symlinks, to improve
3149 * Provide -dynroot-sparse mode to not show all cells in CellServDB in
3152 * Avoid a potential crash in aklog in linked cell handling.
3154 * Log MTU-caused packet retransmission.
3156 * Prevent crashes caused be fs checkservers while cache is being set
3159 * fs getserverprefs now has a buffer large enough for the default
3162 * Report server address when logging warnings.
3164 * Avoid panic in GetCapabilities when cell is not known.
3166 * Lock process name and id for advisory lock warnings when possible.
3168 * Handle need for allocating additional Rx packets.
3170 * Properly handle errors from InlineBulkStatus operations.
3172 * Fix errors returned from fcntl() on readonly files locked for write.
3174 * Flush pending changes to the server on LOCK_EX unlock.
3176 * Reflect length changes as a result of callbacks even when file is
3179 * Avoid hanging due to error exit when attempting to store a large
3180 file to a non-largefile fileserver.
3182 * Recover from afs_GetVolSlot errors.
3186 * Bugfixes for kernel VFS and network routines.
3190 * Provide makesname().
3194 * Avoid syscall probes when keyrings are present, by default. (125215)
3196 * Remove "Big Kernel Lock" from VFS operations.
3198 * Use filehandles for all Linux 2.6 versions to avoid need for matched
3201 * Updated RPM packaging.
3203 * Fix dkms configuration provided with RPMs.
3205 * Hold reference on pages during background I/O for cache bypass.
3207 * Fix cache bypass handling of non-largefile fileservers.
3209 * Protect truncate_inode_pages mappings with mutex or semaphore as
3212 * Fix pagevec use in cache bypass. (127505)
3214 * Updates for 2.6.35
3218 * Improve launchd configuration.
3220 * Avoid hanging on recursive cache file lock acquisition when user
3221 notification is enabled.
3223 * Fix and re-enable bulkstat mode.
3231 * Precluding unmount while AFS is busy.
3233 * Avoid deadlocking when releasing the VFS object.
3235 * Stop network interface poller in kernel on AFS shutdown.
3237 * Avoid issues with lookups on empty directory names. (127356)
3240 OpenAFS 1.5.74 (2010-04-22)
3244 * Add "vos setaddrs" command.
3246 * Rx library lock contention avoidance between rx_NewCall and
3249 * Rx library races due to inconsistent use of rx_connection
3250 conn_data_lock to protect the flags field.
3252 * Rx library inconsistent use of RX_CALL_TQ_WAIT which could result in
3255 * Rx library must signal transmit queue waiters when flushing.
3257 * afsmonitor shows busy counts now.
3259 * afsmonitor displays xstat callback statistics.
3261 * Provide expandgroups for pts mem on a supergroups server.
3263 * Provide supergroup option to liste nested groups during pts mem.
3265 All server platforms
3267 * Avoid volume lock contention during DAFS startup.
3271 * Avoid a race when updating cell vldb server lists that can result in
3274 * Avoid a deadlock when managing CM_SCACHESYNC_STOREDATA state
3275 operations for directory objects.
3277 * Add new Windows Application Event log messages for VBUSY,
3278 VRESTARTING, ALL_BUSY, ALL_OFFLINE, and ALL_DOWN.
3280 * Reduce lock contention by waiting for cm_buf_t I/O operations.
3282 * Split the cm_buf_t flags field to separate the flags that are
3283 protected by the cm_buf_t mutex from those protected by the
3286 * In cm_UpdateVolumeLocation, avoid searching for a ".readonly" volume
3287 on a numeric volume name.
3289 * File buffer allocations whose offsets are beyond server EOF should
3290 be locally allocated and zero filled. The file server should not be
3291 issued a FetchData rpc which is guaranteed to fail.
3293 * Enable integrated logon to work with Windows 7/2008 when user logons
3294 are performed with a non-Domain Kerberos principal.
3296 * Add Protection Error messages to aklog output.
