2004-07-27 21:34 jaltman * src/WINNT/afsd/: cm_freelance.c, cm_vnodeops.c: DELTA freelance-rw-20040727 AUTHOR jaltman@mit.edu Fix cm_Lookup to properly set the rw flag when adding Freelance mount points based on whether the filename begins with a '.' Fix cm_FreelanceAddMount to set the cellname to the cellname without the '.' when rw mode is used and a cellname is not provided. 2004-07-27 16:24 rees * src/afs/FBSD/osi_vfsops.c: DELTA fbsd53-20040727 AUTHOR jeremym@backboneentertainment.com FreeBSD 5.3 has an extra thread arg to vflush() 2004-07-27 14:39 rees * README, src/afs/OBSD/osi_vnodeops.c, src/config/afs_sysnames.h, src/config/param.i386_fbsd_53.h, src/config/param.i386_obsd36.h, src/lwp/process.fbsd.s: DELTA bsd-new-releases-20040727 AUTHOR rees@umich.edu Preliminary support for FreeBSD 5.3 and OpenBSD 3.6. OpenBSD osi_vnodeops.c patch from brent@graveland.net (slightly modified) Remove obsolete src/lwp/process.fbsd.s to prevent further confusion 2004-07-27 13:32 jaltman * doc/txt/winnotes/msi-deployment-guide.txt: DELTA msi-deployment-guide-20040727 AUTHOR asanka@mit.edu a guide to making organization specific modifications to the msi installer 2004-07-27 13:23 jaltman * doc/txt/winnotes/registry.txt: DELTA registry-txt-20040727 AUTHOR d00-tga@d.kth.se Remove duplicate entries 2004-07-26 23:24 jaltman * doc/txt/winnotes/afs-changes-since-1.2.txt: DELTA winnotes-20040726 AUTHOR jaltman@mit.edu Updates for 1.3.66 2004-07-26 23:22 jaltman * src/WINNT/afsd/: cm.h, smb.c, smb.h, smb3.c, smb_ioctl.c: DELTA afsd-20040726 AUTHOR asanka@mit.edu Prevent a TID allocated for IPC from being used for anything other than RAP. Implement NetServerGetInfo instead of returning an error. When looking for shares, go through root.afs first before trying to add a mount point. 2004-07-26 23:14 jaltman * src/WINNT/afsd/afslogon.c: DELTA afslogon-20040726 AUTHOR jaltman@mit.edu Only display the "Integrated Login failed" message box if Integrated Login is in fact being used. 2004-07-26 23:01 jaltman * src/WINNT/client_config/: tab_general.cpp, tab_hosts.cpp: DELTA afsconfig-dns-cells-20040726 AUTHOR jaltman@mit.edu Another annoying bug. afs_config.exe now validates cell names against DNS in addition to the CellServDB file. 2004-07-26 20:40 jaltman * src/sys/pioctl_nt.c: DELTA misc-patches-20040726 AUTHOR jaltman@mit.edu When determining the full path of a UNC path, strip the server and share names 2004-07-26 20:39 jaltman * src/WINNT/install/NSIS/OpenAFS.nsi: DELTA misc-patches-20040726 AUTHOR jaltman@mit.edu more dlls to be replaced 2004-07-26 20:39 jaltman * src/WINNT/afssvrcfg/services_page.cpp: DELTA misc-patches-20040726 AUTHOR jaltman@mit.edu cleanup uninitialized variables 2004-07-26 20:39 jaltman * .cvsignore: DELTA misc-patches-20040726 AUTHOR jaltman@mit.edu Update .cvsignore files for windows 2004-07-26 19:08 jaltman * src/WINNT/afsd/: cm_callback.c, cm_freelance.c, cm_freelance.h, cm_scache.c, cm_vnodeops.c: DELTA freelance-cellid-20040726 AUTHOR jaltman@mit.edu Replace Freelance cellid constant 0x1 with a #define and set its value to 0xFFFFFFFF to avoid collisions with the root.cell volumes on remote cells. 2004-07-26 02:48 jaltman * src/WINNT/afsd/cm_conn.c: DELTA novolume-20040725 AUTHOR jaltman@mit.edu if we are going to return CM_ERROR_NOSUCHVOLUME do it whenever the server list is empty. If the server list is empty, allDown and allBusy will always be set but there is nothing we can do. 2004-07-25 21:47 jaltman * src/config/NTMakefile.i386_nt40: DELTA version-update-20040725 AUTHOR jaltman@mit.edu Update version to 1.3.66 2004-07-25 21:45 jaltman * src/WINNT/kfw/: inc/krb4/krb.h, inc/leash/leashwin.h, inc/loadfuncs/loadfuncs-krb.h, inc/loadfuncs/loadfuncs-krb5.h, inc/loadfuncs/loadfuncs-leash.h, lib/i386/comerr32.lib, lib/i386/delaydlls.lib, lib/i386/getopt.lib, lib/i386/gssapi32.lib, lib/i386/kclnt32.lib, lib/i386/krb524.lib, lib/i386/krb5_32.lib, lib/i386/krbcc32.lib, lib/i386/krbv4w32.lib, lib/i386/leashw32.lib, lib/i386/loadfuncs.lib, lib/i386/wshelp32.lib, lib/i386/xpprof32.lib: DELTA kfw-2-6-4-20040725 AUTHOR jaltman@mit.edu Update KFW SDK to 2.6.4 2004-07-25 20:53 jaltman * doc/txt/winnotes/afs-changes-since-1.2.txt, doc/txt/winnotes/afs-install-notes.txt, doc/txt/winnotes/afs-issues.txt, src/WINNT/afsd/afsd_init.c, src/WINNT/afsd/cm_dcache.c, src/WINNT/afsd/cm_freelance.c, src/WINNT/afsd/cm_scache.c, src/WINNT/afsd/cm_vnodeops.c, src/WINNT/afsd/smb.c, src/WINNT/client_config/drivemap.cpp, src/WINNT/client_creds/advtab.cpp, src/WINNT/client_creds/afswiz.cpp, src/WINNT/client_creds/window.cpp, src/WINNT/client_creds/lang/de_DE/afscreds.rc, src/WINNT/client_creds/lang/en_US/afscreds.rc, src/WINNT/client_creds/lang/es_ES/afscreds.rc, src/WINNT/client_creds/lang/ja_JP/afscreds.rc, src/WINNT/client_creds/lang/ko_KR/afscreds.rc, src/WINNT/client_creds/lang/pt_BR/afscreds.rc, src/WINNT/client_creds/lang/zh_CN/afscreds.rc, src/WINNT/client_creds/lang/zh_TW/afscreds.rc, src/WINNT/install/wix/lang/en_US/ui.wxi: DELTA small-tweaks-20040725 AUTHOR jaltman@mit.edu * update winnotes * add osi trace log entries to help diagnose issues with overlapped writes from CIFS client * fix osi trace log entries for freelance add mount to use osi_SaveLogString * fix afscreds "Start Service" to automatically obtain tokens if kerberos tickets are available * update afscreds systray menu to use "..." after Remove Icon * remove extra "." in wix installer resource 2004-07-24 18:59 jaltman * src/WINNT/afsd/: cm_conn.c, cm_volume.c: DELTA force-vol-upd-20040724 AUTHOR jaltman@mit.edu Change cm_ForceUpdateVolume to not try to perform an immediate update. Just set the CM_VOLUMEFLAG_RESET flag. Calling cm_UpdateVolume calls cm_connByMServers which then calls cm_Analyze which is how we ended up having cm_ForceUpdateVolume called in the first place. 2004-07-24 15:25 jaltman * src/WINNT/afsd/afsd_service.c: DELTA global-drives-20040724 AUTHOR jaltman@mit.edu If creating the global drive letter fails, attempt to cancel the previous use and then re-create. 2004-07-24 08:31 jaltman * src/WINNT/afsd/smb.c: DELTA smb-extended-20040724 AUTHOR jaltman@mit.edu Don't fallback to SMB_AUTH_NTLM. Apparently, allowing SPNEGO to be used each time prevents the failure of authentication when logged into Windows with an external Kerberos principal mapped to a local account. 2004-07-24 07:35 jaltman * src/WINNT/install/wix/: config.wxi, property.wxi, registry.wxi, lang/en_US/ui.wxi: DELTA wix-updates-20040723 AUTHOR asanka@mit.edu Change default security level to 'crypt'. Add registry key for SMBAuthType. Add configurable property for SMBAuthType. Remove high security mode option from the UI. Workaround UI bug where a text control would redraw twice, once properly, once without interpreting format codes when there are two properties to replace. 2004-07-23 22:58 jaltman * src/WINNT/afsd/cm_conn.c: DELTA down-before-busy-20040723 AUTHOR jaltman@mit.edu slight correction to previous patch. check allDown before checking allBusy 2004-07-23 22:25 jaltman * doc/txt/winnotes/afs-install-notes.txt: DELTA install-notes-20040723 AUTHOR jaltman@mit.edu More updates to smb auth vs external kerberos login 2004-07-23 22:06 shadow * src/afs/LINUX/osi_vfsops.c: DELTA linux-null-out-stat-struct-20040723 AUTHOR shadow@dementia.org FIXES 3812 we should memset this to 0. we should also only do it once for linux 2.2. code is slightly different in the cvs head. 2004-07-23 22:02 jaltman * doc/txt/winnotes/afs-install-notes.txt: DELTA install-notes-20040723 AUTHOR jaltman@mit.edu Update the install notes to describe conflicts between SMB Authentication and Windows machines configured with non-Windows Kerberos authentication used to map to local accounts. 