From 6a643ba40a75ed0a03ddf6986eb6bdd485335f6d Mon Sep 17 00:00:00 2001 From: Jeffrey Altman Date: Mon, 3 Oct 2005 03:17:56 +0000 Subject: [PATCH] windows-release-notes-20051002 Document registry entries for RX stats gathering --- .../en_US/html/ReleaseNotes/relnotes.htm | 651 +++++++++--------- .../ReleaseNotes/relnotes_files/preview.wmf | Bin 15482 -> 15480 bytes 2 files changed, 337 insertions(+), 314 deletions(-) diff --git a/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm b/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm index 7465239a4..e3ffd1789 100644 --- a/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm +++ b/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm @@ -36,19 +36,19 @@ xmlns="http://www.w3.org/TR/REC-html40"> Jeffrey Altman OpenAFS 1.4.0 Jeffrey Altman - 3 - 39 + 4 + 44 2005-09-26T23:55:00Z 2005-09-25T20:12:00Z - 2005-09-27T00:33:00Z + 2005-10-03T00:31:00Z 1 - 14488 - 82584 + 14557 + 82979 Secure Endpoints Inc. - 688 - 193 - 96879 - 11.6408 + 691 + 194 + 97342 + 11.6568 PAGEREF +_Toc115417111 \h 2 PAGEREF _Toc115417114 +\h 141. Installer Options +style='mso-element:field-end'>1. Installer Options

It can be installed either as a new installation or an upgrade from previous versions of OpenAFS for Windows or IBM AFS for @@ -2669,12 +2670,12 @@ style='mso-list:Ignore'>2.   using WiX and can be customized for organizations via the use of MSI Transforms (see MSI Deployment Guide)

-

2. System Requirements

+

2. System Requirements

-

2.1 Supported +

2.1 Supported Operating Systems

style='mso-spacerun:yes'>  The last version with support for Windows NT 4.0 is 1.2.10.

-

2.2 Disk Space

+

2.2 Disk Space

Up to 60mb required for the OpenAFS binaries plus 100MB for the default AFSCache file.   (The size of the AFSCache file may be adjusted via the Registry after installation.)

-

2.3 Additional +

2.3 Additional Software

MIT Kerberos for Windows 2.6.x if Kerberos 5 authentication support is desired.

-

3. Operational Notes

+

3. Operational Notes

-

3.1. Requirements +

3.1. Requirements for Kerberos 5 Authentication

The Kerberos 4 infrastructure on which the OpenAFS 1.2 @@ -2880,8 +2881,8 @@ style='mso-element:field-begin'> XE "krb524"

-

3.2. Use of the +

3.2. Use of the Microsoft Loopback Adapter

By itself the OpenAFS Client Service does not provide robust @@ -2905,9 +2906,9 @@ when the machine is disconnected from the network.  If the MLA is bound to "File and Printer Sharing ..." there will be a service type collision between the name "AFS" and the name of the machine on the MLA's IP Address that will -result in the OpenAFS client service becoming inaccessible and the "NET VIEW -\\AFS" command will return a "System Error 52" message.  To correct the problem:

+result in the OpenAFS client service becoming inaccessible and the "NET +VIEW \\AFS" command will return a "System Error 52" +message.  To correct the problem:

When the MLA is not installed the unique NETBIOS name published by OpenAFS SMB server is "MACHINE-AFS".  One of the benefits of using the MLA is that -the NETBIOS name does not have to be published on any adapter other than the MLA.  Therefore the chosen name is no longer -required to be unique.  Instead the -NETBIOS name associated with the AFS Client Service is simply "AFS" -and portable UNC paths of the form \\AFS\cellname\path can now be used on all -machines.

-

3.3. Using +

3.3. Using Freelance (Dynamic Root) Mode to Improve Mobility

Traditionally, when the OpenAFS Client Service starts it @@ -2984,8 +2985,8 @@ OpenAFS Client Service will not successfully start.

To allow the OpenAFS Client Service to operate in these environments, a fake "root.afs" volume is dynamically constructed from mount points and symlinks stored in the local registry.  This method of operation is referred to as Freelance -mode.

+style='mso-spacerun:yes'>  This method of operation is referred to as +Freelance mode.

The content of the fake “root.afs” volume is dynamically modified as cells are accessed.  When the @@ -3015,7 +3016,8 @@ points may be removed using the "fs rmmount" command.

>fs rmmount \\AFS\athena.mit.edu

-

>fs rmmount \\AFS\.athena.mit.edu

+

>fs rmmount +\\AFS\.athena.mit.edu

Symlinks may also be created within the Freelance “root.afs” volume.

@@ -3051,8 +3053,8 @@ style='mso-spacerun:yes'> style='mso-element:field-end'> 

-

3.4. Locating AFS +

3.4. Locating AFS Volume Database Servers

The OpenAFS for Windows client will use DNS AFSDB records to @@ -3065,8 +3067,8 @@ style='mso-element:field-begin'> XE "afsdb"

-

3.5. Obtaining +

3.5. Obtaining AFS Tokens as a Part of Windows Logon

OpenAFS for Windows installs a WinLogon Network Provider to @@ -3093,8 +3095,8 @@ obtained during the process of generating AFS tokens are preserved and stored into the default ccache within the user logon session.

