openafs status 2012 nothing and a lot
play

OpenAFS Status 2012 Nothing and a lot n Derrick Brashear and Jeffrey - PowerPoint PPT Presentation

Jun 05, 2023 •115 likes •434 views

OpenAFS Status 2012 Nothing and a lot n Derrick Brashear and Jeffrey Altman n The OpenAFS Project n 16 October 2012 Tuesday, October 16, 12 History n OpenAFS 1.6.0 was released on 1 September 2011. Just 3 years late n You

  1. OpenAFS Status 2012 Nothing and a lot n Derrick Brashear and Jeffrey Altman n The OpenAFS Project n 16 October 2012 Tuesday, October 16, 12

  2. History n OpenAFS 1.6.0 was released on 1 September 2011. – Just 3 years late… n You probably recall discussion of the “rx ping issue” last year. n Data corruption issues as well. n So we spent a lot of time making it right n 1.6.1 on 3 April 2012 Tuesday, October 16, 12

  3. OpenAFS 1.6.1 n rx ping avalanche – leak of AFS connections (with one Rx connection each) during server probes – issues with which Rx connection would exist – tracked per server so exactly one exists n corruption due to CopyOnWrite speedup – reverted Tuesday, October 16, 12

  4. OpenAFS 1.6.1 n Lion Kerberos fixes. (Ugh) n MacOS shutdown panic fixes. n Positional I/O bugfix to avoid losing data due to writing to an obsoleted filehandle. n Ubik log replay fixes n Proper bosserver rxbind support. Tuesday, October 16, 12

  5. OpenAFS 1.6.1a n MacOS client issues (new packets) – Special listener n MacOS Kerberos issues – Missing APIs n MacOS Preferences Pane issues – admin powers Tuesday, October 16, 12

  6. 1.6 on the Road Map openafs.org/roadmap.html 1.7 – The 1.7 series is the current Windows release branch 1.6 – The 1.6 series is the current “Stable” – The 1.6 series includes significant improvements to source code quality. n Real issues are not overwhelmed in bogus compilation warnings. Some real issues fixed too. – Last release without a Windows IFS n Sites wishing to test Windows IFS can use 1.7 series. Tuesday, October 16, 12

  7. 1.6 Platform summary n AIX 5 and 6 (through n MacOS 10.3, 10.4, 10.5, 10.6, 10.7, 10.8 6.3) (ppc, i386, amd64). n FreeBSD 7, 8, 9 and n NetBSD 2.x, 3.x, 4.x, current 5.x n HP-UX 11i v1 and v2 n OpenBSD 4.4, 4.5, n Irix 6.5 4.6, 4.7, 4.8. n Linux 2.4, 2.6, 3.x(*) n Solaris 2.6, 7, 8, 9, 10, (ia32, ia64, amd64, 11 (and OpenSolaris) ppc, ppc64, arm, n Windows XP, 2003, sparc, sparc64) Vista, 7 Tuesday, October 16, 12

  8. 1.6 new features n Demand-Attach Fileserver n Disconnected Operation n Linux improvements and page cache performance n MacOS 10 64 bit client and GUI client prefs n Rx performance, correctness n FUSE cache manager n Cache bypass n Cache readahead n Mountpoint-less volume access. Tuesday, October 16, 12

  9. Development divergence n Master – Where everything starts n 1.7 – Changes for Windows IFS builds – Still fast moving enough to not be “stable” n 1.6 – Stable branch for everything else n 1.4 – Legacy release branch – Rather long in the tooth Tuesday, October 16, 12

  10. Changes to master Rx enhancements (atomic counters, correctness and n performance fixes) Heimdal crypto (libdes killer) n New token kernel interface n Reading during ubik writes n krb5.conf-style preferences file support n Identity management layer for Rx n Copious code reorganization and cleanup n Libtool n Restructured MTU and PMTU handling code in Rx n * newer Linux kernel support n Tests n Tuesday, October 16, 12

  11. Challenges n Code cleanup makes patches not apply cleanly – Lots of porting work – Possible errors n Libtool makes Makefile changes not apply – Errors less likely, still issues Tuesday, October 16, 12

  12. Wither 1.6 n Plan for 1.6 to become 1.8 when Windows was ready n Master has diverged heavily from 1.6 – 1.7, less so from master – Additional testing of master needed Tuesday, October 16, 12

