4 * UPD: afpd: Enhanced POSIX ACL mapping semantics, from Laura Mueller
5 * FIX: afpd: ACL access checking
6 * FIX: dbd: Better checking for duplicated or bogus CNIDs from AppleDouble files
7 * FIX: Fix compilation error when AppleTalk support is disabled
12 * NEW: afpd: disable continous service feature by default, new option
13 -keepsessions to enable it
14 * NEW: configure option "--enable-redhat-systemd" for Fedora15 and later.
15 "--enable-redhat" is renamed "--enable-redhat-sysv".
16 * UPD: afpd: Enhance ACL support detection for volumes: enable them per volume
18 1) ACL support compiled in, 2) the volume supports ACLs, 3) the new
19 volume option "noacls" is not set for the volume.
20 The previous behaviour was to enable ACL support for a volume if
21 1) it was compiled in and 2) the volume supported ACLs. There was no way
22 to disable ACLs for a volume.
23 * UPD: afpd: add a configurable hold time option to FCE file modification event
24 generation, default is 60 s, new option "fceholdfmod" to change it
25 * UPD: afpd: add support for new NetBSD quota subsystem, Bug ID 3249879
26 * FIX: afpd: increase BerkeleyDB locks and lockobjs
27 * FIX: afpd: create special folder as root
28 * FIX: afpd: fix compilation error if --enable-ddp is used
29 * FIX: afpd: More robust IPC reconnect error handling
30 * FIX: afpd: ACL access checking
31 * FIX: afpd: fix a possible race condition between SIGCHLD handler and
32 new connection attempts
33 * FIX: afpd: fix undefined behaviour when more then ~510 connetions where
35 * FIX: afpd: fix a crash when searching for a UUID that is not a special
36 local UUID and LDAP support is not compiled in
37 * FIX: afpd: .volinfo file not created on first volume access if user in rolist
38 * FIX: afpd: possible crash at startup when registering with Avahi
39 when Avahi is not running
40 * FIX: afpd: return correct user/group type when mapping UUIDs to names
41 * FIX: afpd: for directories add DARWIN_ACE_DELETE ACE
42 if DARWIN_ACE_ADD_SUBDIRECTORY is set
43 * FIX: afpd: afpd crashed when it failed to register with Avahi because eg
44 user service registration is disabled in the Avahi config
45 * FIX: dbd: function checking and removing malformed ad:ea header files failed
46 to chdir back to the original working directory
47 * FIX: cnid_dbd: increase BerkeleyDB locks and lockobjs
48 * FIX: cnid_dbd: implement -d option, deletes CNID db
49 * FIX: dbd: better detection of local (or SMB/NFS) modifications on AFP volumes
50 * FIX: suse: initscript return better status
51 * FIX: Sourcecode distribution: add missing headers
52 * FIX: Solaris 10: missing dirfd replacement function
53 * FIX: case-conversion of surrogate pair
54 * FIX: Compilation error on GNU/kFreeBSD, fixes Bug ID 3392794 and
56 * FIX: Fix Debian Bug#637025
57 * FIX: Multiple *BSD compilation compatibility fixes, Bug ID 3380785
58 * FIX: precompose_w() failed if tail character is decomposed surrogate pair
63 * NEW: afpd: new volume option "nonetids"
64 * NEW: afpd: ACL access check caching
65 * NEW: afpd: FCE event notifications
66 * NEW: afpd: new option "-mimicmodel" for specifying Bonjour model registration
67 * UPD: Support for Berkeley DB 5.1
68 * UPD: case-conversion is based on Unicode 6.0.0
69 * UPD: cnid_metad: allow up to 4096 volumes
70 * UPD: afpd: only forward SIGTERM and SIGUSR1 from parent to childs
71 * UPD: afpd: use internal function instead of popening du -sh in order to
72 calculate the used size of a volume for option "volsizelimit"
73 * UPD: afpd: Add negative UUID caching, enhance local UUID handling
74 * FIX: afpd: configuration reload with SIGHUP
75 * FIX: afpd: crashes in the dircache
76 * FIX: afpd: Correct afp logout vs dsi eof behaviour
77 * FIX: afpd: new catsearch was broken
78 * FIX: afpd: only use volume UUIDs in master afpd
79 * FIX: dbd: Multiple fixes, reliable locking
80 * FIX: ad file suite: fix an error that resulted in CNID database
86 * NEW: afpd: new afpd.conf options "tcprcvbuf" and "tcpsndbuf" to customize
87 the corresponding TCP socket options.
88 * NEW: afpd: new afpd.conf option "nozeroconf" which disabled automatic
89 Zeroconf service registration.
90 * FIX: afpd: generate mersenne primes for DHX2 UAM once at startup,
92 * FIX: afpd: DSI streaming deadlock
93 * FIX: afpd: extended sleep
94 * FIX: afpd: directory cache
95 * FIX: Support for platforms that do not have the *at functions
96 * UPD: afpd: put POSIX write lock on volume files while reading them
101 * FIX: afpd: fix option volsizelimit to return a usefull value for the
102 volume free space using `du -sh` with popen
103 * FIX: afpd: fix idle connection disconnects
104 * FIX: afpd: don't disconnect sessions for clients if boottimes don't match
105 * FIX: afpd: better handling of very long filenames that contain many
106 multibyte UTF-8 glyphs
112 * UPD: afpd: AFP 3.x can't be disabled
117 * FIX: composition of Surrogate Pair
118 * UPD: gentoo,suse,cobalt,tru64: inistscript name is "netatalk", not "atalk"
119 * UPD: gentoo: rc-update install don't hook in the Makefile
124 * UPD: afpd: new option "searchdb" which enables fast catalog searches
126 * UPD: Case-insensitive fast search with the CNID db
127 * UPD: cnid_dbd: afpd now passes the volume path, not the db path when
128 connecting for a volume. cnid_dbd will read the
129 ".AppleDesktop/.volinfo" file of the volume in order to figure
130 out the CNID db path and the volume charset encoding.