3298 All UNIX client platforms
3300 * Provide a FUSE-interfacing userspace afs client.
3302 * Updates to libuafs userspace cache manager.
3304 * Probe servers using GetCapabilities instead of GetTime, thus
3305 requiring fewer RPCs.
3307 * Fix DNS SRV record handling for cell lookup.
3311 * Fix sleep/wakeup routines.
3313 * Update for 8.0 release.
3317 * Handle high memory addresses correctly.
3321 * Make 32 bit AFS syscalls work again.
3323 * Work around finder "Duplicate" failure (caused by setting modes on
3326 * Disable bulkstat again (will be re-enabled at or before .75).
3328 * Provide symlink type hints during readdir.
3331 OpenAFS 1.5.73 (2010-03-24)
3333 All systems: Minor bugfixes. New features.
3335 * New functionality:
3339 - NAT keepalive support at Rx level.
3345 - Corrected server IP address output in vos syncvldb verbose mode.
3347 - Corrected server IP address output for last "yes" host in udebug.
3349 - Corrected SRV record support for canonicalizing cell names.
3353 - Fixed a potential race in Disconnected AFS "remove" support.
3355 - Fix a potential blocking condition in fakestat mode.
3357 - Avoid some errors and stack overflow reports when vos is interrupted.
3360 - Clean up several minor memory leaks.
3362 - If a large file is stored to a non-largefile fileserver, avoid
3363 a potential deadlock.
3365 - Increase maximum number of sysnames to 32.
3367 - Readd fs mariner "storing" message, missing since AFS 3.3.
3369 - Attempt timeouts on AFSDB lookups in userspace.
3371 - Avoid interrupting writes due to an idle deadtime timeout.
3373 All server platforms:
3375 - Properly notify only affected hosts for volume callbacks. (126497)
3377 - Allow volumes with trashed root directory to be recovered. (94658)
3379 - Hold lock in file and volservers when traversing partition list.
3381 - Use finer-grained locking in DAFS: volume, instead of partition locks.
3383 - Schedule all DAFS salvages via FSSYNC.
3385 - Avoid stale ptserver credential caching issue on keyfile update.
3387 - Improve callback table overflow handling. (126451)
3389 - Preclude deadlocks on when attempting to save DAFS state.
3391 - Avoid races deleting hosts. (126454)
3393 - Improve salvage speed for DAFS (124488)
3395 - The bosserver now handles SIGTERM.
3399 - Prevent the Explorer Shell extension from crashing if symlink
3400 creation failed. (126406)
3402 - A Rx level NAT ping has been implemented. A registry value enables.
3404 - Adds krb5 error message translation to aklog, afscreds,
3405 afslogon.dll, the network identity manager afs provider and
3408 - Default mode bit settings for file and directory creation are now
3409 provided, and can be configured.
3411 - An SMB request trace facility is provided and can be enabled for
3416 - Clean up properly on mount failure.
3418 - Add entry to /etc/vfs to allow umount to work.
3422 - Additional work to support FreeBSD 8-current.
3426 - Fix build issues with library order.
3430 - Fix s390 support conflict with executable stack patches.
3432 - Don't count root's AFS session keyrings against quota.
3434 - Correct dkms support in RPM config file.
3436 - Keyring destructor now properly cleans up all tokens.
3438 - Build again on old 2.6 kernels.
3440 - Avoid GLOCK leak when updating CellServDB in-core.
3442 - Fix byte-range lock handling.
3444 - Attempt to deal with bdi issues. (126514)
3448 - Some FSEvents hinting for authentication events now done. (23781)
3450 - Update uninstaller. (125634)
3452 - Rewrite afssettings and fstab code to avoid licensing issue with APSL.
3454 - Growl client for user monitoring of AFS events included.
3456 - Properly support insert-only dropboxes.
3458 - Add bulkstat support.
3460 - Include support for moving in Finder across mount points.
3462 - Preferences Pane includes support for Kerberos 5 ticket renewal.