  13. Forward plan n 1.6.2 release – Linux kernel changes – Other substantial bug fixes n Mostly already pulled to 1.6.x n Absent many additional volunteer hours, anyway Tuesday, October 16, 12

  14. Status of Win7 Netbios Name Lookup Bug n 2011 EuroAFS: – Microsoft has officially declared the bug “WONT_FIX” – The IFS is the only fix that OpenAFS can provide to the community n Microsoft IFS PlugFest (Feb 2012) the root cause was identified – Not Netbios related!!!! Tuesday, October 16, 12

  15. SMB 1.x GSS SPNEGO authentication error The SMB specification permits the server to save a round trip in the n GSS SPNEGO negotiation by sending an initial security blob. Windows 7 / Server 2008 R2 SMB 1.x redirector ignores the blob after n initial connection. SMB 1.x reuses the original authentication context. n Workaround: n – The SMB 1.x server sends no security blob in the SMB_COM_NEGOTIATE response. – Force the client to send an initial GSS init_sec_context blob. The Deadlock: n – After a SMB disconnect, reconnections appear to fail due to SMB connection resets. – The SMB 1.x redirector will retry indefinitely – All threads with outstanding requests to \\AFS will block – Reboot required Tuesday, October 16, 12

  16. 1.6.1 n Workaround for Win7 SMB 1.x Reconnect Bug – GSS SPNEGO optimization error n Microsoft is working on a patch – Does anyone care? Tuesday, October 16, 12

  17. 1.6.1 – other changes n VBUSY failover n Improved idle dead time handling n NAT ping constraints (one rx conn) n Restrict processor affinity to 2 n Microsoft Advanced Firewall support Tuesday, October 16, 12

  18. 1.6.2 n VNOSERVICE processing – Indicates that file server did not process the RPC request – Triggered by file server idle dead timeout – Safe for client to retry Tuesday, October 16, 12

  19. 1.7 News n 1.7.17 is current – 16 releases since DESY conference n All 1.6.x improvements n Windows 8 and Server 2012 support n Explorer Shell integration n Short Name generation n Integrated Logon changes Tuesday, October 16, 12

  20. Windows Short Names n Short names are optional as of Windows 7 n 1.7 does not generate short names on Windows 8 and above n Anti-virus vendors are thrilled – Reduced memory and CPU utilization n Faster path evaluation n Short names can be disabled on Windows 7 in 1.7 – “ShortNames” TransarcAFSDaemon Parameter Tuesday, October 16, 12

  21. 1.6 -> 1.7 Upgrades n 1.7 and beyond will no longer provide: – Windows 2000 support – afscreds.exe – afs_config.exe – SMB Submount functionality – NSIS (EXE) installers for 32-bit Windows n Drive letter mappings to “Microsoft Network” must be deleted n Integrated Logon changes for LOCALHOST – Long delays when mis-configured Tuesday, October 16, 12

  22. Integrated Logon: Four Logon Domain Types n Local Machine Account – (LOCALHOST domain) n Domain or Forest Account n Domain or Forest Account NETBIOS- compatible name n Kerberos Principal mapped to a local or domain or forest account Tuesday, October 16, 12

  23. Integrated Logon: Per Domain configuration n Obtain AFS Tokens? n Alternate Kerberos realm? – Required for LOCALHOST n Tokens for additional cells? n Error handling? n Per user configuration – Name mapping? – All other options Tuesday, October 16, 12

  24. Integrated Logon: Registry Hierarchy n HKLM\SYSTEM\CurrentControlSet\Services \TransarcAFSDaemon\NetworkProvider \Domain key. n For example: – ...\Domain\LOCALHOST\ – ...\Domain\LOCALHOST\Administrator\ – ...\Domain\AD\ – ...\Domain\AD.EXAMPLE.ORG\ n Full domain name and the NETBIOS-name are separate entities. Tuesday, October 16, 12

  25. Known Issues n 10 second Extent processing stalls – Race between kernel and service n Object Information / File Control Block dependency race n Kernel memory pressure when large numbers of directory entries are evaluated Tuesday, October 16, 12

  26. Blue Screens of Death n BSOD reports are almost always triggered by Anti-virus or other filter driver interactions n Some sites experience none n Others experience weekly crashes Tuesday, October 16, 12