Integrated Logon does not have the ability to cache the -user's username and password for the purpose of obtaining tokens if the -Kerberos KDC is inaccessible at logon time.

+user's username and password for the purpose of obtaining tokens if the Kerberos +KDC is inaccessible at logon time.

Integrated Login supports the ability to obtain tokens for multiple cells.  For further information @@ -3104,8 +3106,8 @@ href="#_Appendix_A:_Registry_Values">Appendix A.

-

3.6. AFS System +

3.6. AFS System Tray Command Line Options

The AFS System Tray tool (afscreds.exe) supports several @@ -3147,12 +3149,12 @@ drives

autoinit will result in automated attempts to acquire AFS tokens when afscreds.exe is started.  -afscreds.exe will attempt to utilize tickets stored in the MSLSA -credentials cache; any existing CCAPI credentials cache; and finally display an -Obtain Tokens dialog to the user.  When -used in combination with IP address change detection, afscreds.exe will attempt -to acquire AFS tokens whenever the IP address list changes and the Kerberos KDC -is accessible.

+afscreds.exe will attempt to utilize tickets stored in the MSLSA credentials +cache; any existing CCAPI credentials cache; and finally display an Obtain +Tokens dialog to the user.  When used in +combination with IP address change detection, afscreds.exe will attempt to +acquire AFS tokens whenever the IP address list changes and the Kerberos KDC is +accessible.

The renew drive maps option is used to ensure that the user drive maps constructed via the OpenAFS tools (not NET USE) are re-constructed @@ -3169,8 +3171,8 @@ href="#_Appendix_A:_Registry_Values">Appendix A.

-

3.7. The “AFS +

3.7. The “AFS Client Admins” Authorization Group

The OpenAFS for Windows 1.4 client supports a local Windows @@ -3250,9 +3252,9 @@ style='font-size:9.0pt;font-family:Symbol;mso-fareast-font-family:Symbol; mso-bidi-font-family:Symbol'>·       trace

-

The creation or removal of mount points and symlinks in the Freelance -“root.afs” volume are also restricted to members of the “AFS Client Admins” -group.

+

The creation or removal of mount points and symlinks in the +Freelance “root.afs” volume are also restricted to members of the “AFS Client +Admins” group.

The initial membership of the "AFS Client Admins" group when created by the installer is equivalent to the local @@ -3274,8 +3276,8 @@ style='mso-element:field-begin'> XE "fs.exe"

-

3.8. OpenAFS +

3.8. OpenAFS support for UNC paths

The OpenAFS 1.4 client supports UNC paths everywhere. XE "4nt.exe"

-

3.9. OpenAFS +

3.9. OpenAFS includes aklog.exe

The OpenAFS 1.4 Client ships with its own version of @@ -3319,8 +3321,8 @@ tokens

Usage: aklog [-d] [[-cell | -c] cell [-k krb_realm]]

-

             -[[-p | -path] pathname]

+

             [[-p +| -path] pathname]

             [-noprdb] [-force]

@@ -3330,8 +3332,8 @@ tokens

 

-

   -d = output debugging information.

+

   -d = output +debugging information.

   cell = zero or more cells for which tokens will be obtained

@@ -3345,17 +3347,16 @@ the directory for which authentication is required

   -noprdb = don't try to determine AFS ID.

-

   -5 or -4 = use Kerberos V (default) or -Kerberos IV tickets

+

   -5 or -4 = +use Kerberos V (default) or Kerberos IV tickets

   -m = use krb524d to convert Kerberos V tickets to Kerberos IV

-

3.10. OpenAFS +

3.10. OpenAFS Servers on Windows are Unsupported

The AFS Server functionality provided with OpenAFS 1.4 might @@ -3387,8 +3388,8 @@ MIT Kerberos for Windows should not be installed or must be disabled.

-

3.11. OpenAFS +

3.11. OpenAFS Debugging Symbol files

The OpenAFS for Windows installers now include Debugging @@ -3421,30 +3422,30 @@ additional debug statements were compiled into the binaries

-

3.12. Maximum +

3.12. Maximum File Size is 2GB

OpenAFS for Windows does not support files larger than 2GB.  The version of the SMB/CIFS protocol implemented imposes this limitation.  -Upgrading the SMB/CIFS implementation or replacing it with an -Installable File System will allow larger files to be supported.

-

3.13. Encrypted +

3.13. Encrypted AFS File Access

The OpenAFS for Windows installer by default activates a -weak form of encrypted data transfer between the AFS client and the AFS -servers.  This is often referred to as +weak form of encrypted data transfer between the AFS client and the AFS servers.  This is often referred to as "fcrypt" mode.

-

3.14. Authenticated -Access to the OpenAFS Client Service

+

3.14. +Authenticated Access to the OpenAFS Client Service

OpenAFS 1.4 supports authenticated SMB connections using either NTLM or GSS SPNEGO (NTLM).  In @@ -3465,8 +3466,8 @@ authentication mode will be used that does not require access to the user's password.  Instead, Windows will internally recognize the request as coming from a local logon session.