3466 - Some support for OpenBSD 4.7.
3469 OpenAFS 1.5.72 (2010-02-15)
3473 * Provide internationalization support in com_err.
3475 * Fix array length checking to avoid crashes when checking for a
3476 volume type based on name in vos.
3478 All server platforms
3480 * Provide backward compatible "-f" flag to salvager for force mode.
3484 * Restore use of DNS AFSDB and SRV records by kaserver clients.
3486 All UNIX client platforms
3488 * Fix client cache file truncation to not lose chunks when truncating
3491 * Ensure a cache writeback hook is installed in the client (bug from
3494 * Avoid spurious free memory warnings during clean shutdown.
3496 * Fakestat mode avoids AFSDB lookups.
3498 * "fs storebehind" now correctly reports errors on readonly volumes.
3500 * Additional documentation for "fs getcacheparms"
3502 * Forced new uuid generation with "fs uuid -generate" now works
3503 enforced permission correctly.
3507 * Add optimized Rx event handler in kernel.
3509 * Installer now allows installing an older version.
3511 * Panic decoder can now deal with MacOS 10.5 again.
3513 * MacOS ._ files are now correctly not looked up as cellnames.
3517 * To deal with SELinux file labeling, try cache accesses with current
3518 credentials in event of failure.
3520 * Rx XDR encoding bug on i386 Linux is fixed (bug introduced in
3525 * Code compilation fixes.
3529 * Update for OpenBSD 4.6.
3532 OpenAFS 1.5.69 (2010-01-19)
3536 * Configuration of BOSserver no longer defaults to weekly restarts
3539 * Provide BOS restricted mode by default.
3541 * Add support for "vos endtrans" command.
3543 * Default to providing full output from vos listvol.
3545 * Correct additional-address tracking in the fileserver.
3547 * Improve Rx performance by not unnecessarily dropping and reacquiring
3548 call locks in read and write processes.
3550 * Avoid crashes when monitoring volserver transactions across
3551 potential transaction garbage collection.
3553 * Numerous warning fixes.
3555 All server platforms
3557 * Avoid saving fileserver state in demand attach fileserver when
3560 * Demand attach fileserver allows other callers to schedule salvages.
3562 * Demand attach "bos salvage" now works correctly with restricted
3567 * Numerous changes to the client-internal btree directory handling to
3570 * fs examine reports owner and group ids as signed values (PTS groups
3573 * Preclude corruption due to races writing to smb buffers.
3575 * Allow MTU settings in registry to be used.
3577 * Apply MTU to both send and receive sizes.
3579 All UNIX client platforms
3581 * Avoid double-freeing Rx call structure if reading a response from
3582 the file server results in a short read.
3584 * Handle negative lengths in FetchStatus results correctly.
3586 * Properly clean up allocated memory at shutdown.
3588 * Default to AFSDB compiled into the cache manager.
3590 * Avoid inadvertant disclosure of stat() information to clients not so
3593 * Correct a bug with AFSDB lookups introduced with SRV record support.
3597 * Install kernel panic processing tool in /Library/OpenAFS/Tools.
3599 * Include debugging symbols for kernel extension in additional package.
3601 * Support "Application Firewall" users.
3603 * Avoid ._cellname AFSDB lookups.
3605 * Compile preferences pane as a universal binary.
3609 * Use splice to speed up storing files.
3611 * When using memcache, avoid duplicating work in readpages.
3613 * Use dget_parent to safely find an inode's parent.
3615 * Disable access time updates in our superblock.
3617 * Avoid crashing doing writeback if no credentials were stashed at
3620 * Simplify keyring support.
3622 * Properly clean up vcache in event of failed mount.
3626 * Update for current FreeBSD 8.
3630 * Abstractly manipulate groups as now required.
3632 * Abstractly access time instead of using lbolt directly.
3635 OpenAFS 1.5.68 (2009-12-08)
3639 * aklog now attempts to convert non-AFS errors to human-readable
3642 * Make stack not executable when compiling assembler source with GCC.