2004-07-23 21:55 jaltman * src/WINNT/afsd/cm_conn.c: DELTA allserversdown-20040723 AUTHOR jaltman@mit.edu When all servers associated with a volume get into the CM_SERVERFLAG_DOWN state, the error CM_ERROR_ALLOFFLINE would be returned by cm_ConnByMServers. cm_Analyze was then supposed to be pausing for 5 seconds and then reset the volume information. Unfortunately, although it called cm_ForceUpdateVolume, cm_ForceUpdateVolume does not reset the CM_SERVERFLAG_DOWN state on the servers. Therefore, when cm_ForceUpdateVolume calls cm_ConnByMServers it would be given a CM_ERROR_ALLOFFLINE. In other words, there was no way out of the state. cm_Analyze will now reset the CM_SERVERFLAG_DOWN as well as setting the server status to not_busy after its 5 second wait. This will allow cm_ForceUpdateVolume to actually reset the volume information, and refresh it if servers for the volume are newly accessible. Also, added some missing locking calls in cm_Analyze. In cm_ConnByMServers, change the error reporting to return CM_ERROR_ALLBUSY only when all servers are busy or down; return CM_ERROR_ALLOFFLINE when all servers are down; and only return CM_ERROR_NOSUCHVOLUME if the server list for the volume is empty. In all other cases return CM_ERROR_TIMEDOUT. 2004-07-22 23:21 jaltman * src/WINNT/afsd/logon_ad.cpp: DELTA afslogon-domain-20040722 AUTHOR jaltman@mit.edu Fix null reference to bstr when active directory is not available during a short domain acquisition 2004-07-22 22:41 jaltman * src/WINNT/afsd/afskfw-int.h: DELTA prototypes-20040723 AUTHOR jaltman@mit.edu fix prototype for afs_realm_of_cell 2004-07-22 22:15 jaltman * doc/txt/winnotes/registry.txt, src/WINNT/afsd/NTMakefile, src/WINNT/afsd/afslogon.c, src/WINNT/afsd/afslogon.h, src/WINNT/afsd/logon_ad.cpp: DELTA afslogon-20040722 AUTHOR jaltman@mit.edu the procedure used to obtain the profile directory failed in Domains which were not Forests. If ADS_NAME_INITTYPE_GC fails, we must try ADS_NAME_INITTYPE_DOMAIN which requires the Domain. Added a Domain parameter to QueryAdHomePathFromSid. This was easy to obtain in the NPLogonNotify since the logon domain is provided as a parameter. Unfortunately, the domain provided to the winlogon event notification routine is the user authentication domain, not the logon domain for the local machine. Needed to create a GetLocalShortDomain function which uses the IADsADSystemInfo COM interface to obtain the local short domain. With this in place, we can now properly detect the profile directory in all cases. Document MaxLogSize in registry.txt 2004-07-22 09:42 jaltman * src/auth/cellconfig.c: DELTA misc-cleanup-20040721 AUTHOR jaltman@mit.edu pass the correct data type into afssw_GetClientCellServDBDir 2004-07-22 09:23 jaltman * src/: WINNT/afsd/afsd_init.c, WINNT/afsd/afslogon.c, WINNT/afsd/afslogon.def, WINNT/afsd/afslogon.h, WINNT/afsd/cm_config.c, WINNT/afsd/libafsconf.def, WINNT/afsd/logon_ad.cpp, WINNT/client_config/drivemap.cpp, WINNT/install/NSIS/OpenAFS.nsi, WINNT/install/wix/files.wxi, auth/cellconfig.c: DELTA misc-cleanups-20040721 AUTHOR jaltman@mit.edu * Cleanup debug logging. In particular, allow the TraceOptions registry value to be used as a bit flag as it was intended. Give each type of debugging its own value instead of having each module test for the zero bit. * Modify the handling of the afsd_init.log file. This file originally was replaced on each start. However, with auto-restart this causes any error information from the previous halt to be lost. So it was changed quite a while back to append forever. The problem with this is that the file gets unreasonably large. Solution: add a new registry value, MaxLogSize, which determins how large the file should be allowed to become before truncation. The default is 100K. The magic value 0 means grow indefinitely. * Update afslogon.dll. Cleanup logging. Fix some errors. Remove unused variables. AND do not Forget Tokens on Logoff if the profile is located in AFS space. * Fix a bug introduced yesterday in cellconfig.c which caused problems accessing the CellServDB file * Update the NSIS installer to replace the CRTL DLLs instead of overwrite them. * Add new Startup Winlogon handler to initialize the TraceOption. 