-

3.15. No More INI +

3.15. No More INI Files

Previous AFS clients for Windows stored configuration data @@ -3486,8 +3487,8 @@ file to the new CellServDB file. Windows registry.   OpenAFS 1.4 will not process the contents of the “afsddbmt.ini”.

-

3.16. Microsoft +

3.16. Microsoft Windows Internet Connection Firewall

The OpenAFS 1.4 Client is compatible with the Internet @@ -3498,9 +3499,9 @@ the AFS file server. appropriate Back Connection registry entries are added to allow SMB authentication to be performed across the Microsoft Loopback Adapter.

-

3.17. Browsing -AFS from the Explorer Shell and Office

+

3.17. Browsing AFS +from the Explorer Shell and Office

The OpenAFS 1.4 Client Service implements the CIFS Remote Admin Protocol which allows Explorer to browse server and share information. @@ -3519,13 +3520,13 @@ Locking

Many applications on Windows (e.g. Microsoft Office) require the use of byte range locks applied to a file either to protect against simultaneous file access or as a signaling mechanism.   OpenAFS does not currently support byte range -locks.   It is strongly recommended that -files not be edited within AFS if they might be accessed by multiple users or -multiple processes on a single machine.

+style='mso-spacerun:yes'>   OpenAFS does not currently support byte +range locks.   It is strongly recommended +that files not be edited within AFS if they might be accessed by multiple users +or multiple processes on a single machine.

-

3.19. Automatic +

3.19. Automatic Discarding of AFS Tokens at Logoff

OpenAFS 1.4 will automatically forget a user's tokens upon @@ -3542,8 +3543,8 @@ style='mso-bidi-font-style:italic'>Logo registry value can be used. (see Appendix A.)

-

3.20. Terminal +

3.20. Terminal Server installations

When installing the NSIS (.exe) installer under Terminal @@ -3552,8 +3553,8 @@ Panel. AFS not running properly.  The AFS Server should not be installed on a machine with Terminal Server installed.

-

3.21. Hidden Dot +

3.21. Hidden Dot Files

AFS is a UNIX native file system. automatically given the Hidden attribute so they will not normally be displayed.

-

3.22. Status +

3.22. Status Cache Limits

The Status Cache (AFS Configuration Control Panel: Advanced @@ -3575,26 +3576,26 @@ style='mso-spacerun:yes'> allocated, entries will begin to be reused according to a least recently used (LRU) algorithm.  If the number of files or directories being accessed repeatedly by your applications is greater then -the maximum number of entries, your host will begin to experience thrashing of the -Status Cache and all requests will result in network operations.

+the maximum number of entries, your host will begin to experience thrashing of +the Status Cache and all requests will result in network operations.

If you are experiencing poor performance try increasing the maximum number of Status Cache entries.  Each entry requires approximately 1.2K.  In OpenAFS 1.4, the default number of Status Cache entries is 10,000.

-

3.23. NETBIOS +

3.23. NETBIOS over TCP/IP must be enabled

"Netbios over TCP/IP" must be active on the machine in order for communication with the AFS Client Service to succeed.  If "Netbios over TCP/IP" is -disabled on the machine, then communication with the AFS Client Service will be +style='mso-spacerun:yes'>  If "Netbios over TCP/IP" is disabled +on the machine, then communication with the AFS Client Service will be impossible.

-

3.24. OpenAFS +

3.24. OpenAFS binaries are digitally signed

The OpenAFS Client Service and related binaries distributed @@ -3614,8 +3615,8 @@ documents the "VerifyServiceSi registry value which can be used to disable the signature check.  The file version check cannot be disabled.

-

3.25. Maximum +

3.25. Maximum Size of the AFSCache File

The maximum cache size is approximately 1.3GB. -

3.26. Filename +

3.26. Filename Character Sets

OpenAFS for Windows implements an SMB server which is used @@ -3685,11 +3686,11 @@ characters:

08/06  206  86  a ring

-

     [ç]  - 135  08/07  207  - 87  c cedilla

+

     [ç]  135  + 08/07  207  87  c + cedilla

     [ê]  136  08/08  210 style='mso-spacerun:yes'>  92  AE diphthong

     [ô]  147  09/03  - 223  93  o circumflex

+ style='mso-spacerun:yes'>  147  + 09/03  223  93  o + circumflex

     [ö]  148  09/04  224 -

3.27. Known +

3.27. Known Character Set Issues with Roaming Profiles

There is a known issue with storing Windows Roaming Profiles -when the profile contains either directories or files with names which cannot -be represented in the local OEM character set.  +when the profile contains either directories or files with names which cannot be +represented in the local OEM character set.  In this case, attempts to write the profile back to AFS will fail.  OpenAFS for Windows does not currently support UNICODE.  To avoid this problem some sites run logoff scripts (assigned by group policy) which rename all files to use only the supported characters for the locale.

-

3.28. The +

3.28. The AFSCache File

The AFS Cache file is stored by default at %TEMP%\AFSCache @@ -3857,8 +3858,8 @@ compressed and should consist of as few fragments as possible.   Significant performance gains can be achieved by defragmenting the AFSCache file with Sysinternal's Contig utility.