135 * NEW: Enhanced CNID "dbd" database for fast name search support.
136 Important: this makes cnidscheme "cdb" incompatible with "dbd".
137 * NEW: afpd: support for fast catalog searches
138 * NEW: ad utility: ad find
139 * UPD: afpd: CNID database versioning check for "cdb" scheme
140 * UPD: cnid_dbd: CNID database versioning and upgrading. Additional
141 CNID database index for fast name searches.
146 * FIX: afpd: various fixes
147 * FIX: Any daemon did not run if atalkd doesn't exist (redhat/debian)
152 * FIX: afpd: fix compilation error when ACL support is not available
153 * FIX: Ensure Appletalk manpages and config files are distributed
158 * NEW: ad utility: ad cp
159 * NEW: ad utility: ad rm
160 * NEW: ad utility: ad mv
161 * NEW: afpd: dynamic directoy and CNID cache (new config option -dircachesize)
162 * NEW: afpd: POSIX 1e ACL support
163 * NEW: afpd: automagic Zeroconf registration with avahi, registering both
164 the service _afpovertcp._tcp and TimeMachine volumes with _adisk._tcp.
165 * UPD: afpd: ACLs usable (though not visible on the client side) without common
166 directory service, by mapping ACLs to UARight
167 * UPD: afpd: performance improvements for ACL access calculations
168 * UPD: AppleTalk is disabled by default at configuration time. If needed
169 use configure switch --enable-ddp.
170 * FIX: afpd: Solaris 10 compatibilty fix: don't use SO_SNDTIMEO/SO_RCVTIMEO,
171 use non-blocking IO and select instead.
172 * FIX: cnid_dbd: Solaris 10 compatibilty fix: don't use SO_SNDTIMEO/SO_RCVTIMEO,
173 use non-blocking IO and select instead.
174 * REM: afile/achfile/apple_cp/apple_mv/apple_rm: use ad
179 * FIX: afpd: Fix for LDAP user cache corruption
180 * FIX: afpd: Fix for not shown ACLs for when filesyem uid or gid
181 couldn't be resolved because (eg deleted users/groups)
182 * FIX: gentoo: cannot set $CNID_CONFIG
183 * FIX: ubuntu: servername was empty
184 * FIX: Solaris: configure script failed to enable DDP module
185 * FIX: AppleDouble buffer overrun by extremely long filename
186 * UPD: afpd: return version info with machine type in DSIGetStatus
187 * UPD: dbd: use on-disk temporary rebuild db instead of in-memory db
188 * UPD: suse: initscript update
193 * UPD: afpd: support newlines in -loginmesg with \n escaping syntax
194 * UPD: afpd: support for changed chmod semantics on ZFS with ACLs
196 * FIX: afpd: fix leaking ressource when moving objects on the server
197 * FIX: afpd: backport Solaris 10 compatibilty fix from 2.2: don't use
198 SO_SNDTIMEO/SO_RCVTIMEO, use non-blocking IO and select instead.
199 * FIX: afpd: misaligned memory access on Sparc in ad_setattr, fixes
201 * FIX: cnid_dbd: backport Solaris 10 compatibilty fix from 2.2: don't
202 use SO_SNDTIMEO/SO_RCVTIMEO, use non-blocking IO and select instead.
207 * FIX: afpd: Downstream fix for FreeBSD PR 148022
208 * FIX: afpd: Fixes for bugs 3074077 and 3074078
209 * FIX: afpd: Better handling of symlinks in combination with ACLs and EAs.
211 * FIX: dbd: Adding a file with the CNID from it's adouble file did
212 not work in case that CNID was already occupied in the database
213 * FIX: macusers: add support for Solaris
214 * NEW: cnid_metad: use a PID lockfile
215 * NEW: afpd: prevent log flooding
216 * UPD: dbd: ignore ".zfs" snapshot directories
217 * UPD: dbd: support interrupting -re mode
222 * FIX: afpd: fix a serious error in networking IO code
223 * FIX: afpd: Solaris 10 compatibilty fix: don't use SO_SNDTIMEO, use
224 non-blocking IO and select instead for writing/sending data.
225 * UPD: Support for BerkeleyDB 5.0.
230 * FIX: afpd: fix for possible crash in case more then one server is
231 configured in afpd.conf.
232 * FIX: afpd: ExtendedAttributes in FreeBSD
233 * FIX: afpd: sharing home folders corrupted the per volume umask.
234 * UPD: afpd: umask for home folders is no longer taken from startup umask.
235 * UPD: afpd: dont and permissions with parent folder when creating new
236 directories on "upriv" volumes.
237 * UPD: afpd: use 'afpserver@fqdn' instead of 'afpserver/fqdn@realm'.
238 Prevents a crash in older GNU GSSAPI libs on eg. CentOS 5.x.
243 * UPD: fallback to a temporary in memory tdb CNID database if the volume
244 database can't be opened now works with the default backend "dbd" too.
245 * FIX: afpd: afp_ldap.conf was missing from tarball. This only effected
247 * FIX: afpd: Check if options->server is set in set_signature, preventing
249 * FIX: afpd: server signature wasn't initialized in some cases
250 * FIX: DESTDIR support: DESTDIR was expanded twice
251 * FIX: Fix for compilation error if header files of an older Netatalk
252 version are installed.
254 Changes in 2.1-release
255 ======================
257 * NEW: afpd: new volume option "volsizelimit" for limitting reported volume
258 size. Useful for limitting TM backup size.
259 * UPD: dbd: -c option for rebuilding volumes which prevents the creation
260 of .AppleDouble stuff, only removes orphaned files.
265 * NEW: afpd: static generated AFP signature stored in afp_signature.conf,
266 cf man 5 afp_signature.conf
267 * NEW: afpd: clustering support: new per volume option "cnidserver".
268 * UPD: afpd: set volume defaults options "upriv" and "usedots" in the
269 volume config file AppleVolumes.default. This will only affect
270 new installations, but not upgrades.