2004-07-21 22:23 shadow * src/afs/LINUX/osi_vnodeops.c: DELTA fstrace-avoid-double-glock-in-dentry-code-during-fstrace-20040719 AUTHOR shadow@dementia.org FIXES fstracing on a linux machine and trying to fs flush a file in the cache would tr igger a hang on a machine with SMP kernel. fix it. 2004-07-21 21:41 jaltman * src/WINNT/client_osi/osilog.c, doc/txt/winnotes/registry.txt: DELTA trace-logging-20040721 AUTHOR jaltman@mit.edu TraceLogging is supposed to be activated for different purposes with bit flags. The osi log and afslogon both used the same bit flag. Bit 0 is now for afslogon; and Bit 1 is for osi log. 2004-07-21 16:08 jaltman * src/WINNT/afsd/smb3.c: DELTA cifs-rap-20040721 AUTHOR jaltman@mit.edu Fix smb_ReceiveRAPNetShareEnum to report the correct buffer size to the client 2004-07-21 14:05 jaltman * doc/txt/winnotes/afs-changes-since-1.2.txt, doc/txt/winnotes/afs-install-notes.txt, doc/txt/winnotes/registry.txt, src/WINNT/afsd/afslogon.c, src/WINNT/afsd/cm_config.c, src/WINNT/afsd/cm_config.h, src/WINNT/afsd/smb3.c, src/WINNT/afsreg/afsreg.h, src/WINNT/afsreg/afssw.c, src/WINNT/afsreg/afssw.h, src/WINNT/client_config/cellservdb.c, src/auth/cellconfig.c: DELTA registry-docs-logoff-20040721 AUTHOR jaltman@mit.edu * Update Windows Notes files * Modify logoff procedure to use a pioctl to check if an arbitrary path exists within AFS * Add a new registry value HKLM\Software\OpenAFS\Client CellServDBDir which can be used to locate the CellServDB file in an arbitrary directory 2004-07-21 05:27 jaltman * src/WINNT/afsd/: NTMakefile, afslogon.c, smb.c: DELTA afslogon-20040720 AUTHOR jaltman@mit.edu Do not release the AFS Tokens at logoff if the user's profile was loaded from AFS. In this case we must keep the AFS tokens because we have no idea how long writing back the profile might take. 2004-07-21 04:43 jaltman * src/WINNT/afsd/: smb.c, smb.h, smb3.c, smb3.h: DELTA smb-rap-20040720 AUTHOR asanka@mit.edu Add CIFS RAP support to the SMB server. This allows AFS to be queried with NetGetShareInfo, NetGetServerInfo, etc. This allows the AFS SMB server to be browsed using NET VIEW. 2004-07-20 15:49 jaltman * src/WINNT/client_creds/: creds.cpp, creds.cpp: DELTA user-auth-cell-20040720 AUTHOR jaltman@mit.edu remember to return the authentication cell name if found 2004-07-20 15:48 jaltman * src/WINNT/afsd/smb.c: DELTA submounts-20040720 AUTHOR jaltman@mit.edu fix submount extraction from registry 2004-07-20 14:36 jaltman * src/WINNT/afsd/: afsd.h, afsshare.c, smb.c: DELTA submounts-20040720 AUTHOR jaltman@mit.edu Fix afsshare.c to strip the MountRoot off the afs-path before inserting into the registry Fix smb.c to read the submounts out of the registry. 2004-07-20 05:16 jaltman * src/WINNT/afsd/afsshare.c: DELTA afsshare-20040719 AUTHOR jaltman@mit.edu correct off by one error 2004-07-19 22:40 jaltman * src/WINNT/afsd/: cm_cell.c, smb_ioctl.h: DELTA ioctl-freelance-20040719 AUTHOR jaltman@mit.edu Do not perform a Cell Search when the name matches the SMB IOCTL filename. This is a special name and is not to be treated as a cell. The failure to find the name produces DNS queries as well as disk access. 2004-07-19 15:25 shadow * src/lwp/fasttime.c: DELTA pthread-ft-approxtime-is-time-20040719 AUTHOR shadow@dementia.org FIXES for tvolser most code paths simply never result in time being updated. seems dangerous. 2004-07-19 15:22 shadow * src/afs/LINUX/osi_vnodeops.c: DELTA fstrace-avoid-double-glock-in-dentry-code-during-fstrace-20040719 AUTHOR shadow@dementia.org FIXES fstracing on a linux machine and trying to fs flush a file in the cache would trigger a hang on a machine with SMP kernel. fix it. 2004-07-19 14:39 jaltman * src/: vol/fssync.c, rx/rx_globals.c, rx/rx_lwp.c: DELTA win32-fd_set-20040719 AUTHOR jaltman@mit.edu Make sure that we do not alter the FD_SETSIZE on Windows. On Windows this is an array of FD_SETSIZE. FD_SETSIZE does not define the maximum socket handle value. 