-

3.29. Restricting +

3.29. Restricting OpenAFS Client Service Start and Stop

A new command line tool, afsdacl.exe, can be used to @@ -3884,8 +3885,8 @@ afsdacl [-set | -reset] [-show]

          -show  : Show current DACL (SDSF)

-

3.30. The @sys +

3.30. The @sys Name List

The default @sys name list in OpenAFS 1.4 is set to @@ -3894,8 +3895,8 @@ style='mso-spacerun:yes'> "ia64_win64" and "amd64_win64" for amd 64-bit processors when those platforms are supported.

-

3.31. Symlinks to +

3.31. Symlinks to AFS UNC paths

In OpenAFS 1.4, symlinks to AFS UNC paths, \\AFS[\all]\..., @@ -3903,8 +3904,8 @@ are treated the same as symlinks to /afs/... However, please use /afs/... as the Windows UNC form will not work on UNIX.

-

3.32. Cache +

3.32. Cache Manager Debugging Now Supported

OpenAFS for Windows 1.4 implements the Cache Manager @@ -3920,24 +3921,24 @@ can be queried with cmdebug.exe.

Where: -long   print all info

-

       -addrs  print only host interfaces

+

       +-addrs  print only host interfaces

       -cache  print only cache configuration

-

3.33. Windows +

3.33. Windows Logon Caching vs. Kerberos Logons

If you are a site which utilizes MIT/Heimdal Kerberos -principals to logon to Windows via a cross-realm relationship with a multi-domain -Windows forest, you must enable Windows logon caching unless the workstation is -Windows Vista Beta 1 or later.

+principals to logon to Windows via a cross-realm relationship with a +multi-domain Windows forest, you must enable Windows logon caching unless the +workstation is Windows Vista Beta 1 or later.

-

3.34. Initial +

3.34. Initial Server Preferences

VLDB and File Server Preferences can now be provided initial @@ -3947,14 +3948,14 @@ useful for managed machines in a Windows domain which are centrally located href="#_Appendix_A:_Registry_Values">Appendix A for details on the "Server Preferences" keys.

-

3.35. File +

3.35. File Timestamps

OpenAFS 1.4 reports timestamps on files stored in AFS in UTC all year round.  In locales with daylight savings time, previous versions of AFS for Windows reported the time when DST -is active as UTC+1.  This was done to +is active as UTC+1.  This was done to preserve the relative local time for the user.  A file stored at 11:00am EST in January would be reported as having been stored at 11:00am EDT in June.  @@ -3973,8 +3974,8 @@ timestamp from the Windows explorer. During DST, these two times will no longer agree even though they are in fact representing the same moment in time.

-

3.36. Windows RPC +

3.36. Windows RPC client support must be installed

If the installer refuses to install and complains about an @@ -3993,8 +3994,8 @@ are present and that they refer to the dll "rpcrt4.dll":

   HKLM "SOFTWARE\Microsoft\RPC\ClientProtocols" "ncacn_http"

-

3.37. Generating +

3.37. Generating Minidumps of the OpenAFS Client Service

OpenAFS 1.4 adds a new command, "fs @@ -4004,8 +4005,8 @@ afsd_service.exe process. can be very helpful when debugging the AFS Client Service when it is unresponsive to SMB/CIFS requests.

-

3.38. AFS Client +

3.38. AFS Client Universally Unique Identifiers

The OpenAFS for Windows 1.4 client implements Universally @@ -4019,22 +4020,22 @@ style='mso-spacerun:yes'> client installed, the AFSCache files must be deleted as part of the cloning process.

-

4. How to Debug -Problems with OpenAFS for Windows:

+

4. How to Debug Problems +with OpenAFS for Windows:

OpenAFS for Windows provides a wide range of tools to assist you in debugging problems.  The techniques available to you are varied because of the wide range of issues that have been discovered over the years.

-

4.1. pioctl -debugging (IoctlDebug +

4.1. pioctl debugging +(IoctlDebug registry key)

pioctl (path-based ioctl) calls are used by various tools to @@ -4123,8 +4124,8 @@ style='mso-spacerun:yes'> KnowledgeBase can be used as a reference to help you determine the configuration probem with your system.

-

4.2. afsd_service +

4.2. afsd_service initialization log (%WinDir%\TEMP\afsd_init.log)

Every time the AFS Client Service starts it appends data @@ -4144,11 +4145,11 @@ href="#_Value___:_MaxLogSize">MaxLogSize registry value determines the maximum size of the %WINDIR%\TEMP\afsd_init.log file.  If the file is larger than this value when OpenAFS Client Service starts, the file will be reset to 0 bytes.  If value is set to 0, the file will be -allowed to grow indefinitely.

+style='mso-spacerun:yes'>  If value is set to 0, the file will be allowed +to grow indefinitely.

-

4.3. afsd_service +

4.3. afsd_service debug logs (fs trace {-on, -off, -dump} ->%WinDir%\TEMP\afsd.log)

When attempting to debug the behavior of the SMB/CIFS Server @@ -4159,7 +4160,8 @@ style='mso-spacerun:yes'> any one time is 5000.  This can be adjusted with the registry value:

-

  [HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

+

  [HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

  REG_DWORD  TraceBufferSize

@@ -4169,8 +4171,8 @@ value. to clear to the log and "fs trace -dump" to output the contents of the log to the file.

