8 Data encryption Meno Abels (see projects)
9 Communication encryption Meno Abels
10 Version 1.35 Kern (see below)
11 ========================================================
13 1.35 Items to do for release:
15 - Fix error handling in spooling both data and attribute.
16 - Add new DCR calling sequences everywhere in SD. This will permit
17 simultaneous use of multiple devices by a single job.
18 - Look at patches/bacula_db.b2z postgresql that loops during restore.
20 - Perhaps add read/write programs and/or plugins to FileSets.
21 - Implement Ignore FileSet Change.
23 - Add bscan to four-concurrent-jobs regression.
25 - Add IPv6 to regression
26 - Alternative to static linking "ldd prog" save all binaries listed,
27 restore them and point LD_LIBRARY_PATH to them.
28 - Document a get out of jail procedure if everything breaks if
29 you lost/broke the Catalog -- do the same for "I know my
30 file is there how do I get it back?".
31 - Test/doc Tape Alerts
32 - Doc update AllFromVol
33 - Doc dbcheck eliminate orphaned clients.
34 - Doc new duration time input editing.
35 - Doc -p option in stored
36 - Document that console commands can be abbreviated.
39 Documentation to do: (any release a little bit at a time)
40 - Document query file format.
41 - Add more documentation for bsr files.
42 - Document problems with Verify and pruning.
43 - Document how to use multiple databases.
44 - VXA drives have a "cleaning required"
45 indicator, but Exabyte recommends preventive cleaning after every 75
48 In this context, it should be noted that Exabyte has a command-line
49 vxatool utility available for free download. (The current version is
50 vxatool-3.72.) It can get diagnostic info, read, write and erase tapes,
51 test the drive, unload tapes, change drive settings, flash new firmware,
53 Of particular interest in this context is that vxatool <device> -i will
54 report, among other details, the time since last cleaning in tape motion
55 minutes. This information can be retrieved (and settings changed, for
56 that matter) through the generic-SCSI device even when Bacula has the
57 regular tape device locked. (Needless to say, I don't recommend
58 changing tape settings while a job is running.)
59 - Lookup HP cleaning recommendations.
60 - Lookup HP tape replacement recommendations (see trouble shooting autochanger)
61 - Add more obvious documentation of @ for conf files.
62 - Document doing table repair
64 Testing to do: (painful)
67 For 1.37 Testing/Documentation:
68 - Fix find_device in stored/dircmd.c:462 (see code)
69 - Add db check test to regression. Test each function like delete,
71 - If you use restore replace=never, the directory attributes for
72 non-existent directories will not be restored properly.
75 - see lzma401.zip in others directory for new compression
77 - Minimal autochanger handling in Bacula and in btape.
78 - Look into how tar does not save sockets and the possiblity of
79 not saving them in Bacula (Martin Simmons reported this).
80 The next two lines will show them.
81 localmounts=`awk '/ext/ { print $2 }' /proc/mounts` # or whatever
82 find $localmounts -xdev -type s -ls
83 - Fix restore jobs so that multiple jobs can run if they
84 are not using the same tape(s).
85 - Allow the user to select JobType for manual pruning/purging.
86 - Look at adding Client run command that will use the
87 port opened by the client.
88 - bscan does not put first of two volumes back with all info in
90 - Implement the FreeBSD nodump flag in chflags.
91 - Figure out how to make named console messages go only to that
92 console and to the non-restricted console (new console class?).
93 - Make restricted console prompt for password if *ask* is set or
94 perhaps if password is undefined.
95 - Implement "from ISO-date/time every x hours/days/weeks/months" in
97 ==== from Marc Schoechlin
98 - the help-command should be more verbose
99 (it should explain the paramters of the different
101 -> it´s time-comsuming to consult the manual anytime
102 you need a special parameter
103 -> maybe it´s more easy to maintain this, if the
104 descriptions of that commands are outsourced to
106 - the cd-command should allow complete paths
107 i.e. cd /foo/bar/foo/bar
108 -> if a customer mails me the path to a certain file,
109 it´s faster to enter the specified directory
110 - if the password is not configured in bconsole.conf
111 you should be asked for it.
112 -> sometimes you like to do restore on a customer-machine
113 which shouldn´t know the password for bacula.
114 -> adding the password to the file favours admins
115 to forget to remove the password after usage
117 the protection of that file is less important
118 - long-listed-output of commands should be scrollable
119 like the unix more/less-command does
120 -> if someone runs 200 and more machines, the lists could
121 be a little long and complex
122 - command-output should be shown column by column
123 to reduce scrolling and to increase clarity
125 - lsmark should list the selected files with full
127 - wildcards for selecting and file and directories would be nice
128 - any actions should be interuptable with STRG+C
129 - command-expansion would be pretty cool
131 - Compaction of Disk space by "migrating" Volumes that have pruned
132 Jobs (what criteria? size, #jobs, time).
133 - Add prune all command
134 - Document fact that purge can destroy a part of a restore by purging
135 one volume while others remain valid -- perhaps mark Jobs.
136 - Add multiple-media-types.txt
137 - look at mxt-changer.html
138 - Make ? do a help command (no return needed).
139 - Implement restore directory.
140 - Add All Local Partitions = yes to new style saves.
141 - Document streams and how to implement them.
142 - Possibly implement "Ensure Full Backup = yes" looks for a failed full backup
143 and upgrades the current backup if one exists.
144 - Check that barcode reading and update slots scan works.
145 - Try not to re-backup a file if a new hard link is added.
146 - Add feature to backup hard links only, but not the data.
147 - Add "All Local = yes" option to save to include all local partitions.
148 - Fix stream handling to be simpler.
149 - Add Priority and Bootstrap to Run a Job.
150 - Eliminate Restore "Run Restore Job" prompt by allowing new "run command
152 - Remove View FileSet button from Run a Job dialog.
153 - Don't count higher level non-saved directories in Files expected
155 - Handle prompt for restore job at end of Restore command.
156 - Add display of total selected files to Restore window.
157 - Add tree pane to left of window.
158 - Add progress meter.
159 - Polling does not work for restore. It tries a number of times,
160 gives up, and crashes the SD.
161 - Lock jcr_chain when doing attach/detach in acquire.c
162 - Add assert in free_jcr if attach/detach chain active.