2004-07-16 04:49 jaltman * doc/txt/winnotes/registry.txt: DELTA registry-20040715 AUTHOR asanka@mit.edu Description of new afslogon functionality 2004-07-16 04:40 jaltman * src/WINNT/afsd/: afslogon.c, afslogon.h, logon_ad.cpp: DELTA strsafe-20040715 AUTHOR asanka@mit.edu String Safety fixes 2004-07-16 03:56 jaltman * src/: WINNT/afsd/NTMakefile, WINNT/install/wix/NTMakefile, bucoord/NTMakefile, budb/NTMakefile, butc/NTMakefile, libafsrpc/NTMakefile, rx/test/NTMakefile, tbutc/NTMakefile: DELTA ntmakefile-20040715 AUTHOR jaltman@mit.edu Updated makefiles to avoid macro redefinitions and add new files to src/WINNT/afsd 2004-07-16 03:48 jaltman * src/WINNT/afsd/logon_ad.cpp: DELTA afslogon-20040715 AUTHOR asanka@mit.edu New file for AD logon processing routines. 2004-07-16 03:38 jaltman * doc/txt/winnotes/registry.txt, src/WINNT/afsd/afslogon.c, src/WINNT/afsd/afslogon.h, src/WINNT/afsd/cm_ioctl.c, src/WINNT/afsd/smb3.c, src/WINNT/client_cpa/afs_cpa_stub.rc, src/WINNT/client_cpa/cpl_interface.cpp, src/WINNT/client_creds/afswiz.cpp, src/WINNT/client_creds/creds.cpp, src/WINNT/client_exp/stdafx.h, src/WINNT/install/NSIS/CellServDB, src/WINNT/install/loopback/loopbackutils.cpp, src/WINNT/install/wix/CellServDB, src/WINNT/install/wix/feature.wxi, src/WINNT/install/wix/files.wxi, src/WINNT/install/wix/property.wxi, src/WINNT/install/wix/registry.wxi, src/util/errmap_nt.h: DELTA afslogon-wix-cleanup-20040715 AUTHOR jaltman@mit.edu - Fix NTMakefiles in many directories to define WIN32_LEAN_AND_MEAN NOGDI to avoid macro redefinitions - update text files - add "authentication cell" registry value for afscreds.exe From asanka@mit.edu: Network provider : - If the user is logging into an AD domain, then look up the user's profile path, find out which cell it's in and then authenticate to that cell instead of the default cell. - Domain specific registry keys - A few fixes for handling UNICODE_STRINGs smb3.c : - Delete partial security context during negotiation client_cpa : - As per the SDK which says we must handle CPL_INQUIRE message, we do. Also fixes a small bug where the icon isn't properly set when viewing the Control Panel folder. loopbackutils.cpp - Don't bother setting the app data template, because we are setting it in the MSI anyway. install/wix/NTMakefile - Add a configurable symbol AFSDEV_AUXWIXDEFINES which can be used to customize a build of the msi. install/wix - Move afslogon.dll to SYSTEM32 directory - Add registry keys to support WinLogon notifications. - Rename afsdcell.ini to CellServDB and move it to the client directory. - If there's already an afsdcell.ini in the Windows directory, copy that over to the client directory instead. - Add descriptions to AFS client and server services 2004-07-15 16:26 jaltman * doc/txt/winnotes/: afs-changes-since-1.2.txt, afs-install-notes.txt, afs-issues.txt, registry.txt: DELTA winnotes-20040715 AUTHOR jaltman@mit.edu Update Windows note files with the latest changes. 2004-07-15 06:53 jaltman * src/WINNT/install/NSIS/OpenAFS.nsi: DELTA nsis-installer-20040714 AUTHOR jaltman@mit.edu Move afs_cpa.cpl control panel to the OpenAFS\Client\Program directory and register it in the registry via the HKLM\Software\Microsoft\Windows\CurrentVersion\Control Panel\Cpls\ key. 2004-07-15 05:24 jaltman * src/WINNT/install/NSIS/: CellServDB, OpenAFS.nsi, afsdcell.ini: DELTA nsis-20040714 AUTHOR jaltman@mit.edu Rename afsdcell.ini to CellServDB Add Winlogon Event Notification support Move afslogon.dll to %WINDIR%\System32 2004-07-15 05:22 jaltman * src/WINNT/client_config/: NTMakefile, cellservdb.c: DELTA cellservdb-20040714 AUTHOR jaltman@mit.edu Search for the CellServDB in the OpenAFS client install directory not in the %WINDIR% directory 2004-07-15 05:20 jaltman * src/WINNT/afsd/: afslogon.c, afslogon.def, smb3.c: DELTA afslogon-20040714 AUTHOR jaltman@mit.edu Add a Winlogon Event Notification handler to afslogon.dll to process Logoff events. Upon Logoff call ktc_ForgetAllTokens() on behalf of the logged off user. Fix a filename wildcard matching error introduced a few versions