-

4.4. Using +

4.4. Using SysInternal’s DbgView and FileMon Tools

An alternatve option to the use of "fs trace @@ -4201,8 +4203,8 @@ and the resulting OpenAFS Client Service operations.   The captured data can be stored to files for inclusion in bug reports.

-

4.5. Microsoft +

4.5. Microsoft MiniDumps
(fs minidump -> %WinDir%\TEMP\afsd.dmp)

@@ -4213,8 +4215,8 @@ with access to the source code and a debugger. of a MiniDump file containing the state of all of the threads in the AFS Client Service process.

-

4.6. Single +

4.6. Single Sign-on (Integrated Logon) debugging

If you are having trouble with the Integrated Logon @@ -4232,8 +4234,8 @@ href="#_Value__:_TraceOption">TraceOption registry value:

Event Handlers to log information to the Windows Event Log: Application under the name “AFS Logon".

-

4.7. RX (AFS RPC) +

4.7. RX (AFS RPC) debugging (rxdebug)

The rxdebug.exe tool can be used to query a variety of @@ -4291,8 +4293,8 @@ connections

       -peers           show peers

-

4.8. Cache +

4.8. Cache Manager debugging (cmdebug)

The cmdebug.exe tool can be used to query the state of the @@ -4324,8 +4326,8 @@ interfaces

-cache      print only cache configuration

-

4.9. Persistent +

4.9. Persistent Cache consistency check

The persistent cache is stored in a Hidden System file at @@ -4336,9 +4338,9 @@ being able to start a validation check on the file can be performed.

  afsd_service.exe --validate-cache <cache-path>

-

5. Reporting Bugs:

+

5. Reporting Bugs:

Bug reports should be sent to openafs-bugs@openafs.org.

When reporting a error, please be sure to include the version of OpenAFS.

-

6. How to Contribute to +

6. How to Contribute to the Development of OpenAFS for Windows

Contributions to the development of OpenAFS for Windows are @@ -4457,8 +4459,8 @@ continuously needed. take many forms including cash donations, support contracts, donated developer time, and even donated tech writer time.

-

6.1. The USENIX +

6.1. The USENIX OpenAFS Fund

USENIX, a 501c3 @@ -4580,8 +4582,8 @@ mso-break-type:section-break'>

-

7.1. Introduction

+

7.1. Introduction

A MSI installer option is available for those who wish to use Windows Installer for installing OpenAFS and for organizations that wish to @@ -4685,8 +4687,8 @@ mso-list:l16 level1 lfo28;tab-stops:list 36.0pt'>2.    msitran -a openafs-transform.mst openafs-test.msi

-

and then checking the resulting openafs-test.msi to see if all -changes you have made above to openafs-modified.msi is present in +

and then checking the resulting openafs-test.msi to see if +all changes you have made above to openafs-modified.msi is present in openafs-test.msi.  'msitran' will complain if some modification in the transform can not be successfully applied.

@@ -4694,8 +4696,8 @@ complain if some modification in the transform can not be successfully applied.< the MSI databases directly when editing openafs-modified.msi.  More details are given below.

-

7.2. +

7.2. Configuration Options

The logic necessary to implement many of the settings @@ -4752,8 +4754,8 @@ margin-left:18.0pt;text-indent:-18.0pt;mso-list:l14 level1 lfo30;tab-stops: list 18.0pt'>2.        -Select the 'Property' table from the list of -tables on the left.

+Select the 'Property' table from the list of tables +on the left.

7.2.1.2.2 AFSCreds.exe Properties

These properties are combined to add a command line option to the shortcut that will be created in the Start:Programs:OpenAFS and Start:Programs:Startup folders (see CREDSSTARTUP).  The method of specifying the option was -chosen for easy integration with the Windows Installer user interface.  The method of specifying the option was chosen +for easy integration with the Windows Installer user interface.  Although other methods can be used to specify options to AFSCREDS.EXE, it is advised that they be avoided as transforms including such options may not apply to future releases of OpenAFS.

@@ -4987,12 +4989,11 @@ including such options may not apply to future releases of OpenAFS.

CREDSSTARTUP

Valid values    : - '1' or '0'

+ style='mso-spacerun:yes'>    : '1' or '0'

Controls whether AFSCreds.exe starts up automatically when the user logs on.  - When CREDSSTARTUP is '1' a shortcut is added to the 'Startup' folder - in the 'Program menu' which starts AFSCREDS.EXE with the options that are + When CREDSSTARTUP is '1' a shortcut is added to the 'Startup' folder in + the 'Program menu' which starts AFSCREDS.EXE with the options that are determined by the other CREDS* properties.

@@ -5218,10 +5219,9 @@ the following :

-

Note that the ComponentId is an -uppercase GUID.  You can generate one -using GUIDGEN.EXE or UUIDGEN.EXE, both of which are included in the Platform -SDK.

+

Note that the ComponentId is an uppercase +GUID.  You can generate one using +GUIDGEN.EXE or UUIDGEN.EXE, both of which are included in the Platform SDK.

The Attributes value of 144 is a sum of msidbComponentAttributesPermanent (16) and @@ -5359,19 +5359,19 @@ a new row (Ctrl-R or 'Tables'->'Add Row') with the following values:

-

It is important to create the new -feature under the 'feaClient' feature, which will ensure that the configuration -file will be installed when the client binaries are installed.