163 - Max wait time or max run time causes seg fault -- see runtime-bug.txt
164 - Document writing to a CD/DVD with Bacula.
165 - Add check for tape alerts.
166 - Add a "base" package to the window installer for pthreadsVCE.dll
167 which is needed by all packages.
168 - Add message to user to check for fixed block size when the forward
169 space test fails in btape.
170 - When unmarking a directory check if all files below are unmarked and
171 then remove the + flag -- in the restore tree.
172 - Possibly implement: Action = Unmount Device="TapeDrive1" in Admin jobs.
173 - Setup lrrd graphs: (http://www.linpro.no/projects/lrrd/) Mike Acar.
174 - Revisit the question of multiple Volumes (disk) on a single device.
175 - Finish SIGHUP work.
176 - Check that all change in wait status in the SD are
177 signaled to the Director.
178 - Add a block copy option to bcopy.
179 - Investigate adding Mac Resource Forks.
180 - Finish work on Gnome restore GUI.
181 - Fix "llist jobid=xx" where no fileset or client exists.
182 - Check pruning of restore jobs.
184 it seems to be complaining about 12:00pm which should be a valid 12
185 hour time. I changed the time to 11:59am and everything works fine.
186 Also 12:00am works fine. 0:00pm also works (which I don't think
187 should). None of the values 12:00pm - 12:59pm work for that matter.
188 - Add level to estimate command.
189 - For each job type (Admin, Restore, ...) require only the really necessary
191 - Fix option 2 of restore -- list where file is backed up -- require Client,
192 then list last 20 backups.
193 - Add all pools in Dir conf to DB also update them to catch changed
194 LabelFormats and such.
195 - Update volumes FromPool=xxx does all volumes.
196 - Pass Director resource name as an option to the Console.
197 - Add a "batch" mode to the Console (no unsolicited queries, ...).
198 - Add code to check for tape alerts -- tapeinfo.
199 - Make sure list of Volumes needed is in correct order for restore.
201 - Remove paths (and files that reference them) that have no trailing slash
202 in dbcheck -- or add a trailing slash.
203 - Remove Filenames (and files that reference them) that have a trailing
204 slash in dbcheck -- or remove the trailing slash.
205 - Remove orphaned paths/filenames by copying them to a new table with a
206 reference count, then mark all referenced files/paths and remove unreferenced
208 - Add a .list all files in the restore tree (probably also a list all files)
209 Do both a long and short form.
210 - Allow browsing the catalog to see all versions of a file (with
211 stat data on each file).
212 - Restore attributes of directory if replace=never set but directory
214 - Allow "delete job jobid=xxx,yyy,aaa-bbb" i.e. list + ranges.
215 - Use SHA1 on authentication if possible.
216 - See comtest-xxx.zip for Windows code to talk to USB.
217 - Make btape accept Device Names in addition to Archive names.
218 - Add Events and Perl scripting.
219 - Add John's appended files:
220 Appended = { /files/server/logs/http/*log }
221 and such files would be treated as follows.On a FULL backup, they would
222 be backed up like any other file.On an INCREMENTAL backup, where a
223 previous INCREMENTAL or FULL was already in thecatalogue and the length
224 of the file wasgreater than the length of the last backup, only thedata
225 added since the last backup will be dumped.On an INCREMENTAL backup, if
226 the length of the file is less than thelength of the file with the same
227 name last backed up, the completefile is dumped.On Windows systems, with
228 creation date of files, we can be evensmarter about this and not count
229 entirely upon the length.On a restore, the full and all incrementals
230 since it will beapplied in sequence to restore the file.
231 - Add a regression test for dbcheck.
232 - Add disk seeking on restore. - Allow
233 for optional cancelling of SD and FD in case DIR
234 gets a fatal error. Requested by Jesse Guardiani <jesse@wingnet.net>
235 - Bizarre message: Error: Could not open WriteBootstrap file:
236 - Build console in client only build.
237 - Add "limit=n" for "list jobs"
238 - Check new HAVE_WIN32 open bits.
239 - Check if the tape has moved before writing.
240 - Handling removable disks -- see below:
241 - Multiple drive autochanger support -- see below.
242 - Keep track of tape use time, and report when cleaning is necessary.
243 - Fix FreeBSD mt_count problem.
244 - Add FromClient and ToClient keywords on restore command (or
245 BackupClient RestoreClient).
246 - Automatic "update slots" on user configuration directive when a
248 - Implement a JobSet, which groups any number of jobs. If the
249 JobSet is started, all the jobs are started together.
250 Allow Pool, Level, and Schedule overrides.
251 - Enhance cancel to timeout BSOCK packets after a specific delay.
252 - When I restore to Windows the Created, Accessed and Modifiedtimes are
253 those of the time of the restore, not those of the originalfile.
254 The dates you will find in your restore log seem to be the original
256 - Volume "add"ed to Pool gets recycled in first use. VolBytes=0
257 - If a tape is recycled while it is mounted, Stanislav Tvrudy must do an
258 additional mount to deblock the job.
260 bscan: sql_update.c:65 UPDATE File SET MD5='Ij+5kwN6TFIxK+8l8+/I+A' WHERE FileId=0
261 bscan: bscan.c:1074 Could not add MD5/SHA1 to File record. ERR=sql_update.c:65 Update problem: affected_rows=0
262 - Do scheduling by UTC using gmtime_r() in run_conf, scheduler, and
263 ua_status.!!! Thanks to Alan Brown for this tip.
264 - Look at updating Volume Jobs so that Max Volume Jobs = 1 will work
265 correctly for multiple simultaneous jobs.
266 - Correct code so that FileSet MD5 is calculated for < and | filename
268 - Mark Volume in error on error from WEOF.
269 - Implement the Media record flag that indicates that the Volume does disk
271 - Implement VolAddr, which is used when Volume is addressed like a disk,
272 and form it from VolFile and VolBlock.
273 - Make multiple restore jobs for multiple media types specifying
274 the proper storage type.
275 - Implement MediaType keyword in bsr?
276 - Fix fast block rejection (stored/read_record.c:118). It passes a null
277 pointer (rec) to try_repositioning().
278 - Look at extracting Win data from BackupRead.
279 - Having dashes in filenames apparently creates problems for restore
280 by filename??? hard to believe.