271 * FIX: afpd: prevent security attack guessing valid server accounts. afpd
272 now returns error -5023 for unknown users, as does AppleFileServer.
277 * NEW: afpd: AFP 3.2 support
278 * NEW: afpd: Extended Attributes support using native attributes or
279 using files inside .AppleDouble directories.
280 * NEW: afpd: ACL support with ZFS
281 * NEW: cnid_metad: options -l and -f to configure logging
283 * NEW: AppleDouble compatible UNIX files utility suite `ad ...`.
284 With 2.1 only `ad ls`.
285 * NEW: CNID database maintanance utility dbd
286 * NEW: support BerkeleyDB upgrade. Starting with the next release
287 after 2.1 in case of BerkeleyDB library updates, Netatalk
288 will be able to upgrade the CNID databases.
289 * NEW: afpd: store and read CNIDs to/from AppleDouble files by default.
290 This is used as a cache and as a backup in case the database
291 is deleted or corrupted. It can be disabled with a new volume
292 option "nocnidcache".
293 * NEW: afpd: sending SIGINT to a child afpd process enables debug logging
294 to /tmp/afpd.PID.XXXXXX.
295 * NEW: configure args to download and install a "private" Webmin instance
296 including only basic Webmin modules plus our netatalk.wbm.
297 * NEW: fallback to a temporary in memory tdb CNID database if the volume
298 database can't be opened.
299 * NEW: support for Unicode characters in the range above U+010000 using
300 internal surrogate pairs
301 * NEW: apple_dump: utility to dump AppleSingle and AppleDouble files
302 * NEW: afpldaptest: utility to check afp_ldap.conf.
303 * UPD: atalkd and papd are now disabled by default. AppleTalk is legacy.
304 * UPD: slp advertisement is now disabled by default. server option -slp
306 * UPD: cdb/dbd CNID backend requires BerkeleyDB >= 4.6
307 * UPD: afpd: default CNID backend is "dbd"
308 * UPD: afpd: try to install PAM config that pulls in system|common auth
309 * UPD: afpd: symlink handling: never followed server side, client resolves
310 them, so it's safe to use them now.
311 * UPD: afpd: Comment out all extension->type/creator mappings in
312 AppleVolumes.system. They're unmaintained, possibly wrong and
314 * FIX: rewritten logger
315 * FIX: afpd: UNIX permissions handling
316 * FIX: cnid_dbd: always use BerkeleyDB transactions
317 * FIX: initscripts installation now correctly uses autoconf paths,
318 ie they're installed to --sysconfdir.
319 * FIX: UTF-8 volume name length
320 * FIX: atalkd: workaround for broken Linux 2.6 AT kernel module:
321 Linux 2.6 sends broadcast queries to the first available socket
322 which is in our case the last configured one. atalkd now tries to
324 Note: now a misconfigured or plugged router can broadcast a wrong route !
325 * REM: afpd: removed CNID backends "db3", "hash" and "mtab"
326 * REM: cnid_maint: use dbd
327 * REM: cleanappledouble.pl: use dbd
328 * REM: nu: use `macusers` instead
333 * NEW: afpd: Time Machine support with new volume option "tm".
334 * FIX: papd: Remove variable expansion for BSD printers. Fixes CVE-2008-5718.
335 * FIX: afpd: .AppleDxxx folders were user accessible if option 'usedots'
337 * FIX: afpd: vetoed files/dirs where still accessible
338 * FIX: afpd: cnid_resolve: don't return '..' as a valid name.
339 * FIX: uniconv: -d option wasn't working
344 * REM: remove timeout
345 * NEW: afpd: DHX2 uams using GNU libgcrypt.
346 * NEW: afpd: volume options 'illegalseq', 'perm' and 'invisibledots'
347 'ilegalseq' encode illegal sequence in filename asis, ex "\217-", which is not
348 a valid SHIFT-JIS char, is encoded as U\217 -.
349 'perm' value OR with the client requested permissions. (help with OSX 10.5
350 strange permissions).
351 Make dot files visible by default with 'usedots', use 'invisibledots'
352 for keeping the old behavior, ie for OS9 (OSX hide dot files on its
354 * NEW: afpd: volume options allow_hosts/denied hosts
355 * NEW: afpd: volume options dperm/fperm default directory and file
356 permissions or with server requests.
357 * NEW: afpd: afpd.conf, allow line continuation with \
358 * NEW: afpd: AppleVolumes.default allow line continuation with \
359 * NEW: afpd: Mac greek encoding.
360 * NEW: afpd: CJK encoding.
361 * UPD: afpd: Default UAMs: DHX + DHX2
362 * FIX: afpd: return the right error in createfile and copyfile if the disk
364 * FIX: afpd: resolveid return the same error code than OSX if it's a directory
365 * FIX: afpd: server name check, test for the whole loopback subnet
367 * UPD: afpd: limit comments size to 128 bytes, (workaround for Adobe CS2 bug).
368 * UPD: afpd: no more daemon icon.
369 * UPD: usedots, return an invalide name only for .Applexxx files used by netatalk not
370 all files starting with .apple.
371 * UPD: cnid: increase the number of cnid_dbd slots to 512.
372 * FIX: cnid: dbd detach the daemon from the control terminal.
373 * UPD: cnid: never ending Berkeley API changes...
374 * UPD: cnid: dbd add a timeout when reading data from afpd client.
375 * UPD: cnid: Don't wait five second after the first error when speaking to the dbd
377 * FIX: papd: vars use % not $
378 * FIX: papd: quote chars in popen variables expansion. security fix.
379 * FIX: papd: papd -d didn't write to stderr.
380 * FIX: papd: ps comments don't always use ()
381 * FIX: many compilation errors (solaris, AFS, Tru64, xfs quota...).
386 * NEW: afpd: add a cachecnid option that controls if afpd should
387 use the IDs stored in the AD2 files as cache. Defaults
389 * UPD: afpd: deal with more than 32 groups.
390 * FIX: afpd: several catsearch fixes, based on patch from
392 * FIX: afpd: fix a race when a client very quickly reconnects and
393 tries to kill its old session.