+

It is important to create the +new feature under the 'feaClient' feature, which will ensure that the +configuration file will be installed when the client binaries are installed.

Setting 'Display' to 0 will hide -this feature from the feature selection dialog during an interactive installation.  A value of 30 for 'Level' allows this feature -to be installed by default (on a 'Typical' installation).

+this feature from the feature selection dialog during an interactive +installation.  A value of 30 for 'Level' +allows this feature to be installed by default (on a 'Typical' installation).

The 'Attributes' value is msidbFeatureAttributesDisallowAdvertise (8), which is set on all features in -the OpenAFS MSI.  The OpenAFS MSI is not designed -for an advertised installation.

+the OpenAFS MSI.  The OpenAFS MSI is not +designed for an advertised installation.

The 'Attributes' value is msidbFileAttributesNonCompressed (8192).  -This is because we will be placing this file in the same directory as -the MSI instead of embedding the file in it.  +This is because we will be placing this file in the same directory as the +MSI instead of embedding the file in it.  Transforms do not support updating compressed sources or adding new cabinet streams.

@@ -5586,14 +5586,14 @@ a row with the following values :

                (leave other fields blank)

-

The sequence number of 1000 -designates this as the media source for the newly added file.

+

The sequence number of 1000 designates +this as the media source for the newly added file.

7.2.3.1 Components for Configuration Files

-

CellServDB: 'cpf_CellServDB' -(ID {D5BA4C15-DBEC-4292-91FC-B54C30F24F2A})

+

CellServDB: +'cpf_CellServDB' (ID {D5BA4C15-DBEC-4292-91FC-B54C30F24F2A})

7.2.4 Adding Domain Specific Registry Keys

@@ -5608,8 +5608,8 @@ keys.

    Columns that are unspecified should be left empty.

-

    We create a new -feature and component to hold the new registry keys.

+

    We create a new feature +and component to hold the new registry keys.

@@ -5676,8 +5676,8 @@ feature and component to hold the new registry keys.

@@ -5702,8 +5702,7 @@ feature and component to hold the new registry keys.

            Root                : 2
            Key                 : - 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain'
+ 2'>                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain'
            Name              : '*'
            Component             Root                : 2
            Key                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\ATHENA.MIT.EDU'
+ 2'>                 : + 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\ATHENA.MIT.EDU'
            Name              : 'LogonOptions'
            Value            Root                : 2
            Key                 : SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
+ 2'>                 : + SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
            Name              : '*'
            Component             Root                : 2
            Key                 : - 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
+ 2'>                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
            Name              : 'FailLoginsSilently'
            Value +

The example adds domain specific keys for 'ATHENA.MIT.EDU' (enable +integrated logon) and 'LOCALHOST' (disable integrated logon and fail logins +silently).

7.2.5 Adding Site Specific Freelance Registry Keys

@@ -5883,7 +5883,8 @@ feature and component to hold the new registry keys.

 @@ -5911,8 +5912,7 @@ feature and component to hold the new registry keys.

            Name              : '0'
           Value                    : + style='mso-spacerun:yes'>                    : 'athena.mit.edu#athena.mit.edu:root.cell.'
            Component     : 'rcm_FreelanceKeys'

@@ -5991,9 +5991,9 @@ feature and component to hold the new registry keys.

athena.mit.edu cell's root.afs volume as well as a read-write mountpoint.  Aliases are also provided using symlinks.

-

7.3 Additional +

7.3 Additional Resources

If you want to add registry keys or files you need to create @@ -6038,14 +6038,14 @@ original MSI package is 'openafs-en_US.msi'.

See the Platform SDK documentation for information on command line options for MSITRAN.EXE.

-

7.4. Upgrades

+

7.4. Upgrades

The MSI package is designed to replace (or uninstall) previous versions of OpenAFS for Windows during installation.  Previous versions are installations that used the NSIS (.EXE) installer or an MSI that has a known Upgrade Code and a -different Product Code.  The MSI does not +different Product Code.  The MSI does not directly upgrade an existing installation.  This is intentional and ensures that development releases which do not have strictly increasing version numbers are properly upgraded.

@@ -6092,7 +6092,7 @@ with the repair options "vomus".

7.4.1. OpenAFS MSI Product Codes

-

Release 1.3

+

Release 1.3

-

    'FeatureComponents' - table:

+

    + 'FeatureComponents' table:
-

    'Registry' - table:

+

    'Registry' table:
-

    'Registry' table:

+

    'Registry' + table:
-

Release 1.5

+

Release 1.5

Appendix A: Registry Values -

A.1. Service +

A.1. Service parameters

The service parameters primarily affect the behavior of @@ -6204,8 +6204,8 @@ the AFS client service (afsd_service.exe).

Default: -1
Variable: LANadapter

LAN adapter number to use.  This is the lana number of the LAN adapter that - the SMB server should bind to.  If + style='mso-spacerun:yes'>  This is the lana number of the LAN adapter + that the SMB server should bind to.  If unspecified or set to -1, a LAN adapter with named 'AFS' or a loopback adapter will be selected.  If neither are present, then all available adapters will be bound to.