281 - Implement RestoreJobRetention? Maybe better "JobRetention" in a Job,
282 which would take precidence over the Catalog "JobRetention".
283 - Implement Label Format in Add and Label console commands.
284 - Possibly up network buffers to 65K. Put on variable.
285 - Put email tape request delays on one or more variables. User wants
286 to cancel the job after a certain time interval. Maximum Mount Wait?
287 - Job, Client, Device, Pool, or Volume?
288 Is it possible to make this a directive which is *optional* in multiple
289 resources, like Level? If so, I think I'd make it an optional directive
290 in Job, Client, and Pool, with precedence such that Job overrides Client
291 which in turn overrides Pool.
292 - Print a message when a job starts if the conf file is not current.
294 - Spooling ideas taken from Volker Sauer's and other's emails:
295 > IMHO job spooling should be turned on
301 > where and 2) overrides 1) and 3) is independent.
303 Yes, this is the minimum that I think is necessary.
307 > It should be switched by job, because the job that backs up the machine
308 > with the bacula-sd on doesn't need spooling.
309 > It should be switched by schedule, because for full-backups I don't need
310 > spooling, so I can switch it off (because the network faster then the
313 True, with the exception that if you have enough disk spool space,
314 and you want to run concurrent jobs, spooling can eliminate the block
315 interleaving restore inefficiencies.
317 > And you should be able to turn it of by sd for sd-machines with low disk
318 > capacity or if you just don't need or want this feature.
321 > - definitly the possibility for multipe spool direcories
323 Having multiple directories is no problem -- having different maximum
324 sizes creates specification problems. At some point, I will probably
325 have a common SD pool of spool directories as well as a set of
326 private spool directories for each device. The first implementation
327 will be a set of private spool directories for each device since
328 managing a global pool with a bunch of threads writing into the same
329 directory is *much* more complicated and prone to error.
331 > - the ability to spool parts of a backup (not the whole client)
333 This may change in the future, but for the moment, it will spool
334 either to a job high water mark, or until the directory is full
335 (reaches max spool size or I/O error). It will then write to tape,
336 truncate the spool file, and begin spooling again.
338 > - spooling while writing to tape
340 Not within a job, but yes, if you run concurrent jobs -- each is a
341 different thread. Within a job could be a feature, but *much* later.
343 > - parallel spooling (like parallel jobs/ concurrent jobs) of clients
345 Yes, this is one of my main motivations for doing it (aside from
346 eliminating tape "shoe shine" during incremental backups.
348 > - flushing a backup that only went to disk (like amflush in amanda)
350 This will be a future feature, since spooling is different from backing
351 up to disk. The future feature will be "migration" which will move a job
352 from one backup Volume to another.
354 - New Storage specifications:
355 Passed to SD as a sort of BSR record called Storage Specification
359 MediaType -> Next MediaType
361 Device -> Next Device
362 Write Copy Resource that makes a copy of a resource.
364 Allow multiple Storage specifications
372 Allow Multiple Pool specifications (note, Pool currently
374 Allow Multiple MediaType specifications
375 Allow Multiple Device specifications
376 Perhaps keep this in a single SSR
377 Tie a Volume to a specific device by using a MediaType that
378 is contained in only one device.
379 In SD allow Device to have Multiple MediaTypes
382 - Look at www.nu2.nu/pebuilder as a helper for full windows
384 Ideas from Jerry Scharf:
385 First let's point out some big pluses that bacula has for this
387 more importantly it's active. Thank you so much for that
388 even more important, it's not flaky
389 it has an open access catalog, opening many possibilities
390 it's pushing toward heterogeneous systems capability
392 I don't remember an include file directive for config files
393 (not filesets, actual config directives)
394 can you check the configs without starting the daemon?
395 some warnings about possible common mistakes
397 doing the testing and blessing of concurrent backup writes
398 this is absolutely necessary in the enterprise
399 easy user recovery GUI with full access checking
400 Macintosh file client
401 macs are an interesting niche, but I fear a server is a rathole
402 working bare iron recovery for windows
403 much better handling on running config changes
404 thinking through the logic of what happens to jobs in progress
405 the option for inc/diff backups not reset on fileset revision
406 a) use both change and inode update time against base time
407 b) do the full catalog check (expensive but accurate)
408 sizing guide (how much system is needed to back up N systems/files)
409 consultants on using bacula in building a disaster recovery system
411 or how to get at fancy things that one could do with bacula
412 logwatch code for bacula logs (or similar)
413 linux distro inclusion of bacula (brings good and bad, but necessary)
414 win2k/XP server capability (icky but you asked)
415 support for Oracle database ??
417 - Look at adding SQL server and Exchange support for Windows.
418 - Restore: Enter Filename: 'C:/Documents and Settings/Comercial/My
419 Documents/MOP/formulário de registro BELAS ARTES.doc' causes Bacula to
421 - Each DVD-RAM disk would be a volume, just like each tape is
422 a volume. It's a 4.7GB media with random access, but there's nothing about
423 it that I can see that makes it so different than a tape from bacula's
424 perspective. Why couldn't I back up to a bare floppy as a volume (ignoring
426 - Make dev->file and dev->block_num signed integers so that -1 can
427 be an invalid value which happens with BSR.
428 - Create VolAddr for disk files in place of VolFile and VolBlock. This
429 is needed to properly specify ranges.
430 - Print bsmtp output to job report so that problems will be seen.
431 - Pass the number of files to be restored to the FD for reporting
432 - Add progress of files/bytes to SD and FD.
433 - Don't continue Restore if no files selected.
434 - Print warning message if FileId > 4 billion
435 - do a "messages" before the first prompt in Console
436 - Add a date and time stamp at the beginning of every line in the
437 Job report (Volker Sauer).
438 - Client does not show busy during Estimate command.
439 - Implement Console mtx commands.
440 - Add a default DB password to MySQL.
441 GRANT all privileges ON bacula.* TO bacula@localhost IDENTIFIED BY
444 - Implement a Mount Command and an Unmount Command where
445 the users could specify a system command to be performed
446 to do the mount, after which Bacula could attempt to
447 read the device. This is for Removeable media such as a CDROM.