394 * FIX: afpd: OSX style symlink caused problems with Panther clients.
395 * FIX: afpd: old files with default type didn't show the right icon
396 in finder, from Shlomi Yaakobovich, slightly modified.
397 * FIX: cnid_check: disable cnid_check if CNID db was configured with
398 transactions and really bail out after the first error.
399 * FIX: admin-group configure option was broken.
400 * FIX: several problems with IDs cached in AD2 files.
401 * FIX: Ignore BIDI in UTF8 hints from OSX.
402 * FIX: Lots of gcc warning fixes.
403 * FIX: small configure script changes.
409 * NEW: cnid: Add an indexes check and rebuild, optional for dbd
410 (parameter check default no), standalone program cnid_index for
412 * UPD: Enhanced afpd's -v command line switch and added -V for more
414 * UPD: uams_gss: build the principal used by uams_gss.so from afpd's
415 configuration, don't use GSS_C_NT_HOSTBASED_SERVICE
416 * UPD: cnid_dbd: add process id in syslog and small clean up
417 * REM: remove netatalkshorternamelinks.pl cf. SF bug [ 1061396 ]
418 netatalkshorternamelinks.pl broken
419 * FIX: afpd: check for DenyRead on FPCopyFile
420 * FIX: afpd: add missing flush for AD2 Metadata on FPCopyFile, SF bug
421 [ 1055691 ] Word 98 OS 9 Saving an existing file
422 * FIX: afpd: Deal with AFP3 connection and type 2 (non-UTF8) names.
423 reported by Gair Heaton, HI RESOLUTION SYSTEMS
424 * FIX: afpd: Broken 'crlf' option
425 * FIX: afpd: fix SF bug [ 1079622 ] afpd/dhx memory bug,
427 * FIX: afpd: Return an error if we cannot get the db stamp in
429 * FIX: afpd: Fix slp registration with Solaris9 slpd, from
430 hat at fa2.so-net.ne.jp
436 * NEW: --enable-debian configure option. Will install /etc/init.d/atalk
437 to get not in conflict with standard debian /etc/init.d/netatalk.
438 Reads netatalk.conf from $ETCDIR and not from /etc/default/
439 * UPD: Disable logger code by default. Log to syslog instead
440 * UPD: changed netatalk.conf default settings to prevent problems with
441 AppleTalk zone names containing spaces
442 * FIX: insecure tempfile handling bug in etc2ps.sh,
443 found by Trustix, CAN-2004-0974.
444 * REM: remove add_netatalk_printer and netatalk.template from stable
445 branch until fixed. (possible symlink vulnerabilities)
446 * FIX: afpd: set hasBeenInited in default finder info. This bug caused
447 endless finder refreshes with OS9 finder if the noadouble option
448 was used. From TSUBAKIMOTO Hiroya.
449 * FIX: afpd: fix a bug in default CREATOR/TYPE handling. Due to this bug
450 the type/creator mappings in AppleVolumes.system were ignored,
451 causing problems i.e. with OS9 clients.
452 * FIX: AppleVolumes.system: By default don't define a CREATOR/TYPE for a
453 file of unknown type.
454 * FIX: fix two Tru64 UNIX compilation errors,
455 from Burkhard Schmidt bs AT cpfs.mpg.de
456 * FIX: afpd: FPMapId wasn't using UTF8 for groups if requested by client.
461 * UPD: afpd: add an error message if -ipaddr parameter cannot be parsed
462 * UPD: updated documentation
463 * FIX: afpd: fix a file descriptor and memory leak with OSX ._ resource fork
464 * FIX: afpd: Prevent overwriting a file by renaming a file in the same
465 directory to the same name. Won't work with OSX, the dest file gets
466 deleted by OSX first.
467 * FIX: sometimes '0' was used instead of 0 for creator/type
468 * FIX: removed setpgrp check from configure, we don't use it anymore and
469 it doesn't work with cross compile.
470 * FIX: fix for Solaris "make maintainer-clean", from Alexander Barton
471 * FIX: fix username matching bug in afppasswd. from kanai at nadmin dot org
472 * FIX: reworked username check a little. Depending on the UAM, the wrong
473 username _could_ have been selected.
478 * UPD: use 0 0 for default creator/type rather than UNIX TEXT, from
480 * UPD: updated documentation
481 * UPD: change machine type from Macintosh to Netatalk in status reply
482 * FIX: afpd: CopyFile only create a resource fork for destination if source
484 * FIX: afpd: mangling: for utf8 --> max filename length is 255 bytes, else 31.