  27. Changes to governance n New gatekeeper – Ken Dreyer (USGS) n New approvers – Plan not yet fully implemented n Branch managers – Once we have volunteers – ... n Moving on the foundation again – foundation-discuss@openafs.org Tuesday, October 16, 12

  28. Money, money, money n Total cost so far for 1.7 is approaching $1.6 million n End user organizations are asked to spend $20 per in use copy Tuesday, October 16, 12

  29. Credit where due n Lots of people, lots of companies contributed to getting OpenAFS here. n http://www.openafs.org/credits.html Tuesday, October 16, 12

  30. Have a bug, send a report n Do not assume that someone else has reported your bug n BSODs are frequently triggered by environmental factors n Ability to reproduce locally is limited – openafs-bugs@openafs.org – http://www.openafs.org/support.html Tuesday, October 16, 12

  31. Talk back to us n Mailing lists: – Openafs-info http://lists.openafs.org/mailman/ listinfo/openafs-info – Openafs-devel http://lists.openafs.org/mailman/ listinfo/openafs-devel n IRC chat room: #openafs on freenode n Jabber developer MUC: openafs@conference.openafs.org Tuesday, October 16, 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

OpenAFS on Windows: A Status Report Jeffrey Altman The OpenAFS Project 16 October 2012 Status

OpenAFS on Windows: A Status Report Jeffrey Altman The OpenAFS Project 16 October 2012 Status

OpenAFS on Windows: A Status Report Jeffrey Altman The OpenAFS Project 16 October 2012 Status of Win7 Netbios Name Lookup Bug 2011 EuroAFS: Microsoft has officially declared the bug WONT_FIX The IFS is the only fix that

294 views • 17 slides
Status and Futures Derrick Brashear Jeffrey Altman What is OpenAFS? OpenAFS is a global,

Status and Futures Derrick Brashear Jeffrey Altman What is OpenAFS? OpenAFS is a global,

Status and Futures Derrick Brashear Jeffrey Altman What is OpenAFS? OpenAFS is a global, federated, location independent open source storage system that provides pervasive data access from a broad range of heterogeneous devices scaling

392 views • 15 slides
Linux Kernel Evolution vs OpenAFS Marc Dionne Edinburgh - 2012 The stage Linux is widely

Linux Kernel Evolution vs OpenAFS Marc Dionne Edinburgh - 2012 The stage Linux is widely

Linux Kernel Evolution vs OpenAFS Marc Dionne Edinburgh - 2012 The stage Linux is widely deployed as an OpenAFS client platform Many large OpenAFS sites rely heavily on Linux on both servers and clients The OpenAFS Linux client

681 views • 30 slides
Integration of AFS/OSD into OpenAFS Hartmut Reuter reuter@rzg.mpg.de 2012-10-17

Integration of AFS/OSD into OpenAFS Hartmut Reuter reuter@rzg.mpg.de 2012-10-17

R echen Z entrum G arching der Max-Planck-Gesellschaft Integration of AFS/OSD into OpenAFS Hartmut Reuter reuter@rzg.mpg.de 2012-10-17 European AFS and Kerberos Conference, Edinburgh Hartmut Reuter R echen Z

621 views • 34 slides
Profiles with OpenAFS Lars Schimmer European OpenAFS Conference August 10, 2010 Why at all?

Profiles with OpenAFS Lars Schimmer European OpenAFS Conference August 10, 2010 Why at all?

Windows Roaming Profiles with OpenAFS Lars Schimmer European OpenAFS Conference August 10, 2010 Why at all? Central management Central backup Central templates No data on workstations Users get their own setup on every

354 views • 10 slides
OpenAFS as Persistent Storage inside Kubernetes using Container Storage Interface plugin for

OpenAFS as Persistent Storage inside Kubernetes using Container Storage Interface plugin for

OpenAFS as Persistent Storage inside Kubernetes using Container Storage Interface plugin for OpenAFS Yadavendra Yadav T odd DeSantis OpenAFS WorkShop 2019 Pittsburgh, US Application Modernization Evolution of Container Agenda

542 views • 27 slides
DTrace/SystemTap SDT Probes in OpenAFS Andrew Deason June 2019 OpenAFS Workshop 2019 1

DTrace/SystemTap SDT Probes in OpenAFS Andrew Deason June 2019 OpenAFS Workshop 2019 1