448 - Most likely, this mount command would be invoked explicitly
449 by the user using the current Console "mount" and "unmount"
450 commands -- the Storage Daemon would do the right thing
451 depending on the exact nature of the device.
452 - As with tape drives, when Bacula wanted a new removable
453 disk mounted, it would unmount the old one, and send a message
454 to the user, who would then use "mount" as described above
455 once he had actually inserted the disk.
456 - Implement dump/print label to UA
457 - Implement disk spooling. Two parts: 1. Spool to disk then
458 immediately to tape to speed up tape operations. 2. Spool to
459 disk only when the tape is full, then when a tape is hung move
461 - Scratch Pool where the volumes can be re-assigned to any Pool.
462 - bextract is sending everything to the log file ****FIXME****
463 - Add Progress command that periodically reports the progress of
465 - Restrict characters permitted in a Resource name, and don't permit
467 - Allow multiple Storage specifications (or multiple names on
468 a single Storage specification) in the Job record. Thus a job
469 can be backed up to a number of storage devices.
470 - Implement some way for the File daemon to contact the Director
471 to start a job or pass its DHCP obtained IP number.
472 - Implement multiple Consoles.
473 - Implement a query tape prompt/replace feature for a console
475 Two jobs ready to go, first one blocked waiting for media
476 Cancel 2nd job ("waiting execution" one)
479 - Copy console @ code to gnome2-console
480 - Make AES the only encryption algorithm see
481 http://csrc.nist.gov/CryptoToolkit/aes/). It's
482 an officially adopted standard, has survived peer
483 review, and provides keys up to 256 bits.
484 - Think about how space could be freed up on a tape -- perhaps this
485 is a Merge or Compact feature that is needed.
486 - Modify FileSet, did not upgrade the current Increment job, but
487 waited for the next job to be upgraded.
488 - Take a careful look at SetACL http://setacl.sourceforge.net
489 - Implement a where command for the tree telling where a file
491 - Take a careful look at Level for the estimate command, maybe make
492 it a command line option.
493 - Add Volume name to "I cannot write on this volume because"
494 - Make tree walk routines like cd, ls, ... more user friendly
495 by handling spaces better.
496 - Write your PID file and chown root:wheel before drop.
497 - Make sure there is no symlink in a file before creating a
499 - Look at mktemp or mkstemp(3).
500 mktemp and mkstemp create files with predictable names too. That's
501 not the vulnerability. The vulnerability is in creating files without
502 using the O_EXCL flag, which means "only create this file if it doesn't
503 exist, including if the file is a dangling symlink."
505 It is *NOT* enough to do the equivalent of
507 if doesn't exist $filename
508 then create $filename
510 because between the test and the create another process could have
511 gotten the CPU and created the file. You must use atomic functions
512 (those that don't get interrupted by other processes) and O_EXCL is
513 the only way for this particular example.
514 - Automatically create pools, but instead of looking for what
515 in in Job records, walk through the pool resources.
516 - Check and double check tree code, why does it take so long?
517 - Add device name to "Current Volume not acceptable because ..."
518 - Make sure that Bacula rechecks the tape after the 20 min wait.
519 - Set IO_NOWAIT on Bacula TCP/IP packets.
520 - Try doing a raw partition backup and restore by mounting a
523 Yes, it would allow to highly automatic the request for new tapes. If a
524 tape is empty, bacula reads the barcodes (native or simulated), and if
525 an unused tape is found, it runs the label command with all the
526 necessary parameters.
528 By the way can bacula automatically "move" an empty/purged volume say
529 in the "short" pool to the "long" pool if this pool runs out of volume
531 - Eliminate orphaned jobs: dbcheck, normal pruning, delete job command.
532 Hm. Well, there are the remaining orphaned job records:
534 | 105 | Llioness Save | 0000-00-00 00:00:00 | B | D | 0 | 0 | f |
535 | 110 | Llioness Save | 0000-00-00 00:00:00 | B | I | 0 | 0 | f |
536 | 115 | Llioness Save | 2003-09-10 02:22:03 | B | I | 0 | 0 | A |
537 | 128 | Catalog Save | 2003-09-11 03:53:32 | B | I | 0 | 0 | C |
538 | 131 | Catalog Save | 0000-00-00 00:00:00 | B | I | 0 | 0 | f |
540 As you can see, three of the five are failures. I already deleted the
541 one restore and one other failure using the by-client option. Deciding
542 what is an orphaned job is a tricky problem though, I agree. All these
543 records have or had 0 files/ 0 bytes, except for the restore. With no
544 files, of course, I don't know of the job ever actually becomes
545 associated with a Volume.
547 (I'm not sure if this is documented anywhere -- what are the meanings of
548 all the possible JobStatus codes?)
550 Looking at my database, it appears to me as though all the "orphaned"
551 jobs fit into one of two categories:
553 1) The Job record has a StartTime but no EndTime, and the job is not
556 2) The Job record has an EndTime, indicating that it completed, but
557 it has no associated JobMedia record.
560 This does suggest an approach. If failed jobs (or jobs that, for some
561 other reason, write no files) are associated with a volume via a
562 JobMedia record, then they should be purged when the associated volume
563 is purged. I see two ways to handle jobs that are NOT associated with a
566 1) purge them automatically whenever any volume is manually purged;
568 2) add an option to the purge command to manually purge all jobs with
569 no associated volume.
571 I think Restore jobs also fall into category 2 above .... so one might
572 want to make that "The Job record has an EndTime,, but no associated
573 JobMedia record, and is not a Restore job."
574 - make "btape /tmp" work.
575 - Make sure a rescheduled job is properly reported by status.
576 - Walk through the Pool records rather than the Job records
577 in dird.c to create/update pools.
578 - What to do about "list files job=xxx".
579 - When job rescheduled, status gives is waiting for Client Rufus
580 to connect to Storage File. Dir needs to inform SD that job
582 - Make Dmsg look at global before calling subroutine.
583 - Enable trace output at runtime for Win32
584 - Available volumes for autochangers (see patrick@baanboard.com 3 Sep 03
585 and 4 Sep) scan slots.
586 - Get and test MySQL 4.0
587 - Do a complete audit of all pthreads_mutex, cond, ... to ensure that
588 any that are dynamically initialized are destroyed when no longer used.
589 - Look at how fuser works and /proc/PID/fd that is how Nic found the
590 file descriptor leak in Bacula.