485 * FIX: cnid_dbd: fix a signed/unsigned, 16/32 bits mismatch. from Burkhard
486 Schmidt, bs at cpfs.mpg.de.
487 * FIX: afpd: After ad_setid don't flush resource fork if it has not been
489 * FIX: NEWS: Fixed ancient NEWS entries. Removed umlauts
490 * FIX: fix macname cache, SF bug 1021642
491 * FIX: revert Makefile change from 2.0-rc1. We have to include BDB_CFLAGS
497 * NEW: new manual page for asip-status.pl
498 * UPD: updated documentation
499 * UPD: uams: link uam_dhx_passwd.so to lcrypt before lcrypto. might help with
501 * UPD: Improved BerkeleyDB detection
502 * UPD: sys/solaris/Makefile.in: enable 'make check', from Alexander Barton
503 * UPD: tcp wrappers detection should work on OpenBSD as well now
504 * UPD: macbin: increase the maximum size of macbinary forks, as suggested by
505 Sourceforge bug ID 829221
506 * UPD: ASP: rework getstatus. use several ASP packets if the client allows
507 it, otherwise just send as much as we can
508 * FIX: FreeBSD 5 build, from Alex Barton (alex at barton.de)
509 * FIX: OSX 10.3 build
510 * FIX: papd: workaround a problem with PJL before Postscript
511 * FIX: afpd: make sure we only disconnect on old session if the users match
512 * FIX: apfd: Quark6 mangled long filenames should work better now
513 * FIX: enhance ADv1 to ADv2 conversion. Fixed a SIGSEGV reported by Mark Baker
514 * FIX: better detection of invalid resource forks
515 * FIX: fix some linking problems on OpenBSD
516 * FIX: afpd: catsearch.c, filedir.c: fix bogus casts, from Olaf Hering
518 * FIX: afpd: don't try to create special folders and .volinfo on read-only
520 * FIX: iconv/unicode enhancements. fixed a sigsegv on conversion error
521 * FIX: configure.in: fix a typo, reported by Joerg Rossdeutscher
522 * FIX: uniconv: enhanced uniconv behaviour
523 * FIX: fixed some Solaris compilation problems
524 * FIX: papd/Makefile.am: add a missing $DESTDIR, from Vlad Agranovsky
525 * FIX: afpd: quota.c: remove a c99 declaration, from Yann Rouillard
526 * FIX: configure.in: Solaris/gcc 3.0 fix, from Yann Rouillard
527 * FIX: afpd: fix a SIGSEGV when sharing home dirs without any options in
529 * FIX: numerous small bugfixes
534 * NEW: atalkd, papd and npb tools now support nbpnames with extended
536 * NEW: integrated CUPS support for papd
537 * NEW: optionally advertise SSH tunneling capabilties
538 * NEW: automatic logfile removal for cnid_metad
539 * NEW: asip-status.pl has been added to netatalk
540 * UPD: updated documentation
541 * UPD: we now require Berkeley DB >= 4.1
542 * UPD: 64bit Linux fixes from Stew Benedict, Mandrakesoft
543 * UPD: remove --enable-sendfile
544 * UPD: more verbose error messages
545 * FIX: better handling for resource forks without read access
546 * FIX: Tru64 build, by Burkhard Schmidt
547 * FIX: MIT Kerberos detection
548 * FIX: varios *BSD compile problems
549 * FIX: compile problem with libiconv, reported by Joe Marcus Clarke
550 * FIX: adv1tov2: make it work with the new structure
551 * FIX: afpd: filenames longer than 127 bytes were not enumerated correctly,
552 reported by Thies C. Arntzen
553 * FIX: afpd: return IP before FQDN in status reply.
554 * FIX: afpd: Mac chooser could crash on a codepage conversion error
555 * FIX: afpd: KerberosV auth with Panther clients, make long AD tickets work,
556 reported by Andrew Smith
557 * FIX: atalkd: could send invalid NBPLKUP replies, e.g with more than 15
558 printers. Reported by Almacha
559 * FIX: papd: fix papd.conf parsing problems with consecutive ':' and missing
560 newline. Reported by Craig White.
561 * FIX: megatron: make megatron work with UTF-8 volumes
562 * FIX: timeout: running timeout with commands which accept arguments,
564 * FIX: uniconv: fix a SEGFAULT, reported by Matthew Geier
565 * FIX: pam detection: PAM_C/LDFLAGS were always empty, from Alexander Barton
566 * FIX: numerous small bugfixes.
571 * NEW: OSX style adouble scheme
572 * NEW: japanese SHIFT_JIS codepage (iconv supplied)
573 * NEW: Solaris kernel module build integrated with configure
574 * NEW: Gentoo start scripts
575 * NEW: cnid_dbd doesn't use transactions by default
576 * FIX: afpd: the volume casefold option was broken
577 * FIX: afpd: update AD2 headers and keep owner on file exchange
578 * FIX: Solaris 9 and FreeBSD 4.9/5.2 compilation
579 * FIX: free space reported with groups quotas on Linux
580 * FIX: OS9/OS X didn't update free space
581 * FIX: finder crash if folder opened got deleted by another process
582 * FIX: randnum UAM wasn't AFP3 ready
583 * FIX: numerous small bugfixes.
585 Changes in 2.0-alpha2
586 =====================
588 * NEW: uniconv tool for converting volume encoding.
589 * NEW: afpd: Make sure getstatus doesn't return loopback address as server IP.
590 * NEW: afpd: Specify USEDOTS with MSWINDOWS implicitely.
591 * NEW: afpd: SRVLOC register with IP address instead of hostname by default,
592 if -fqdn is specified register with FQDN. Added extended character
593 support for SLP, non ASCII characters are escaped Added ZONE to registration.
594 * NEW: atalkd: Make atalkd set interfaces to ALLMULTI on linux by default.
595 * NEW: cnid_metad: Use DB_PRIVATE attribute for dbd backend without transaction.
596 * FIX: afpd: Partial workaround for an OSX client deadlock.
597 * FIX: afpd: Reenumerate folder if db is out of sync in resolveID.
598 * FIX: afpd: Don't modify modification date in copyfile.
599 * FIX: afpd: Variable $v substitution: always use name defined in config files.
600 * FIX: libatalk: Speed optimisation for byte locking was broken on resource fork.
601 * FIX: Solaris 9 compilation.
602 * FIX: Tru64 compilation fixes.
603 * FIX: AFS compilation fixes.
604 * FIX: strncpy bugfix.
605 * FIX: configure, man pages update and small bugfixes.
607 Changes in 2.0-alpha1
608 =====================
610 * NEW: afpd: We now support AFP 3.x, which features long filenames and
612 * NEW: CNID handling completely reworked. We now use per Volume configurable
614 * NEW: Two new daemons, cnid_metad and cnid_dbd to implement the dbd CNID backend.
615 Using Berkeley DB transactions with the CNID database should be safe now.
616 * NEW: The on disk format of the CNID database has changed. We now support 8 byte
617 device and inode numbers and an additinal type field that should make
618 detection of file/directory changes outside of afpd more robust.
619 Changed from HASH to BTREE access which speeds things up in certain cases
620 and reduces database file size.
621 * NEW: Long file name mangling is now implemented using the CNID ID, so no database is
622 required to map names to mangled names. This is the same method Mac OS X uses.
623 * NEW: New format (version 2) for Metadata in AppleDouble files. We record device and
624 inode of the underlying file as well as the CNID. This can be used for recovery
625 and speeds up access to the CNID.