DTrace/SystemTap SDT Probes in OpenAFS Andrew Deason June 2019 OpenAFS Workshop 2019 1 Userspace DTrace Background Specify triggers on events (function calls) No special support needed Complex functionality builtin threading

310 views • 14 slides
OpenAFS development a.k.a. That thing lurking just over the hill is version 1.4 Derrick

OpenAFS development a.k.a. That thing lurking just over the hill is version 1.4 Derrick

OpenAFS development a.k.a. That thing lurking just over the hill is version 1.4 Derrick Brashear The OpenAFS project 26 March 2004 Weve come so far... Large file support now also in the server (currently namei only) HP-UX

435 views • 15 slides
OpenAFS Audit Interface Enhancements Cheyenne Wills OpenAFS 2019 Workshop 1 Overview

OpenAFS Audit Interface Enhancements Cheyenne Wills OpenAFS 2019 Workshop 1 Overview

OpenAFS Audit Interface Enhancements Cheyenne Wills OpenAFS 2019 Workshop 1 Overview Multiple Interfaces Multiple Instances of an interface New FIFO (named pipe) interface Collecting information from the audit facility 2

422 views • 17 slides
OpenAFS Release Team Report Michael Meffie June 19, 2019 Michael Meffie OpenAFS Release Team

OpenAFS Release Team Report Michael Meffie June 19, 2019 Michael Meffie OpenAFS Release Team

OpenAFS Release Team Report Michael Meffie June 19, 2019 Michael Meffie OpenAFS Release Team Report June 19, 2019 1 / 17 OpenAFS Release Team Weekly meetings via jabber on Fridays jabber: release-team@conference.openafs.org email:

309 views • 17 slides
Introducing a common interface to access AFS statistics Marcio Barbosa 2019 OpenAFS Workshop

Introducing a common interface to access AFS statistics Marcio Barbosa 2019 OpenAFS Workshop

Introducing a common interface to access AFS statistics Marcio Barbosa 2019 OpenAFS Workshop AGENDA Motivation Problem Solution StatsStore StatsStore and OpenAFS Other platforms Collectd Collectd and OpenAFS Links MOTIVATION

410 views • 21 slides
Site Report OpenAFS and Kerberos at the Max Planck Institute for Gravitational Physics October

Site Report OpenAFS and Kerberos at the Max Planck Institute for Gravitational Physics October

Site Report OpenAFS and Kerberos at the Max Planck Institute for Gravitational Physics October 18th, 2012 Andreas Donath Systemsadministrator MPI for Gravitational Physics European AFS and Kerberos Conference 2012 Max - Planck - Institut fr

370 views • 16 slides
Andrew Deason Sine Nomine Associates European AFS and Kerberos Conference 2012 Agenda Why is

Andrew Deason Sine Nomine Associates European AFS and Kerberos Conference 2012 Agenda Why is

OpenAFS Out-of-Band TCP Andrew Deason Sine Nomine Associates European AFS and Kerberos Conference 2012 Agenda Why is AFS so slow? Project Background OOB Design Current Status (numbers!) Future Directions 2 Why is AFS so

1.31k views • 28 slides
Rx Listener Performance or: How to Saturate a 10GbE Link with an OpenAFS Rx File- server Andrew

Rx Listener Performance or: How to Saturate a 10GbE Link with an OpenAFS Rx File- server Andrew

Rx Listener Performance or: How to Saturate a 10GbE Link with an OpenAFS Rx File- server Andrew Deason June 2019 OpenAFS Workshop 2019 1 Overview Problem and background Baseline: ~1.7 gbps foreach(why_are_we_so_slow) :

540 views • 38 slides
Static analysis of OpenAFS code base Cheyenne Wills OpenAFS 2019 Workshop Overview What is

Static analysis of OpenAFS code base Cheyenne Wills OpenAFS 2019 Workshop Overview What is

Static analysis of OpenAFS code base Cheyenne Wills OpenAFS 2019 Workshop Overview What is static analysis What are the tools Analysis of the OpenAFS code base What is static analysis Static analysis is performed by analysing

556 views • 20 slides
OpenAFS Native Mountpoints on Linux Andrew Deason June 2019 OpenAFS Workshop 2019 1 Background

OpenAFS Native Mountpoints on Linux Andrew Deason June 2019 OpenAFS Workshop 2019 1 Background