591 - Implement WrapCounters in Counters.
592 - Turn on SIGHUP in dird.c and test.
593 - Use system dependent calls to get more precise info on tape errors.
594 - Add heartbeat from FD to SD if hb interval expires.
595 - Suppress read error on blank tape when doing a label.
596 - Can we dynamically change FileSets?
597 - If pool specified to label command and Label Format is specified,
598 automatically generate the Volume name.
599 - Why can't SQL do the filename sort for restore?
600 - Look at libkse (man kse) for FreeBSD threading.
601 - Look into Microsoft Volume Shadowcopy Service VSS for backing
602 up system state components (Active Directory, System Volume, ...)
603 - Add ExhautiveRestoreSearch
604 - Look at the possibility of loading only the necessary
605 data into the restore tree (i.e. do it one directory at a
606 time as the user walks through the tree).
607 - Possibly use the hash code if the user selects all for a restore command.
608 - Orphaned Dir buffer at parse_conf.c:373 => store_dir
609 - Fix "restore all" to bypass building the tree.
610 - Prohibit backing up archive device (findlib/find_one.c:128)
611 - Implement Release Device in the Job resource to unmount a drive.
612 - Implement Acquire Device in the Job resource to mount a drive,
613 be sure this works with admin jobs so that the user can get
614 prompted to insert the correct tape. Possibly some way to say to
615 run the job but don't save the files.
616 - Implement FileOptions (see end of this document)
617 - Make things like list where a file is saved case independent for
620 - Bacula needs to propagate SD errors.
621 > > cluster-dir: Start Backup JobId 252, Job=REUTERS.2003-08-11_15.04.12
622 > > prod4-sd: REUTERS.2003-08-11_15.04.12 Error: Write error on device
623 /dev/nst0. ERR=Input/output error.
624 > > prod4-sd: REUTERS.2003-08-11_15.04.12 Error: Re-read of last block failed.
625 Last block=5162 Current block=5164.
626 > > prod4-sd: End of medium on Volume "REU007" Bytes=16,303,521,933
628 - Use autochanger to handle multiple devices.
629 - Add SuSE install doc to list.
630 - Check and rechedk "Invalid block number"
631 - Make bextract release the drive properly between tapes
632 so that an autochanger can be made to work.
633 - User wants to NOT backup up certain big files (email files).
634 - Maybe remove multiple simultaneous devices code in SD.
635 - On Windows with very long path names, it may be impossible to create
636 a file (and thus restore it) because the total length is too long.
637 We must cd into the directory then create the file without the
639 - lstat() is not going to work on Win32 for testing date.
640 - Implement a Recycle command
641 - Add client name to cram-md5 challenge so Director can immediately
642 verify if it is the correct client.
643 - Add JobLevel in FD status (but make sure it is defined).
644 - Audit all UA commands to ensure that we always prompt where possible.
645 - Check Jmsg in bnet, may not work, must dup bsock.
646 - Suppress Job Name in Jmsg for console
647 - Create Pools that are referenced in a Run statement at startup if possible.
648 - Use runbeforejob to unload, then reload a volume previously used,
649 then the next job run gets an error reading the drive.
650 - Make bootstrap filename unique.
651 - Test a second language e.g. french.
652 - Start working on Base jobs.
653 - Make "make binary-release" work from any directory.
654 - Implement UnsavedFiles DB record.
655 - Implement argc/argv for daemon command line scanning using table driven
657 - Implement table driven single argc/argv scanner to pickup all arguments.
658 Much like xxx_conf.c scan table.
659 keyword, handler(store_routine), store_address, code, flags, default.
660 - From Phil Stracchino:
661 It would probably be a per-client option, and would be called
662 something like, say, "Automatically purge obsoleted jobs". What it
663 would do is, when you successfully complete a Differential backup of a
664 client, it would automatically purge all Incremental backups for that
665 client that are rendered redundant by that Differential. Likewise,
666 when a Full backup on a client completed, it would automatically purge
667 all Differential and Incremental jobs obsoleted by that Full backup.
668 This would let people minimize the number of tapes they're keeping on
669 hand without having to master the art of retention times.
670 - Implement a M_SECURITY message class.
671 - When doing a Backup send all attributes back to the Director, who
672 would then figure out what files have been deleted.
673 - Currently in mount.c:236 the SD simply creates a Volume. It should have
674 explicit permission to do so. It should also mark the tape in error
675 if there is an error.
676 - Make sure all restore counters are working correctly in the FD.
677 - SD Bytes Read is wrong.
678 - Look at ALL higher level routines that call block.c to be sure
679 they don't expect something in errmsg.
680 - Investigate doing RAW backup of Win32 partition.
681 - Add thread specific data to hold the jcr -- send error messages from
682 low level routines by accessing it and using Jmsg().
683 - Cancel waiting for Client connect in SD if FD goes away.
685 - Examine Bare Metal restore problem (a FD crash exists somewhere ...).
686 - Implement timeout in response() when it should come quickly.
687 - Implement console @echo command.
688 - Implement a Slot priority (loaded/not loaded).
689 - Implement "vacation" Incremental only saves.
690 - Implement single pane restore (much like the Gftp panes).
691 - Implement Automatic Mount even in operator wait.
692 - Implement create "FileSet"?
693 - Fix watchdog pthread crash on Win32 (this is pthread_kill() Cygwin bug)
694 - Implement "scratch pool" where tapes are defined and can be
695 taken by any pool that needs them.
696 - Implement restore "current system", but take all files without
697 doing selection tree -- so that jobs without File records can
699 - Add prefixlinks to where or not where absolute links to FD.
700 - Issue message to mount a new tape before the rewind.
701 - Simplified client job initiation for portables.
702 - If SD cannot open a drive, make it periodically retry.
703 - Add more of the config info to the tape label.
705 - If tape is marked read-only, then try opening it read-only rather than
706 failing, and remember that it cannot be written.
707 - Refine SD waiting output:
708 Device is being positioned
709 > Device is being positioned for append
710 > Device is being positioned to file x
712 - Figure out some way to estimate output size and to avoid splitting
713 a backup across two Volumes -- this could be useful for writing CDROMs
714 where you really prefer not to have it split -- not serious.