3644 * Numerous source warning cleanups and code reorganization.
3646 All server platforms
3648 * Compute midnight for volume statistics calculation from local time.
3650 * Salvager now orphans duplicate special inodes when running to allow
3651 recovery in event of a problem, instead of simply ignoring the
3654 * Support to ensure a server panic attempt leaves a core and thus
3655 restarts in a timely manner, rather than potentially hanging. Use
3656 panic to attempt cleanup before leaving a core when possible.
3658 * Volume sync data reported during bulkstatus is now set correctly.
3660 * Provide better tuning for fileserver file descriptor caching.
3662 * Allow more than 128 threads in fileserver by modifying host
3663 structure in-use tracking.
3665 * Avoid crashes getting volume server status during transaction
3668 * Improved logging of offline volume conditions.
3670 * Correct volume statistics when cloning a volume.
3672 * Avoid referencing host structures in the fileserver which are marked
3675 * Demand attach fileserver corrections to avoid coring during an
3678 * host array bounds checking corrections to avoid buffer overflow.
3680 * Handle special inodes correctly when promoting an inode fileserver
3681 readonly volume to read-write.
3685 * Set the DOS Readonly attribute on a file/directory whenever the unix
3686 mode combined with the mask 0200 is true. Previously there was a
3687 discrepency between the mask used for testing for readonly behavior
3688 and that used for setting the attribute.
3690 * Disable AFSVolSync based .readonly "whole-volume callback" support
3691 because the all file servers prior to 1.5.67 (and perhaps 1.4.12) do
3692 not properly assign a value to the AFSVolSync structure in bulk
3693 status RPC responses.
3695 * Improve the error output from aklog to output the value from krb5
3696 error_message() if the afs_com_err output indicates an unknown
3699 * Convert VBUSY and VRESTARTING to CM_ERROR_ALLBUSY and do not permit
3700 them to be exposed to the smb redirector.
3702 * Convert STATUS_TIMEOUT responses to STATUS_IO_TIMEOUT to avoid
3703 confusion within the smb redirector.
3705 * Fix the byte order assigned to port numbers associated with AFSDB
3706 record lookups. They must be network byte order not host byte
3709 * Add dynamic server ranking based on RPC round trip time
3712 All UNIX client platforms
3714 * Additional shutdown-time memory leaks removed.
3716 * Improved logging of resource contention.
3718 * Provide dumping for Rx debug packet tracking support in source.
3720 * Update afscp test client to build, and provide an unlock client.
3722 * Client buffers for directory parsing can now be allocated beyond the
3723 fixed set formerly provided.
3725 * Work around race condition when manipulating read-only volume
3728 * Bugfixes to get PAG value pioctl.
3730 * Bugfixes to SRV record support.
3734 * Path MTU tracking code cleanup.
3736 * Avoid an oops due to racing with vcache recycling thread.
3738 * Changes to keyring PAG handling: for sufficiently new kernels, use
3739 only keyring-based PAGs, and disable group PAGs entirely.
3741 * Updates to the kernel page cache interface: writing pages will now
3742 not spuriously leak page locks, and will avoid requiring duplicate
3745 * Credential references are now tracked using native atomic counters.
3747 * Kernel mutex/semaphore lock ordering fix to avoid deadlocks.
3749 * Manipulate disk cache with credentials used to initialize it, to
3750 avoid security issues.
3754 * Fix fstrace message catalog location.
3756 * Fix kernel fstrace logging.
3759 OpenAFS 1.5.66 (2009-10-25)
3763 * Avoid calling exit() in library code.
3765 * Add rx window size and peer timeout tuning APIs.
3767 * Correct rx peer timeout handling to disallow 0ms timeouts.
3769 * Correct calculation of rx RTT by disregarding retransmitted packets.
3771 * vos manpages updated to reflect changes in recent versions.