OpenAFS Native Mountpoints on Linux Andrew Deason June 2019 OpenAFS Workshop 2019 1 Background Single mountpoints are pretty simple: 2 Background What about multiple mountpoints? What is ..? 3 Dentries and Inodes Inodes:

744 views • 15 slides
ECOSYSTEM PRODUCTS FUTURE THE ECOSYSTEM TIZEN 2.1 ADDITIONAL HTML5 APIs RICH HOME

ECOSYSTEM PRODUCTS FUTURE THE ECOSYSTEM TIZEN 2.1 ADDITIONAL HTML5 APIs RICH HOME

ECOSYSTEM PRODUCTS FUTURE THE ECOSYSTEM TIZEN 2.1 ADDITIONAL HTML5 APIs RICH HOME SCREEN EXPERIENCE PERFORMANCE OPTIMIZATION MOBILE Tizen 2 New Major Features [Web] WebKit2 based web framework [Web] State-of-the-art

573 views • 35 slides
N etwork safeguards are the first protec- tion barrier of IT sys- tem resources against

N etwork safeguards are the first protec- tion barrier of IT sys- tem resources against

ISSA Journal | October 2007 ISSA The Global Voice of Information Security The Principles of Network Security Design By Mariusz Stawowski Deployment of an effective and scalable network security system requires proper designing

320 views • 3 slides
Trackin acking g th the e Rus ussi sian n Bus usin ines ess s Netw twork rk (RBN)

Trackin acking g th the e Rus ussi sian n Bus usin ines ess s Netw twork rk (RBN)

Trackin acking g th the e Rus ussi sian n Bus usin ines ess s Netw twork rk (RBN) Knowing and understanding the RBN is a useful objective, but surely the main goal is to stop them? RBNexploit.blogspot.com Cambridge University

554 views • 34 slides
Privacy (Section 7.2.5 on Privacy Attacks) sws2 1 [Peter Steiner,1993] 2 myth

Privacy (Section 7.2.5 on Privacy Attacks) sws2 1 [Peter Steiner,1993] 2 myth

Software and Web Security 2 More attacks on Clients: Privacy (Section 7.2.5 on Privacy Attacks) sws2 1 [Peter Steiner,1993] 2 myth reality Welcome user29. (IP address: 131.174.16.131) RU Nijmegen, NL; male german

1.11k views • 58 slides
Workshop Cooperation at Academic Informatics Education across Balkan Countries and Beyond: The

Workshop Cooperation at Academic Informatics Education across Balkan Countries and Beyond: The

Workshop Cooperation at Academic Informatics Education across Balkan Countries and Beyond: The Impact of Informatics to Society Jelsa, Croatia 2 nd 6 th September 2019 ABSTRACTS Contents Costin Bdic , Amelia Bdic, Elinda Kajo Mee,

850 views • 48 slides
!"#$%&'&()#%*"+,+( H2/:;2*20"(I(!$433,#0(

!"#$%&'&()#%*"+,+( H2/:;2*20"(I(!$433,#0(

!"#$%&'&()#%*"+,+( H2/:;2*20"(I(!$433,#0( H2/:;2*20,&%*(%#%*">4/+(84&23:2+4(72/8+(,#$2(/22$+( -.$/%&'#0(,#12/3%'2#(1/23($4.$(/456,/4+(+"#$%&'&(

667 views • 7 slides
Why Antivirus Software whoami IT-Security Consultant Doing pentesting since two years

Why Antivirus Software whoami IT-Security Consultant Doing pentesting since two years

Why Antivirus Software whoami IT-Security Consultant Doing pentesting since two years This talk is based on private research Before that experience as windows/linux/network admin, a little as web developer and so on...

1.06k views • 49 slides
Tulane SPHTM Information Technology (SPHTM-IT) Spring 2020 http://sph.tulane.edu/grit Oscar

Tulane SPHTM Information Technology (SPHTM-IT) Spring 2020 http://sph.tulane.edu/grit Oscar

Tulane SPHTM Information Technology (SPHTM-IT) Spring 2020 http://sph.tulane.edu/grit Oscar Davila Director for IT odavila@tulane.edu Jason Chamberlain- jchambe2@tulane.edu John Gerone gerone@tulane.edu Mir Islam

1k views • 15 slides

More recommend