626 * NEW: The old NLS codepage system has been removed. It was replaced by an iconv
627 based conversion system, which provides much more flexibility.
628 * NEW: You can safely use extended characters in volume names and for SIGUSR2 messaging.
629 * NEW: The default volume encoding is UTF-8.
630 * NEW: All documentation is now generated using DocBook. New or completely reworked
631 sections about installing, setting up and upgrading Netatalk replace various
632 README files in the doc directory.
633 * FIX: Protect afpd better against unexpected signals during updates of the CNID
634 database with the cdb backend. This makes database corruption less likely.
635 * FIX: All manpages have been reviewed and should now be up to date.
636 * FIX: Tons of bug fixes since 1.6.4. Please consults the CVS change log for details.
641 * NEW: afpd: Using the mswindows option now implicitly specifies usedots.
643 * UPD: afpd.8: Updated the option documentation.
644 [Thomas Kaiser, Sebastian Rittau]
645 * FIX: configure: Removed broken --with-flock-locks option. [Bjoern Fernhomberg]
646 * FIX: libatalk: Do not log network probe (OSX 10.3). [Didier Gautheron]
647 * FIX: libatalk: Deadlock in signal handlers. [Didier]
648 * FIX: libatalk: Compilation with Linux kernel 2.6 fixed. [Sebastian, Bjoern]
649 * FIX: afpd: Solaris compile issues. [Bjoern]
650 * FIX: afpd: If connection broke in dsi_tickle the child did never die. [Bjoern]
651 * FIX: afpd: Catsearch, fixes a possible segmentation fault. [Bjoern]
652 * FIX: afpd: Compilation issues. [Olaf Hering, Sebastian]
653 * FIX: cnid: Fix compile problems on Tru64. [Burkhard Schmidt]
654 * FIX: megatron: Fixed an uninitialized variable. [Olaf]
655 * FIX: installation: Don't overwrite PAM file if --enable-overwrite configure
656 option is not set. [Sam, Ryan Cleary]
657 * FIX: installation: Fixed BSD installation. [Toru TAKAMIZU]
658 * FIX: docs: Removed ssl-dir/ssl-dirs confusion from doc/INSTALL. [Bjoern]
663 * UPD: afpd: Infrastructural support for an upcoming Kerberos 5 UAM.
665 * UPD: uams_dhx_passwd: Better random seed in Tru64. [Burkhard Schmidt]
666 * FIX: afpd: Bug in AFP connection negotiation stage. [Sam]
667 * FIX: afpd: Catsearch, when Mac and unix name differ, search on attributes.
668 * FIX: afpd: Files could be opened for writing on read-only filesystems.
669 * FIX: afpd: Debugging using SIGUSR1 was broken. [Stefan Muenkner]
670 * FIX: afpd: Segfault after login. [Robby Griffin, Sean Bolton]
671 * FIX: psf: Correct path to etc2ps.sh.
672 * FIX: shell_utils: Don't distribute generated files.
673 * FIX: aecho: -A option didn't work. [Chris Shiels]
674 * FIX: configure: Berkeley DB path detection could be wrong. [Stefan]
675 * FIX: Automake build fixes.
680 * FIX: atalkd: Fixes for reading long configuration file lines. [Dan Wilga]
681 * FIX: afpd: CNID id allocation in a multiuser environment.
682 * FIX: papd: Fix PSSP support when PAM is enabled.
683 * FIX: macusers: Can now cope with IP addresses as well as host names.
684 * FIX: etc2ps.sh: Install correctly.
689 * UPD: Improve --enable-fhs. [Olaf Hering]
690 * UPD: Add BDB 4.1.x support.
691 * UPD: Add more documentation on CNID, as well as list which versions
692 of Berkeley DB are supported.
693 * FIX: Codepage file maccode.koi8-r is now correctly cleaned.
694 * FIX: Fix init script location on SuSE. [Olaf]
695 * FIX: Build fixes. [Olaf, Steven N. Hirsch]
696 * FIX: Various bugs when a user doesn't have access permission to a folder.
697 (Fixes an OSX kernel panic.)
698 * FIX: CNID, folders' DID handling with concurrent access or symlinks.
699 (Fixes an endless loop in afpd.)
704 * FIX: pap looks at the STDOUT file descriptor to see if it's connected to
705 a tty, instead of STDIN.
710 * UPD: Removed --with-catsearch option from configure and enable FPCatSearch
712 * UPD: The dbpath argument does now support variable substitution.
713 * FIX: Build fix for non-GNU-C compilers in libatalk/util/logger.c.
714 * FIX: Two directories with the same name but different case confused the
716 * FIX: The ROOT_PARENT directory could get invalidated.
721 * NEW: Long file name mangling support.
722 * NEW: Improved log file support.
723 * NEW: Server-side find capability ("FPCatSearch")
724 * NEW: Concurrent datastore (CDB) is now the default CNID datastore. This
725 should be heavily tested in a multiuser environment.
726 * NEW: Variable substitution support has been added for the dbpath AppleVolume
728 * UPD: CNID DID handling is now enabled by default.
729 * FIX: Various bug and build fixes as well as code cleanups.
734 * NEW: Allow afpd debugging to be enabled by sending the afpd process
736 * NEW: Allow SLP to be disabled per afpd process by adding a new -noslp flag
738 * FIX: Use server name (if not NULL) for the SLP URL.
739 * FIX: papd: buffer overflow during config file read (Olaf Hering)
744 * FIX: File open read only and then read write (aka pb with Illustrator).
745 * FIX: Problems with unexpected EOF when reading files on a ddp connection
746 Photoshop, old finder.
747 * FIX: --with-nls-dir option does now work
752 * UPD: Extend the --disable-shell-check functionality to ignore users
753 with _no_ shell. Also, send a log message if a user is refused login
754 based on the fact that they have no shell.
755 * UPD: Autoconf updates.
756 * UPD: Tru64 afpd authentication updates.