Type: DWORD
Default: 25 (CM_CONFIGDEFAULT_SVTHREADS)
Variable: numSvThreads

-

Number of SMB server threads (number of threads of - smb_Server). (see smb_Server in smb.c).

+

Number of SMB server threads (number of threads of smb_Server). + (see smb_Server in smb.c).

@@ -6301,8 +6301,8 @@ the AFS client service (afsd_service.exe).

Variable: cm_mountRoot

Name of root mount point.  In symlinks, if a path starts with - cm_mountRoot, it is assumed that the path is absolute (as opposed to - relative) and is adjusted accordingly. Eg: if a path is specified as + cm_mountRoot, it is assumed that the path is absolute (as opposed to relative) + and is adjusted accordingly. Eg: if a path is specified as /afs/athena.mit.edu/foo/bar/baz and cm_mountRoot is "/afs", then the path is interpreted as \\afs\all\athena.mit.edu\foo\bar\baz.  If a path does not start with with @@ -6577,9 +6577,9 @@ the AFS client service (afsd_service.exe).

Default: 0

Enables logging of debug output to the Windows Event Log.

-

Bit 0 enables logging of "Logon Events" processed - by the Network Provider and Winlogon Event Notification Handler. 

+

Bit 0 enables logging of "Logon Events" + processed by the Network Provider and Winlogon Event Notification + Handler. 

Bit 1 enables logging of events captured by the AFS Client Service.

Bit 2 enables real-time viewing of "fs trace" @@ -6649,10 +6649,10 @@ the AFS client service (afsd_service.exe).

Type: DWORD {0 .. MAXDWORD}
Default: 100K

This entry determines the maximum size of the - %WINDIR%\TEMP\afsd_init.log file.  If - the file is larger than this value when afsd_service.exe starts the file will - be reset to 0 bytes.  If this value is - 0, it means the file should be allowed to grow indefinitely.

+ %WINDIR%\TEMP\afsd_init.log file.  If the + file is larger than this value when afsd_service.exe starts the file will be + reset to 0 bytes.  If this value is 0, + it means the file should be allowed to grow indefinitely.

@@ -6700,9 +6700,9 @@ the AFS client service (afsd_service.exe).

CellServDBDir

Type: REG_SZ
Default: <not defined>

-

Specifies the directory containing - the CellServDB file.  When this value - is not specified, the AFS Client install directory is used.

+

Specifies the directory + containing the CellServDB file.  When + this value is not specified, the AFS Client install directory is used.

@@ -6770,7 +6770,7 @@ the AFS client service (afsd_service.exe).

MiniDumpWithCodeSegs = 0x00002000

- + + + + + + +

Type: REG_DWORD
Default: 0x0

This value can be used to force the AFS Client Service - to store filenames using the Windows system's ANSI character set instead of the - OEM Code Page character set which has traditionally been used by SMB file + to store filenames using the Windows system's ANSI character set instead of + the OEM Code Page character set which has traditionally been used by SMB file systems. 

Note: The use of ANSI characters will render access to files with 8-bit OEM file names unaccessible from Windows. UNIX systems and vice versa.
+
Value: RxEnablePeerStats
+

Type: REG_DWORD
+ Default: 0x0

+

This value will enable the gathering of RX Statistics + for connections with the Cache Manager’s Peers.  This functionality can be adjusted at + runtime with the “fs rxstatpeer” command.

+
+
Value: RxEnableProcessStats
+

Type: REG_DWORD
+ Default: 0x0

+

This value will enable the gathering of RX Statistics + for the Cache Manager’s Process.  This + functionality can be adjusted at runtime with the “fs rxstatproc” command.

+

Regkey:
@@ -6941,9 +6964,9 @@ _Toc115416253'>Regkey:
ip address"

Type: REG_DWORD
Default: <none>

-

This key is used to specify a default - set of File server preferences. For each entry the value name will be either - the IP address of a server or a fully qualified domain name.This key is used to specify a + default set of File server preferences. For each entry the value name will be + either the IP address of a server or a fully qualified domain name.  The value will be the ranking.  The ranking will be adjusted by a random value between 0 and 256 prior to the preference being set.

@@ -6951,8 +6974,8 @@ _Toc115416253'>Regkey:
-

A.2. Integrated +

A.2. Integrated Logon Network provider parameters

Affects the network provider (afslogon.dll).

@@ -7280,8 +7303,8 @@ specific domain key or the domains key, it will be used regardless of the high security setting.  Please be aware of this when setting this value.

-

A.3. AFS +

A.3. AFS Credentials System Tray Tool parameters

Affects the behavior of afscreds.exe

@@ -7311,8 +7334,8 @@ Credentials System Tray Tool parameters

Type: REG_SZ
Default: <none>
Variable: IsServiceConfigured()

-

The value Cell is used to determine if the AFS Client Service - has been properly configured or not.

+

The value Cell is used to determine if the AFS Client + Service has been properly configured or not.

@@ -7331,8 +7354,8 @@ Credentials System Tray Tool parameters

Type: DWORD {0, 1}
Default: 1
Function: InitApp(), Main_OnCheckTerminate()

-

This value is used to determine whether - or not a shortcut should be maintained in the user's Start +

This value is used to determine + whether or not a shortcut should be maintained in the user's Start Menu->Programs->Startup folder.