715 - Have SD compute MD5 or SHA1 and compare to what FD computes.
716 - Make VolumeToCatalog calculate an MD5 or SHA1 from the
717 actual data on the Volume and compare it.
718 - Implement Bacula plugins -- design API
719 - Make bcopy read through bad tape records.
720 - Program files (i.e. execute a program to read/write files).
721 Pass read date of last backup, size of file last time.
722 - Add Signature type to File DB record.
723 - CD into subdirectory when open()ing files for backup to
724 speed up things. Test with testfind().
725 - Priority job to go to top of list.
726 - Why are save/restore of device different sizes (sparse?) Yup! Fix it.
727 - Implement some way for the Console to dynamically create a job.
728 - Restore to a particular time -- e.g. before date, after date.
729 - Solaris -I on tar for include list
730 - Need a verbose mode in restore, perhaps to bsr.
731 - bscan without -v is too quiet -- perhaps show jobs.
732 - Add code to reject whole blocks if not wanted on restore.
733 - Check if we can increase Bacula FD priorty in Win2000
734 - Make sure the MaxVolFiles is fully implemented in SD
735 - Check if both CatalogFiles and UseCatalog are set to SD.
736 - Figure out how to do a bare metal Windows restore
737 - Possibly add email to Watchdog if drive is unmounted too
738 long and a job is waiting on the drive.
739 - Restore program that errs in SD due to no tape, reports
740 OK incorrectly in output.
741 - After unmount, if restore job started, ask to mount.
742 - Convert all %x substitution variables, which are hard to remember
743 and read to %(variable-name). Idea from TMDA.
744 - Remove NextId for SQLite. Optimize.
745 - Move all SQL statements into a single location.
746 - Add UA rc and history files.
747 - put termcap (used by console) in ./configure and
748 allow -with-termcap-dir.
749 - Fix Autoprune for Volumes to respect need for full save.
750 - Fix Win32 config file definition name on /install
751 - Compare tape to Client files (attributes, or attributes and data)
752 - Make all database Ids 64 bit.
753 - Write an applet for Linux.
754 - Allow console commands to detach or run in background.
755 - Fix status delay on storage daemon during rewind.
756 - Add SD message variables to control operator wait time
757 - Maximum Operator Wait
758 - Minimum Message Interval
759 - Maximum Message Interval
760 - Send Operator message when cannot read tape label.
761 - Verify level=Volume (scan only), level=Data (compare of data to file).
762 Verify level=Catalog, level=InitCatalog
764 - Add keyword search to show command in Console.
765 - Events : tape has more than xxx bytes.
766 - Complete code in Bacula Resources -- this will permit
767 reading a new config file at any time.
768 - Handle ctl-c in Console
769 - Implement script driven addition of File daemon to config files.
770 - Think about how to make Bacula work better with File (non-tape) archives.
771 - Write Unix emulator for Windows.
772 - Put memory utilization in Status output of each daemon
773 if full status requested or if some level of debug on.
774 - Make database type selectable by .conf files i.e. at runtime
775 - Set flag for uname -a. Add to Volume label.
776 - Implement throttled work queue.
777 - Restore files modified after date
778 - SET LD_RUN_PATH=$HOME/mysql/lib/mysql
779 - Implement Restore FileSet=
780 - Create a protocol.h and protocol.c where all protocol messages
782 - Remove duplicate fields from jcr (e.g. jcr.level and jcr.jr.Level, ...).
783 - Timout a job or terminate if link goes down, or reopen link and query.
784 - Concept of precious tapes (cannot be reused).
785 - Make bcopy copy with a single tape drive.
786 - Permit changing ownership during restore.
789 > My suggestion: Add a feature on the systray menu-icon menu to request
790 > an immediate backup now. This would be useful for laptop users who may
791 > not be on the network when the regular scheduled backup is run.
793 > My wife's suggestion: Add a setting to the win32 client to allow it to
794 > shut down the machine after backup is complete (after, of course,
795 > displaying a "System will shut down in one minute, click here to cancel"
796 > warning dialog). This would be useful for sites that want user
797 > woorkstations to be shut down overnight to save power.
800 - Autolabel should be specified by DIR instead of SD.
803 - AutoScan (check checksum of tape)
804 - Format command = "format /dev/nst0"
808 - Seek resolution (usually corresponds to buffer size)
809 - EODErrorCode=ENOSPC or code
810 - Partial Read error code
811 - Partial write error code
812 - Nonformatted read error
813 - Nonformatted write error
814 - WriteProtected error
818 - IgnoreCloseErrors=yes
828 - FD sends unsaved file list to Director at end of job (see
830 - File daemon should build list of files skipped, and then
831 at end of save retry and report any errors.
832 - Write a Storage daemon that uses pipes and
833 standard Unix programs to write to the tape.
835 - Need something that monitors the JCR queue and
836 times out jobs by asking the deamons where they are.
837 - Enhance Jmsg code to permit buffering and saving to disk.
838 - device driver = "xxxx" for drives.
840 - Ensure that /dev/null works
841 - Need report class for messages. Perhaps
842 report resource where report=group of messages
843 - enhance scan_attrib and rename scan_jobtype, and
844 fill in code for "since" option
845 - Director needs a time after which the report status is sent
846 anyway -- or better yet, a retry time for the job.
847 - Don't reschedule a job if previous incarnation is still running.
848 - Some way to automatically backup everything is needed????
849 - Need a structure for pending actions:
851 - termination status (part of buffered msgs?)
853 Read, Write, Clean, Delete
854 - Login to Bacula; Bacula users with different permissions:
855 owner, group, user, quotas
856 - Store info on each file system type (probably in the job header on tape.
857 This could be the output of df; or perhaps some sort of /etc/mtab record.
860 - Design at hierarchial storage for Bacula. Migration and Clone.
861 - Implement FSM (File System Modules).
862 - Audit M_ error codes to ensure they are correct and consistent.
863 - Add variable break characters to lex analyzer.
864 Either a bit mask or a string of chars so that
865 the caller can change the break characters.
866 - Make a single T_BREAK to replace T_COMMA, etc.
867 - Ensure that File daemon and Storage daemon can
868 continue a save if the Director goes down (this
869 is NOT currently the case). Must detect socket error,
870 buffer messages for later.