757 * UPD: As always: lots of minor code cleanups.
758 * FIX: Problems with Photoshop trying to open image files has been
760 * FIX: Preserve special permission bits when creating or modifying
762 * FIX: afp_deleteid() now deletes the specified file and not the parent
764 * FIX: papd does now announce that it supports binary data to its clients.
765 * FIX: NetBSD ELF support.
766 * FIX: acleandir.rc is now installed in the bin directory.
767 * FIX: megatron does now compile even if compiled with -DDEBUG.
768 * FIX: Clean up some syslog messages.
773 * NEW: NetBSD support contributed by David Rankin and NetBSD contributors.
774 This includes a new configure option --enable-netbsd.
775 * NEW: Add the -client_polling afpd.conf flag to allow for clients to poll
776 the server every 10 seconds for open window updates. Currently
777 this is the only way to get asynchronous directory updates.
778 * UPD: Use separate macro for AFS configure check.
779 * UPD: Some Perl scripts are now (partially) auto-generated. This improves
780 out-of-the-box usage of Netatalk.
781 * UPD: Solaris Kernel Makefile is now auto-generated. This fixes some path
782 issues, but isn't perfect, yet. Added some Solaris compatibility
783 fixes to the Kernel sources, too.
784 * UPD: CNID DB code sync'd with the current CVS version. NOTE: Using this
785 code requires you to delete _all_ existing .AppleDB directories in
786 order to avoid database corruption!
787 * FIX: The file AppleVolumes.system contained wrong line breaks so that
788 not all file types were properly recognized.
789 * FIX: AFS compilation would fail due to a misnamed variable.
790 * FIX: SLP configure check was wrong so SLP did not compile.
791 * FIX: Fix the way quotas are handled under certain situations.
792 * FIX: Do not enable debugging code if debugging option is not set.
793 * FIX: Some problems with wrongly assigned DIDs were fixed.
794 * FIX: Various bug fixes and code cleanups.
799 * NEW: Added a program called cnid_didname_verify that can be used to
800 verify the consistency of the CNID database.
801 * NEW: New afpd option: -timeout. Warning: This still doesn't do what it's
803 * UPD: Code cleanups and compatibility fixes to macusers.
804 * UPD: AppleVolumes.system was cleaned up.
805 * FIX: Really fix Tru64 compilation (see last entry).
806 * FIX: Hand correct error value back to AFP client when deleting files or
808 * FIX: Leading or trailing spaces are now forbidden on volumes that have
809 the AFPVOL_MSWINDOWS flag set.
810 * FIX: Minor code cleanups and warning fixes.
811 * FIX: Make quota support work on FreeBSD.
816 * FIX: Compilation on Tru64 systems was broken, since libtool's acinclude.m4
817 file on the packagers system did not contain the necessary patch.
818 * FIX: On some systems, atalkd refuses to start, since it couldn't detect
819 any interfaces. This was caused by an overzealous validity check.
824 * FIX: contrib/shell_utils/lp2pap.sh was erased when "make clean" was called.
825 Now we distribute lp2pap.sh.tmpl instead, and lp2pap.sh is automatically
826 generated during package build.
827 * FIX: Some platforms (notably Tru64) don't have the snprintf() call, which
828 was used in etc/afp/afp_config.c. This call was replaced by sprintf()
829 and prior bounds checking.
831 Changes from the 1.4b1 release:
832 ===============================
834 * Fixed the maximum free/total volume size in afpd.
836 * Made ~ the default volume in afpd.
838 * Fixed pid file handling and changed setpgrp() to setpgid() in afpd,
841 * Added code to afpd to set the Unix file time stamps with utime().
843 * Fixed a bug in papd's printcap code which limited it to 15 or so
846 * Fixed papd's handling of piped printers.
848 * Fixed papd's handling of bad job names.
850 * Fixed atalkd to send NBP LKUP packets from NBP port.
852 * Added "sync;sync;sync" to Solaris kinstall to help with streams
855 * Added nlocalrts to streams ddp.conf. Thanks Thomas Tornblom.
857 * Fixed signed extension infinite loop in Solaris module.
859 * Moved all the config files to .../config.
861 Changes from the 1.3.3 release:
862 ===============================
864 * Added code from Sun Microsystems, Inc (OPCOM) for Solaris support.
867 * Added support for FreeBSD, mostly changes by Mark Dawson and Julian
870 * All sorts of other stuff.
872 Changes from the 1.3.1 release:
873 ===============================
875 * Added options to psf's filter names to support accounting on HPs.
876 !!! NOTE: The location of the filters has changed, see the man
879 * Added code from Alan Cox to support Linux.
881 * Rewrote papd. Now handles dropped connections better.
882 Configuration has been modernized. !!! NOTE: The format of the
883 configuration file has changed, but NOT THE NAME.
885 * Added Kerberos support to papd.
887 * atalkd now removes routes on a SIGTERM. Still can't just restart
890 * Changed atalkd and the kernel driver to remove a hack added to
891 support sending to 0.255. Now the kernel will allow multiple open
892 sockets with the same port, so long as the addess associated with
893 the port is different. atalkd now opens a socket for each port on
896 * atalkd now rewrites its configuration file. If no configuration
897 file is given, one will be generated. Permissions on the new
898 configuration file will be inherited from the old one. If there is
899 no old one, permissions default to 644. Won't rewrite the file if
900 the owner doesn't have write permission.
902 * Removed support for the "AFS Kerberos UAM", in favor of the
903 "AuthMan UAM". Kerberos support should now be much more
906 * Fixed a bug in afpd which would cause incorrect group calculations
909 * Fixed a bug in afpd which causes SimpleText and some other
910 applications to silently fail to write. There's also a bug in
911 MacOS, but we can't fix that.
913 * Fixed a bad interaction with afpd and AFS which would cause file
914 writes to not propogate between AFS clients.