This value used to be stored at [HKLM\Software\TransarcCorporation\AFS Client\AfsCreds].

@@ -7379,8 +7402,8 @@ Credentials System Tray Tool parameters

Type: REG_SZ
Default: "-A -M -N -Q"
Function: Shortcut_FixStartup

-

This value specifies the command line options which should - be set as part of the shortcut to afscreds.exe.This value specifies the command line options which + should be set as part of the shortcut to afscreds.exe.  afscreds.exe rewrites the shortcut each time it exits so as to ensure that the shortcut points to the latest version of the program.  This value is used to @@ -7460,8 +7483,8 @@ Credentials System Tray Tool parameters

drive letter"

Type: DWORD {0, 1}
Default: <none>

-

These values are used to store the - persistence state of the AFS drive mappings as listed in the +

These values are used to store + the persistence state of the AFS drive mappings as listed in the [...\Client\Mappings] key.

These values used to be stored in the afsdsbmt.ini file

@@ -7491,8 +7514,8 @@ Credentials System Tray Tool parameters -

A.4 OpenAFS +

A.4 OpenAFS Client Service Environment Variables

0Q=l$JmuJLZ}a+hn;)N3wUHhKv?l~~i55UMd3MJv5C25eSx zYSX0kA*e(YddUx=h-g3?Qd^3;(1&1s@KLxz3vHw>D1s#v6kF`ymv(lt56i&p@cX{` zzM1bg`|sr6lOBv}5pw3D2-TqZInSSD`g+^k*kfFUUaYZs8UMlN zn~p2e1%y!6ExHXd1O;aXesN}D*7-IluA|a`f}A<* zHwdw5?LJbXc{+uPsDQGlg7OyYMN)r#Xb=(FeZl5_=5PtAY!un(N1s^u*J7XDXS=Tt7JLg<2fhoL z9eBsD!b^V(oc53C(ZEHVw_VD|WuD0faoS|^J@1kV(%9&>@LnNd!(k!<3sW2wkF??()>1*%F4at(22{kyVJKhSUvv7T|Zb$%@oak!R7TgqzD&|#0=tw!Dv`rgUopwi#yAxTM@N54@Iv{kRGDt zvGLKPCH5H|huLTci{wu9SL;>%#Uu-GD|SGjA7~RLO2J1L;Ria6Md**;Q2ku=cHAH? zo9IBkXK#hQq+{p~vo?RE+woV$Ej9)O5;+)3Tz#clL>`N=*nn+}&#T~Tx{6Q0&8AMd zx}PIvXU=f;%Y;D&;lHMCSWZUSS-O));OFF4X_TYiHyNahp)z!(vRHxH)RdgD5E@Zz zE}*3pa5P`TF@3Rlr`duR>9~VM5NIv1*_YX%Uus>!xC|3*DOUKbEpC-p+la|~zQHO; zJ>1|)t3lGRGm~YFJ)7x|H(J%ZLCI#TP0+n#<3;Vm@@9x{48v;XA4}HPo;GDo_BXp&|RBO3jYJ7xj41} delta 1265 zcmY*ZZD?Cn7(OS-Y1(_6E=iM{G_>hSnzUq%O_!{iZfk99nd_(>b8VNl!?Kw)i)P74 zQfyNhIx%ecLFzl*kkN%IQi?xhckD+e{uJDg;zU@H3l3p01c%6ULne6cX^<-i-h1zJ zp7(jrd7pFclf}OmO&B#Gq#tl2REI9Dm|ofyTSMsc-Uq_jch2{pjyYD+_iz~w;~a~d z_)iwU(yfXygiu(h7Zl=yX?+Mb^@pUX8s@Zwk%7GN(%`|Hj!QK=Ql2ImngtY=&ScWr z*9-8ndCWY{ay~^-HWF-%BUm+8#Ung#%chWLVAK+2-QKXw)QWG}ZrlD>{B27B7iEL> zW9-xHeV9x9CMm?PDIGg_41Q|%8r>C?V*{Qx&$3;|Z7*U1RojA89{#U+BV6FNLm{2e zZQlbG`Z@VM<>dXg5>*;FRU9;xh(h#H5PFRH6AAjrBS ztW|67U&RYN`7ujA2AA7k!3lWU{za>;hMsS))6}GAa`_~MHM)#*;Pz~|UgNau9)&!w zp&f}GJpPgQfU&}k;#u@H?Dtk#F~!@$;$PltI0K(_^h@OvJVia)J5D_EDkK8;I|ea= zA-@f#d=sp{Vd0Ut+u_#87in^SK9?`jQ_0jqmZr1x@Iq#ZhI@PW^iT@xzLDB(ywjoH z#>c)x@V(#3Zo-hi1P}b5VJg4hIg0h{e8D$CNq*SXpkph05}0PO8tjqZ+I<(poq!!O zK?{S<1wG8NYA~X*e(Yf%Dofn?$^5cgAz=uG!eTB@kEgSV+#7{`a4Iw|{}3{%R^RKL QRP$8bL}ZyGd#@P(1q%g3IsgCw -- 2.39.5