871 - Enhance time/duration input to allow multiple qualifiers e.g. 3d2h
872 - Add ability to backup to two Storage devices (two SD sessions) at
873 the same time -- e.g. onsite, offsite.
874 - Add the ability to consolidate old backup sets (basically do a restore
875 to tape and appropriately update the catalog). Compress Volume sets.
876 Might need to spool via file is only one drive is available.
877 - Compress or consolidate Volumes of old possibly deleted files. Perhaps
878 someway to do so with every volume that has less than x% valid
882 Migration: Move a backup from one Volume to another
883 Clone: Copy a backup -- two Volumes
885 Bacula Migration is based on Jobs (apparently Networker is file by file).
887 Migration triggered by:
891 Highwater mark (keep total size)
896 ======================================================
898 It is somewhat like a Full save becomes an incremental since
899 the Base job (or jobs) plus other non-base files.
901 - A Base backup is same as Full backup, just different type.
902 - New BaseFiles table that contains:
904 BaseJobId - Base JobId referenced for this FileId (needed ???)
905 JobId - JobId currently running
906 FileId - File not backed up, exists in Base Job
907 FileIndex - FileIndex from Base Job.
908 i.e. for each base file that exists but is not saved because
909 it has not changed, the File daemon sends the JobId, BaseId,
910 FileId, FileIndex back to the Director who creates the DB entry.
911 - To initiate a Base save, the Director sends the FD
912 the FileId, and full filename for each file in the Base.
913 - When the FD finds a Base file, he requests the Director to
914 send him the full File entry (stat packet plus MD5), or
915 conversely, the FD sends it to the Director and the Director
916 says yes or no. This can be quite rapid if the FileId is kept
917 by the FD for each Base Filename.
918 - It is probably better to have the comparison done by the FD
919 despite the fact that the File entry must be sent across the
921 - An alternative would be to send the FD the whole File entry
922 from the start. The disadvantage is that it requires a lot of
923 space. The advantage is that it requires less communications
925 - The Job record must be updated to indicate that one or more
927 - At end of Job, FD returns:
928 1. Count of base files/bytes not written to tape (i.e. matches)
929 2. Count of base file that were saved i.e. had changed.
930 - No tape record would be written for a Base file that matches, in the
931 same way that no tape record is written for Incremental jobs where
932 the file is not saved because it is unchanged.
933 - On a restore, all the Base file records must explicitly be
934 found from the BaseFile tape. I.e. for each Full save that is marked
935 to have one or more Base Jobs, search the BaseFile for all occurrences
937 - An optimization might be to make the BaseFile have:
943 This would avoid the need to explicitly fetch each File record for
944 the Base job. The Base Job record will be fetched to get the
945 VolSessionId and VolSessionTime.
946 =========================================================
949 ==========================================================
951 For each Incremental job that is run, there may be files that
952 were found but not saved because they were locked (this applies
953 only to Windows). Such a system could send back to the Director
954 a list of Unsaved files.
956 - New UnSavedFiles table that contains:
960 - Then in the next Incremental job, the list of Unsaved Files will be
961 feed to the FD, who will ensure that they are explicitly chosen even
962 if standard date/time check would not have selected them.
963 =============================================================
966 Done: (see kernsdone for more)
969 - John's Full save failed with 1.32c FD and 1.31 Dir no FD status,
970 and no error message.
971 - Add fd and st as Console keywords.
972 - Recycling volume with a Slot requires an operator intervention:
973 rufus-dir: Start Backup JobId 18, Job=kernsave.2003-11-01_21.23.52
974 rufus-dir: Pruned 1 Job on Volume Vol01 from catalog.
975 rufus-dir: There are no Jobs associated with Volume Vol01. Marking it purged.
976 rufus-dir: Recycled volume "Vol01"
977 rufus-sd: Please mount Volume "Vol01" on Storage Device "DDS-4" for Job kernsave.2003-11-01_21.23.52
978 Use "mount" command to release Job.
979 - Implement Dan's bacula script (email of 26 Oct).
980 - Add JobName= to VerifyToCatalog so that all verifies can be done at the end.
981 - Edit the Client/Storage name into authentication failure messages.
982 - Fix packet too big problem. This is most likely a Windows TCP stack
984 - Implement ClientRunBeforeJob and ClientRunAfterJob.
985 - Implement forward spacing block/file: position_device(bsr) --
986 just before read_block_from_device();
989 Multiple drive autochanger data: see Alan Brown
990 mtx -f xxx unloadStorage Element 1 is Already Full(drive 0 was empty)
991 Unloading Data Transfer Element into Storage Element 1...source Element
994 (drive 0 was empty and so was slot 1)
995 > mtx -f xxx load 15 0
996 no response, just returns to the command prompt when complete.
997 > mtx -f xxx status Storage Changer /dev/changer:2 Drives, 60 Slots ( 2 Import/Export )
998 Data Transfer Element 0:Full (Storage Element 15 Loaded):VolumeTag = HX001
999 Data Transfer Element 1:Empty
1000 Storage Element 1:Empty
1001 Storage Element 2:Full :VolumeTag=HX002
1002 Storage Element 3:Full :VolumeTag=HX003
1003 Storage Element 4:Full :VolumeTag=HX004
1004 Storage Element 5:Full :VolumeTag=HX005
1005 Storage Element 6:Full :VolumeTag=HX006
1006 Storage Element 7:Full :VolumeTag=HX007
1007 Storage Element 8:Full :VolumeTag=HX008
1008 Storage Element 9:Full :VolumeTag=HX009
1009 Storage Element 10:Full :VolumeTag=HX010
1010 Storage Element 11:Empty
1011 Storage Element 12:Empty
1012 Storage Element 13:Empty
1013 Storage Element 14:Empty
1014 Storage Element 15:Empty
1015 Storage Element 16:Empty....
1016 Storage Element 28:Empty
1017 Storage Element 29:Full :VolumeTag=CLNU01L1
1018 Storage Element 30:Empty....
1019 Storage Element 57:Empty
1020 Storage Element 58:Full :VolumeTag=NEX261L2
1021 Storage Element 59 IMPORT/EXPORT:Empty
1022 Storage Element 60 IMPORT/EXPORT:Empty
1024 Unloading Data Transfer Element into Storage Element 15...done
1026 (just to verify it remembers where it came from, however it can be
1027 overrriden with mtx unload {slotnumber} to go to any storage slot.)