back. 2004-07-14 06:34 jaltman * src/WINNT/afsd/cm_server.c: DELTA incorrect-level-of-indirection-20040713 AUTHOR jaltman@mit.edu When freeing a server_t, do not indirect to GC the connections 2004-07-14 06:12 jaltman * README-NT: DELTA xp-sp2-icf-20040713 AUTHOR jaltman@mit.edu For the XP SP2 SDK both the Core and Data Access SDKs are required 2004-07-14 06:00 jaltman * README-NT, src/WINNT/afsd/NTMakefile, src/WINNT/afsd/afsd_init.c, src/WINNT/afsd/afsicf.cpp, src/WINNT/afsd/afsicf.h, src/WINNT/afsd/lanahelper.cpp, src/WINNT/afsd/lanahelper.h, src/WINNT/bosctlsvc/NTMakefile, src/WINNT/bosctlsvc/bosctlsvc.c: DELTA xp-sp2-icf-20040713 AUTHOR asanka@mit.edu Windows XP SP2 adds a firewall which blocks all incoming ports by default. This patch adds support to the AFS Client Service (but not the AFS Server) to automatically open the firewall to ports in use by the application. One of the new requirements of this functionality is the use of the latest Platform SDK "Microsoft Platform SDK for Windows XP SP2". 2004-07-14 04:46 shadow * src/butc/butc_xbsa.c: DELTA butc-xbsa-20040714 AUTHOR hans-gunther.borrmann@rz.uni-freiburg.de FIXES 5827 update for xbsa 5 2004-07-14 04:34 shadow * src/afs/LINUX/osi_vnodeops.c: DELTA glock-kernel-lock-ordering-20040714 AUTHOR chas@cmf.nrl.navy.mil FIXES 5836 make lock order consistent some routines have kernel lock held when entered, so... 2004-07-14 04:21 shadow * src/afs/afs_vcache.c: DELTA fix-fstrace-for-linux-20040714 AUTHOR chas@cmf.nrl.navy.mil FIXES 5835 don't deadlock when flushing dcache children 2004-07-14 04:14 shadow * src/afs/LINUX/osi_alloc.c: DELTA linux-free-dont-drop-alloc-sem-20040714 AUTHOR chas@cmf.nrl.navy.mil FIXES 5831 dropping semaphore not needed, so don't 2004-07-14 04:07 shadow * src/afs/LINUX/: osi_machdep.h, osi_machdep.h, osi_groups.c: DELTA linux24-update-20040713 AUTHOR beyond@mmc-startup.com FIXES 5713 make getgroups compile deal with afs_suser(x) and afs_suser() 2004-07-14 03:28 jaltman * src/: WINNT/afs_setup_utils/afs_setup_utils.cpp, WINNT/afs_setup_utils/forceremove.c, WINNT/afsd/afsshare.c, WINNT/afsd/cm_config.c, WINNT/afsd/cm_ioctl.c, WINNT/afsd/fs.c, WINNT/afsd/smb.c, WINNT/client_config/drivemap.cpp, WINNT/client_exp/submounts_dlg.cpp, WINNT/install/NSIS/OpenAFS.nsi, util/dirpath.c, util/dirpath_nt.h: DELTA no-more-ini-files-20040713 AUTHOR jaltman@mit.edu Get rid of all %WINDIR% INI files afs_freelance.ini moved to the HKLM hive SOFTWARE\OpenAFS\Client\Freelance afsdcell.ini moved to the Openafs Client install directory and renamed to CellServDB to match Unix and the Openafs Server. afsdsbmt.ini moved to the registry. Submounts are moved to HKLM hive SOFTWARE\OpenAFS\Client\Submounts. Active Maps and Drive Mappings are moved to the HKCU hive SOFTWARE\OpenAFS\Client\Active Maps and Mappings. CSCPolicy is moved to HKCU hive. afsdns.ini is no longer used. NSIS installer updated to migrate the afsdcell.ini to CellServDB The cm_freelance.ini module has been modified to migrate the afs_freelance.ini data to the registry on first execution. The afsdsbmt.ini file data is not currently being migrated. 2004-07-13 13:09 jaltman * src/WINNT/afsd/: NTMakefile, cm_config.c, cm_freelance.c: DELTA migrate-to-registry-20040713 AUTHOR jaltman@mit.edu * NTMakefile: missing commit from SMB AUTH patches * cm_config.c: obtain location of CellServDB from registry [HKLM\SOFTWARE\OpenAFS\Client] "CellServDB"=reg_sz This will allow us to move from %WINDIR%\afsdcell.ini to C:\Program Files\OpenAFS\Client\CellServDB. This is necessary for compatibility with Terminal Server in which applications are not given access to %WINDIR%. * cm_freelance.c: migrate freelance mount point data from %WINDIR%\afs_freelance.ini to the registry [HKLM\SOFTWARE\OpenAFS\Client\Freelance] Each value, whose name is unimportant, contains one mount point entry. After the first execution of this code, the current data in afs_freelance.ini will be moved to the registry and then all subsequent data access will be performed via the registry. The afs_freelance.ini file will be deleted after the migration has occurred. 