3773 * GNU-style long options (e.g. --cell) are now supported in all
3776 * fs listacl can now print a command to recreate the current ACL.
3778 All server platforms
3780 * Fix a race on transaction objects in the volserver which can cause a
3783 * Avoid destroying and setting to NULL the callback connection when it
3784 could still be being used.
3786 * Correct unlink handling in salvager.
3788 * Improve error messages due to I/O errors in the volserver.
3790 * Correct an issue which caused converted RO to RW volumes on namei
3791 fileservers to not come online immediately.
3795 * Official support for Windows 7 and Server 2008 R2.
3797 * Prevent a file server bug (FetchData returning an invalid length
3798 instead of zero) from causing an "unexpected network error" when
3801 * Promote DNS SRV records as superior to DNS AFSDB records. Support
3802 arbitrary port numbers for vldb servers.
3804 * Add AFSVolSync based .readonly "whole-volume callback" support.
3805 With this functionality, multiple objects from a .readonly volume
3806 can have their status validated by issuing a single
3807 RXAFS_FetchStatus RPC.
3809 * Remove drive mapping functionality and service start/stop from
3812 * Remove drive mapping functionality from afs_config.exe.
3814 * Use {HKLM,HKCU}\SOFTWARE\OpenAFS\Client DWORD "ShowMountTab" to
3815 restore access to drive mapping functionality in afscreds.exe and
3818 * Adjust SMB error return codes to avoid returning STATUS_TIMEOUT
3819 which results in the SMB redirector disconnecting.
3821 * Network Identity Manager OpenAFS Provider now provides its own "AFS
3822 lock" notification icon to report the status of "have tokens, have
3823 no tokens, service not started, service started but inaccessible".
3824 Hovering over the icon lists the cells for which tokens exist (if
3825 any) and the OpenAFS version number. Double-clicking executes the
3826 Network Identity Manager default action.
3828 * Prevent pioctl calls from retrying indefinitely when a sharing
3829 violation error occurs.
3831 All UNIX client platforms
3833 * Correct a condition which could discard the error from initializing
3836 * Avoid using invalid references to afs_Conn connection structures,
3837 and thus potentially producing invalid data when a retry is needed.
3839 * SRV records are now supported for discovering AFS servers.
3843 * Correct writepage behavior.
3845 * Fix error code handling in the writepage code.
3847 * Avoid leaking page locks, which could potentially hang a machine.
3851 * Preferences Pane improvements.
3855 * Avoiding attempting to handle critical signals in servers, so that
3856 core file handling works correctly.
3859 OpenAFS 1.5.65 (2009-10-06)
3863 * Code compilation warning fixes, to enable better finding and
3866 * Provide configure-time switch to enable code warning compilation.
3868 All server platforms
3870 * Demand-attach fileserver now makes volume LRU list operations
3871 exclusive operations to avoid races during adding to the list.
3873 * Fileservers now avoid potential "negative length" fetches.
3875 * A leak in host tracking objects in the fileserver has been fixed.
3877 * Salvager now unlinks all files by full path, to deal with the change
3878 to not chdir for core file tracking.
3880 * Salvager avoids asserting if the volume header is unreadable.
3882 * Demand-attach fileserver puts back volume references from fssync
3887 * Improved service response to suspend and shutdown event
3890 * Avoid a bug in the file server that can result in an invalid length
3891 being returned as part of a fetch data response if the client
3892 attempts to read beyond the length of the file.
3894 * Do not publish a default stream object for directories and mount
3895 point objects. This was impacting the ability of some Windows XP
3896 systems to save roaming profiles.
3898 All UNIX client platforms
3900 * A bug which could cause erroneous handling of lengths on data reads
3903 * A bug where erroneous length returns from the fileserver could
3904 result in a false error has been fixed.
3908 * Background page copies are now supported for enhanced disk cache
3911 * Blocking readahead is supported in readpages() to reduce overhead.
3913 * Use readpage() instead of read() to access cache data to avail disk
3914 cache users of the kernel backing cache for improved performance.