1029 There needs to be a table of drive # to devices somewhere - If there are
1030 multiple changers or drives there may not be a 1:1 correspondance between
1031 changer drive number and system device name - and depending on the way the
1032 drives are hooked up to scsi busses, they may not be linearly numbered
1033 from an offset point either.something like
1035 Autochanger drives = 2
1036 Autochanger drive 0 = /dev/nst1
1037 Autochanger drive 1 = /dev/nst2
1038 IMHO, it would be _safest_ to use explicit mtx unload commands at all
1039 times, not just for multidrive changers. For a 1 drive changer, that's
1045 MTX's manpage (1.2.15):
1046 unload [<slotnum>] [ <drivenum> ]
1047 Unloads media from drive <drivenum> into slot
1048 <slotnum>. If <drivenum> is omitted, defaults to
1049 drive 0 (as do all commands). If <slotnum> is
1050 omitted, defaults to the slot that the drive was
1051 loaded from. Note that there's currently no way
1052 to say 'unload drive 1's media to the slot it
1053 came from', other than to explicitly use that
1054 slot number as the destination.AB
1060 undef# camcontrol devlist
1061 <WANGTEK 51000 SCSI M74H 12B3> at scbus0 target 2 lun 0 (pass0,sa0)
1062 <ARCHIVE 4586XX 28887-XXX 4BGD> at scbus0 target 4 lun 0 (pass1,sa1)
1063 <ARCHIVE 4586XX 28887-XXX 4BGD> at scbus0 target 4 lun 1 (pass2)
1065 tapeinfo -f /dev/sg0 with a bad tape in drive 1:
1066 [kern@rufus mtx-1.2.17kes]$ ./tapeinfo -f /dev/sg0
1067 Product Type: Tape Drive
1069 Product ID: 'C5713A '
1071 Attached Changer: No
1072 TapeAlert[3]: Hard Error: Uncorrectable read/write error.
1073 TapeAlert[20]: Clean Now: The tape drive neads cleaning NOW.
1080 Medium Type: Not Loaded
1083 DataCompEnabled: yes
1084 DataCompCapable: yes
1085 DataDeCompEnabled: yes
1092 Handling removable disks
1094 From: Karl Cunningham <karlc@keckec.com>
1096 My backups are only to hard disk these days, in removable bays. This is my
1097 idea of how a backup to hard disk would work more smoothly. Some of these
1098 things Bacula does already, but I mention them for completeness. If others
1099 have better ways to do this, I'd like to hear about it.
1101 1. Accommodate several disks, rotated similar to how tapes are. Identified
1102 by partition volume ID or perhaps by the name of a subdirectory.
1103 2. Abort & notify the admin if the wrong disk is in the bay.
1104 3. Write backups to different subdirectories for each machine to be backed
1106 4. Volumes (files) get created as needed in the proper subdirectory, one
1108 5. When a disk is recycled, remove or zero all old backup files. This is
1109 important as the disk being recycled may be close to full. This may be
1110 better done manually since the backup files for many machines may be
1111 scattered in many subdirectories.
1116 - To pass Include 1 or two letter commands
1117 I Name Include name - first record
1118 B Name Base name - repeat
1121 E zzz Exclude expression (wild card)
1123 D "reader" Reader program
1124 T "writer" Writer program
1125 O Options In current commpressed format
1126 (compression, signature, onefs, recurse, sparse,
1127 replace, verify options, ...)
1129 B BaseName Start second option set any letter
1132 F Number Number of filenames to follow
1137 F Number Number of filenames to follow
1140 - Add regression of btape "fill"
1142 - Implement "label slots=1,2... pool=yyy barcodes"
1143 - Mark a non-removable disk Volume in error rather than asking sys op to
1145 - Implement Fixed storage LabelFormat test.
1146 - Add reporting in attr despooling.
1147 - Figure out how to use ssh or stunnel to protect Bacula communications.
1148 Add Dan's work to manual See ssl.txt
1151 - Implement fast tree insert (doubly linked list)
1152 - Disallow using Internal database
1153 - Feedback while the restore tree is being built.
1154 - Add detection of Whitebox release in ./configure
1155 - Add InChanger to "list media"
1156 - Implement second cut of SIGHUP in Dir
1157 (Implement resources on a single pointer)
1158 - Add regular expressions to FileSets (needs testing).
1159 - Test new despooling error recovery code when partition fills.
1160 - Sort Scheduled jobs status listing by start time.
1161 - Add priority to Scheduled jobs status listing.
1162 - Look at Win32 inc problem when new directory added files not saved???
1163 - Require resource names to be unique.
1164 - Make sure that all errors from libacl are printed.
1165 - Make FD run on Win95 if possible (not really possible).
1166 - Fix GROUP BYs in all SQL (done by Dan -- thanks)
1167 - Make entering multiple Storage names in Dir illegal.
1168 - Make btape release the drive during the "test" append.
1170 You have selected the following JobIds: 739,856,797
1171 Building directory tree for JobId 739 ...
1172 Building directory tree for JobId 856 ...
1173 Building directory tree for JobId 797 ...3
1174 Jobs inserted into the tree.
1175 - Fix errno handling in win32 compat routines.
1176 - Add better error codes to run_program (10000+)
1177 - Revisit and revise Disaster Recovery (fix SCSI and RAID
1179 - When passwords do not match, print message that points the
1181 - Do tape alerts -- see tapealert.txt
1182 - Find memory leaks in address_conf.c
1183 - Network order of port and ip addresses.
1184 - SetIP in dird/fd_cmds.c is broken.
1185 - don't use inet_addr() it is deprecated.
1186 - Fix code in filed.c for init_bsock();
1187 - Fix code in console.c for init_bsock();
1188 - Solve the termcap.h problem on Solaris configure.
1189 - Make Verify jobs require exclusive use of Volume as Restore
1191 - Fix restore ++++ that get intermingled with "Building directory tree"
1192 - Fix doc in dirdconf.html for @, where the file must
1193 have not a list of files, but
1196 - Test Win32 errno handling.
1197 - port 1.34.6-block.patch to 1.35
1198 - Look at Chris' patch for bscan bug.