2004-07-13 06:22 jaltman * src/WINNT/afsd/afsd_init.c: DELTA ntlm-back-connection-hostnames-20040713 AUTHOR jaltman@mit.edu Add function configureBackConnectionHostNames(void) On Windows XP SP2, Windows 2003 SP1, and all future Windows operating systems there is a restriction on the use of SMB authentication on loopback connections. There are two work arounds available: (1) We can disable the check for matching host names. This does not require a reboot: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "DisableLoopbackCheck"=dword:00000001 (2) We can add the AFS SMB/CIFS service name to an approved list. This does require a reboot: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0] "BackConnectionHostNames"=multi-sz The algorithm will be: Check to see if cm_NetbiosName exists in the BackConnectionHostNames list If not, add it to the list. (This will not take effect until the next reboot.) and check to see if DisableLoopbackCheck is set. If not set, set the DisableLoopbackCheck value to 0x1 and create HKLM\SOFTWARE\OpenAFS\Client UnsetDisableLoopbackCheck else If cm_NetbiosName exists in the BackConnectionHostNames list, check for the UnsetDisableLoopbackCheck value. If set, set the DisableLoopbackCheck flag to 0x0 and delete the UnsetDisableLoopbackCheck value 2004-07-13 06:08 shadow * doc/html/AdminReference/auarf234.htm: DELTA admin-doc-sysname-20040713 AUTHOR shadow@dementia.org FIXES 4054 update docs to reflect sys being static. 2004-07-13 06:01 shadow * src/afs/LINUX/: osi_groups.c, osi_machdep.h: DELTA linux24-update-20040713 AUTHOR beyond@mmc-startup.com FIXES 5713 make getgroups compile deal with afs_suser(x) and afs_suser() 2004-07-13 05:52 shadow * Makefile.in, src/butc/Makefile.in, src/butc/butc_xbsa.c, src/butc/tcprocs.c: DELTA butc-xbsa-20040713 AUTHOR hans-gunther.borrmann@rz.uni-freiburg.de FIXES 5761 update for butc xbsa support 2004-07-13 05:49 shadow * src/venus/kdump.c: DELTA kdump-linux-26-20040713 AUTHOR rainer.schoepf@proteosys.com FIXES 5814 update kdump for linux 2.6 2004-07-13 05:45 shadow * src/afs/afs_call.c: DELTA afs-cold-shutdown-20040713 AUTHOR rainer.schoepf@proteosys.com FIXES 5768 use correct syscall parm for cold shutdown 2004-07-11 21:22 jaltman * doc/txt/winnotes/afs-install-notes.txt, doc/txt/winnotes/registry.txt, src/WINNT/afsd/afsd_init.c, src/WINNT/afsd/afskfw.c, src/WINNT/afsd/cm.h, src/WINNT/afsd/smb.c, src/WINNT/afsd/smb.h, src/WINNT/afsd/smb3.c, src/WINNT/afsd/smb3.h, src/WINNT/install/NSIS/AFSCell.ini, src/WINNT/install/NSIS/OpenAFS.nsi, src/config/NTMakefile.i386_nt40, src/rxkad/rxkad.p.h: DELTA smb-auth-20040711 AUTHOR jaltman@mit.edu Over last several years significant efforts have been made to work around the inability to protect user tokens from use by inappropriate entities. The tokens are associated with a given userid and session by a combination of an SMB based ioctl and an authenticated/encrypted RPC. This has opened the door for tokens to be borrowed by other users if they could connect to the same SMB server with the identical userid. This was trivially possible because the SMB connections were unauthenticated. This patch adds two forms of authenticated SMB connections: NTLM and Extended Security (aka GSS SPNEGO). By default Extended Security mode is used. This patch has been tested on 2000 workstation, 2000 server, XP SP1, and 2003 Server, and XP SP2 RC2. The Extended Security works on all platforms except for XP SP2 RC2 regards of whether or not the machine is part of a domain or not; and whether or not a local or domain account is used. On XP SP2 RC2, attempts to use negotiate Extended Security result in a Logon Denied error from AcceptSecurityContext() and a substatus code of 0x7C90486A is logged to the Security Event log via the NTLM SSP. The SMB AUTH NTLM mode succeeds on XP SP2 RC2. Disabling SMB Authentication or specifying the use of NTLM