916 * !!! CHANGED the name(s) of afpd's config files. The new files are
917 AppleVolumes.system and AppleVolumes.default. If AppleVolumes.system
918 exists, it is always read, AppleVolumes.default is only read if the
919 user has no AppleVolumes file. Included a flag "-u" to indicate
920 which file has precedence. "-u" user wins, otherwise ".system"
923 * Rewrote the AppleVolumes parsing code. Now works.
925 * Added a filename extension mapping to afpd. User always takes
926 precedence, regardless of the "-u" flag. Code to change the type
927 of all Unix files contributed by Kee Hinckley <nazgul@utopia.com>.
929 * afpd now supports both UFS and AFS volumes simultaneously. It also
930 uses access() to attempt to calculate reasonable Mac permissions
933 * Changed reporting of file times. Files that are written from Unix
934 now update the Mac's idea of the files modification time. Unix
935 mtime is now reported instead of ctime.
937 * Added support for a new UAM to afpd. This requires that client
938 Macs have MacTCP and AuthMan installed. Should make running afpd
941 * Removed code so that otherwise valid volumes for which the mounting
942 user has no permission will appear in the volume selection dialog
943 on the Mac gray-ed out.
945 * Added code from Chris Metcalf of MIT to the AppleDouble library
946 which improves permission inheritance.
948 * Added code from G. Paul Ziemba of Alantec, Inc to better report
949 errors in psf. Also changed psf to use syslog for errors that
950 users aren't interested in.
952 * Added information to psf's man page to better explain the
953 interaction between psf, pap, and lpd.
955 * Make psf/pap/psa do accounting when it's turnes on in
958 * Changed pap's error message when there is no printer specified on
959 the command line and no .paprc is found. Also heavily modified
960 pap's man page to reflect changes in the "new" version of pap,
961 including moving it from section 8 to section 1.
963 * Fixed a byte-order bug in pap's sequence numbers. Doubt if pap has
964 ever worked right on little endian machines!
966 * Added a flag to pap to optionally close before receiving EOF from
967 the printer. Off by default. psf calls pap with this option on.
969 * Added timeouts to the nbp library calls. This means that processes
970 won't hang when atalkd dies during boot, thus hanging your
973 Changes from the 1.3 release:
974 =============================
976 * Fixed a bug in afpd which would cause APPL mappings to contain both
977 mac and unix path names. The fixed code will handle the old
978 (corrupted) database.
980 * Fixed a *very* serious bug which would cause files to be corrupted
981 when copying to afpd.
983 * Fixed a bug in afpd which would cause replies to icon writes to
984 contain the written icon.
986 * Filled in the function code switch in afpd. Previously, a hacker
987 could probably have used afpd to get unauthorized access to a
988 machine running afpd.
990 * Fixed a bug in the asp portion of libatalk.a which could cause the
991 malloc()/free() database to be corrupted.
993 * Fixed a bug in atalkd's zip query code. With this bug, only the
994 first N % 255 nets get queried. However, since nets bigger than
995 255 are usually pretty unstable, the unqueried for nets will
996 eventually get done, when N drops by one.
998 * Suppressed a spurious error ("route: No such process") in atalkd.
1000 Changes from the 1.2.1 release:
1001 ===============================
1003 * atalkd is completely rewritten for phase 2 support. atalkd.conf
1004 from previous version will not work!
1006 * afpd now has better AFS support. In particular, the configuration
1007 for AFS was made much easier; a number of Kerberos-related
1008 byte-ordering and time problems were found; clear-text passwords
1009 were added (thanks to geeb@umich.edu).
1011 * afpd now handles Unix permissions much better (thanks to
1014 * There are many, many more changes, but most are small bug fixes.
1016 Changes from the 1.2 release:
1017 =============================
1019 * The Sun support now uses loadable kernel modules (a la VDDRV)
1020 instead of binary patches. As such, it should work on any sunos
1021 greater than 4.1, and is confirmed to work under 4.1.1 and 4.1.2.
1023 * The DEC support no longer requires source. It also runs under
1024 ultrix 4.1 and 4.2. It still requires patching your kernel, but the
1025 patches are limited to those files available to binary-only sites
1026 -- primarily hooks for things like netatalk.
1028 * The etc.rc script now uses changes made to nbprgstr (see below).
1030 * aecho now takes machine names on the command line.
1032 * nbplkup now takes a command line argument specifying the number of
1033 responses to accept. It also takes its defaults from the NBPLKUP
1034 environment variable.
1036 * nbprgstr may be used to register a name at any requested port.
1038 * afpd now logs if an illegal shell is used during login, instead of
1039 silently denying service.
1041 * A bug in afpd which caused position information for the directory
1042 children of the root of a volume to be ignored has been fixed.
1044 * Several typos in afpd which would cause include files necessary to
1045 ultrix to be skipped have been fixed.
1047 * atalkd will no long propagate routes to networks whose zone
1050 * atalkd no longer dumps core if it receives a ZIP GetMyZone request
1051 from a network whose zone it doesn't know. (Since this currently
1052 can only happen from off net, it's not precisely a legal request.)
1054 * pap and papd (optionally) no longer check the connection id in PAP
1055 DATA responses. Both also maintain the function code in non-first-packet
1056 PAP DATA responses. These changes are work-arounds to deal with
1057 certain AppleTalk printer cards, notably the BridgePort LocalTalk
1058 card for HP LJIIISIs.
1060 * pap no longer sends an EOF response to each PAP SENDDATA request,
1063 * A bug in papd which would cause it to return a random value when
1064 printing the procset to a piped printer has been fixed.
1066 * A bug relating to NBP on reverse-endian machines has been fixed.
1068 * atp_rsel() from libatalk now returns a correct value even if it
1069 hasn't recieved anything yet.
1071 * atalk_addr() from libatalk no longer accepts addresses in octal
1072 format, since AppleTalk addresses can have leading zeros. Also it
1073 checks that the separator character is a '.'.
1075 * Pseudo man pages for nbplkup, nbprgstr, and nbpunrgstr, have been
1078 * The example in the psf(8) man page is now correct.
1080 * The man pages for changed commands have been updated.
1082 * The README files for various machine have been updated