3916 * Minimize credential handling for improved performance.
3920 * Preferences Pane cleanup.
3924 * Provide a fs_pathconf method with sensible defaults.
3926 * Provide a _PC_FILESIZEBITS method to fix some NFS translator
3930 OpenAFS 1.5.64 (2009-09-22)
3932 All server platforms
3934 * The demand attach fileserver now puts back volume references gotten
3935 via the fssync interface.
3937 * The demand attach fileserver had a structure reference error, which
3938 has been correected.
3942 * Restores Windows 2000 compatibility.
3944 * Fixes a data consistency error between the output of NetWkstaGetInfo
3945 and NetServerGetInfo RPCs, specify the Lan workstation group name
3946 "AFS", and report server name as "AFS" instead of "\\AFS" when the
3947 caller asks for "\\AFS".
3949 * Enables executables to be run from \\AFS on Windows 7. Returns
3950 "Name not found" instead of "File not found" when a directory or
3951 file name cannot be found. This avoids loader errors when system
3952 dlls cannot be located in the executable directory.
3954 * Prevents cache manager from marking the file server "down" when the
3955 data returned in response to either RXAFS_FetchData64 or
3956 RXAFS_StoreData64 is invalid.
3958 * Adds pioctl data validation to the AFS Explorer Shell extension.
3960 All UNIX client platforms
3962 * A bug which could cause a kernel panic in 1.5.63 has been corrected.
3963 This would manifest as a GetDCache panic or oops.
3967 * aklog -setpag works again with recent kernels when keyring is in
3972 * When Fast User Switch is in use, AFS login is now handled correctly
3973 by the integration tool included with the preferences pane.
3975 * Several packaging bugs have been corrected.
3978 OpenAFS 1.5.63 (2009-09-11)
3982 * The restorevol command is now documented and installed as a user
3985 * The uss command now properly translates vldb entries to its expected
3986 format when handling them in all cases.
3988 * Documentation now refers to Kerberos instead of kaserver.
3990 All server platforms
3992 * bosserver now handles BosConfig.new when restarting, allowing
3993 configuration to be replaced at restart time rather than with bos
3994 delete and bos create. Documentation is updated to reflect this.
3996 * The demand attach fileservice not longer potentially hangs trying to
3997 terminate demand-salvages which have already exited.
3999 * The demand attach fileservice has been modified to avoid spurious
4000 'SYNC_putRes: write failed' warnings when some protocol messages
4001 cannot be acknowledged due to the sender terminating the connection.
4003 * In the event of failure to contact the vlserver or ptserver, the
4004 fileserver will not exit and trigger a forced salvage. It will
4005 continue to try in the background to contact the needed services.
4007 * The salvager can now repair certain cases of a damamged vnode index.
4009 * The accessDate metadata for a volume is now updated correctly.
4013 * CRITICAL: Some applications for example those based on Cygwin were
4014 unable to access data stored in the AFS name space. Explorer Shell
4015 also experienced inconsistent behavior. This is fixed.
4017 * CRITICAL: Multiple AFS pioctl requests issued nearly simultaneously
4018 by applications could result in pioctl responses being received by
4019 the wrong requester. This in turn could result in application
4020 crashes. symlink.exe, fs.exe, afslogon.dll, afscreds.exe, and the
4021 netidmgr afscred.dll plugin were all affected.
4023 * Some XP machines running 1.5.62 had trouble saving roaming profile
4024 data. This is fixed.
4026 * Integrated Logon (afslogon.dll) did not function with domain
4027 specific configurations.
4029 * Ensure that access denied and over quota errors experienced while
4030 storing data to the file server do not result in on-going retry
4033 All UNIX client platforms
4035 * Except on Solaris and AIX, the compiler may now be overriden at
4036 configure time by setting the CC environment variable.
4038 * afsd now properly deals with large cache partitions.
git://git.openafs.org / openafs.git / blob