mode may be done via the registry. Value : smbAuthType Type : DWORD {0..2} Default : 2 If this value is specified, it defines the type of SMB authentication which must be present in order for the Windows SMB client to connect to the AFS Client Service's SMB server. The values are: 0 = No authentication required 1 = NTLM authentication required 2 = Extended (GSS SPNEGO) authentication required The default is Extended authentication 2004-07-11 20:56 jaltman * src/WINNT/afsd/afslogon.c: DELTA unicode-strings-20040711 AUTHOR jaltman@mit.edu UNICODE_STRING buffers are measured by their length field; do not assume they are nul terminated 2004-07-08 14:45 jaltman * doc/txt/winnotes/registry.txt: DELTA winnotes-registry-20040708 AUTHOR jaltman@mit.edu Add descriptions of Global Drive Mappings; MaxCPUs, and Environment Variables 2004-07-08 13:25 jaltman * src/WINNT/aklog/aklog.c: DELTA aklog-uninitialized-variable-20040708 AUTHOR jaltman@mit.edu make sure that the krb5_context is initialized to 0. Otherwise, we might try to free it. 2004-07-08 13:24 jaltman * src/auth/ktc_nt.c: DELTA local-rpc-20040708 AUTHOR jaltman@mit.edu change the default RPC type from "ncacn_np" to "ncalrpc" This says to use local rpc instead of named pipes from the client to the server. Named pipes can still be used by specifying the "AFS_RPC_PROTSEQ" environment variable. 2004-07-08 05:35 shadow * src/: sys/afssyscalls.c, config/afs_args.h: DELTA openafs-for-arla-20040708 AUTHOR lha@stacken.kth.se FIXES 5490 allow use of openafs binaries with arla's linux 2.6 support 2004-07-08 05:23 shadow * src/rx/SOLARIS/rx_knet.c: DELTA solaris10-20040624 AUTHOR tron@NetBSD.org FIXES 5396 this should be the correct way to give up the socket on all solaris versions 2004-07-08 05:19 shadow * src/lwp/Makefile.in: DELTA solaris10-20040624 AUTHOR kvanhees@sinenomine.net FIXES 5396 as substantially done by Jeff Woodward , work diffed out and slightly rewritten 2004-07-08 05:16 shadow * src/: vol/fssync.c, lwp/iomgr.c, rx/rx_globals.c, rx/rx_lwp.c: DELTA rx-lwp-fdsetsize-20040708 AUTHOR jhutz@cmu.edu FIXES 5615 limit our fd set size so we don't "lose" fds. 2004-07-08 05:11 shadow * src/lwp/lwp.c: DELTA lwp-track-qwaiting-20040708 AUTHOR jhutz@cmu.edu FIXES 5616 track qwaiting lwps rather than potentially leaking them 2004-07-08 04:52 shadow * src/afsd/afsd.c: DELTA afsd-bitch-about-xfs-not-about-dir-for-memcache-20040708 AUTHOR rainer.schoepf@proteosys.com FIXES 5728 make afsd complain if cache partition is linux don't complain if no cachedir and we're -memcache. 2004-07-01 08:00 jaltman * src/WINNT/afsd/cm_cell.c: DELTA dns-fix-20040630 AUTHOR jaltman@mit.edu Fix the dns portion of cm_GetCell() to prevent against a NULL pointer dereference when the ttl expired. 2004-06-28 16:33 jaltman * src/WINNT/client_creds/credstab.cpp: DELTA afscreds-aklog-only-20040626 AUTHOR jaltman@mit.edu Modify the Obtain Tokens dialog to allow a blank password if a full principal name is provided. (for aklog only requests) 2004-06-28 16:29 jaltman * src/WINNT/afsd/: cm_freelance.c, cm_freelance.h, cm_ioctl.c, cm_vnodeops.c: DELTA freelance-rw-mounts-20040626 AUTHOR jaltman@mit.edu Extend Freelance code to support r/w mount points in the fake root.afs volume 2004-06-28 16:28 jaltman * src/WINNT/afsd/afskfw.c: DELTA afskfw-aklog-only-20040626 AUTHOR jaltman@mit.edu If no password is specified, perform aklog only using the provided principal name 2004-06-25 21:18 jaltman * doc/txt/winnotes/registry.txt: DELTA maxcpus-20040625 AUTHOR jaltman@mit.edu Add documentation on MaxCPUs entry. 2004-06-25 19:48 jaltman * src/WINNT/afsd/afsd_init.c: DELTA hyperthreading-bad-20040625 AUTHOR jaltman@mit.edu Give folks an option of running afsd_service.exe on fewer processors than are installed in the machine. A new registry value TransarcAfsDaemon/Parameters MaxCPUs allows a restriction to be applied. Set to 1 to use a single CPU (or hyperthreading instance) The restriction is applied with SetProcessAffinityMask()