Neat!

Here is a listing of cmdlets included in the NetTcpip module:

PS C:\> Get-Command -Module NetTcpip

Capability  Name                           ModuleName
----------  ----                           ----------
CIM         Get-NetIPAddress               NetTcpip
CIM         Get-NetIPInterface             NetTcpip
CIM         Get-NetIPv4Protocol            NetTcpip
CIM         Get-NetIPv6Protocol            NetTcpip
CIM         Get-NetNeighbor                NetTcpip
CIM         Get-NetOffloadGlobalSetting    NetTcpip
CIM         Get-NetPrefixPolicy            NetTcpip
CIM         Get-NetRoute                   NetTcpip
CIM         Get-NetTCPConnection           NetTcpip
CIM         Get-NetTCPSetting              NetTcpip
CIM         Get-NetTransportFilter         NetTcpip
CIM         Get-NetUDPEndpoint             NetTcpip
CIM         Get-NetUDPSetting              NetTcpip
CIM         New-NetIPAddress               NetTcpip
CIM         New-NetNeighbor                NetTcpip
CIM         New-NetPrefixPolicy            NetTcpip
CIM         New-NetRoute                   NetTcpip
CIM         New-NetTransportFilter         NetTcpip
CIM         Remove-NetIPAddress            NetTcpip
CIM         Remove-NetNeighbor             NetTcpip
CIM         Remove-NetPrefixPolicy         NetTcpip
CIM         Remove-NetRoute                NetTcpip
CIM         Remove-NetTransportFilter      NetTcpip
CIM         Set-NetIPAddress               NetTcpip
CIM         Set-NetIPInterface             NetTcpip
CIM         Set-NetIPv4Protocol            NetTcpip
CIM         Set-NetIPv6Protocol            NetTcpip
CIM         Set-NetNeighbor                NetTcpip
CIM         Set-NetOffloadGlobalSetting    NetTcpip
CIM         Set-NetPrefixPolicy            NetTcpip
CIM         Set-NetRoute                   NetTcpip
CIM         Set-NetTCPSetting              NetTcpip
CIM         Set-NetUDPSetting              NetTcpip                                            

To view the IP addresses on a given interface, use Get-NetIpAddress:

PS C:\> Get-NetIPAddress -InterfaceIndex 17 | ft -AutoSize

ifIndex IPv4Address    IPv6Address                       PrefixLength SuffixOrigin Store
------- -----------    -----------                       ------------ ------------ -----
17                     fe80::901:6a7e:d676:2a88%17       64           Link         Active
17                     2001:470:8:1ee:901:6a7e:d676:2a88 64           Link         Active
17      169.254.42.136                                   16           Link         Active

As you can see, I only have an auto-configured IPv4 address on this particular interface. You can remove addresses with Remove-NetIPAddress, like so:

PS C:\> Get-NetIPAddress -InterfaceIndex 17 -AddressFamily IPv4 | Remove-NetIPAddress

Confirm
Are you sure you want to perform this action?

Performing operation "Remove" on Target "NetIPAddress -IPv4Address 192.168.2.3 -InterfaceIndex 17 -Store Active"
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): Y

To view route information, use Get-NetRoute:

PS C:\> Get-NetRoute -InterfaceIndex 17

ifIndex    RouteMetric     DestinationPrefix                        NextHop                      Store
-------    -----------     -----------------                        -------                      -----
17         1               0.0.0.0/0                                192.168.2.1                  Persistent
17         256             255.255.255.255/32                       0.0.0.0                      Active
17         256             224.0.0.0/4                              0.0.0.0                      Active
17         256             192.168.2.3/32                           0.0.0.0                      Active
17         1               0.0.0.0/0                                192.168.2.1                  Active
17         256             ff00::/8                                 ::                           Active
17         256             fe80::901:6a7e:d676:2a88/128             ::                           Active
17         256             fe80::/64                                ::                           Active
17         256             2001:470:8:1ee:901:6a7e:d676:2a88/128    ::                           Active
17         256             2001:470:8:1ee::/64                      ::                           Active
17         256             ::/0                                     fe80::20d:b9ff:fe15:e69d     Active    

PS C:\> Get-NetRoute -InterfaceIndex 17 -RouteMetric 1

ifIndex    RouteMetric     DestinationPrefix     NextHop         Store
-------    -----------     -----------------     -------         -----
17         1               0.0.0.0/0             192.168.2.1     Persistent
17         1               0.0.0.0/0             192.168.2.1     Active    

…and to remove routes, use the appropriately-named Remove-NetRoute cmdlet:

PS C:\> Get-NetRoute -InterfaceIndex 17 -RouteMetric 1 | Remove-NetRoute

Confirm
Are you sure you want to perform this action?

Performing operation "Remove" on Target "NetRoute -DestinationPrefix 0.0.0.0/0 -InterfaceIndex 17 -NextHop 192.168.2.1
-Store Persistent"
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): Y

Confirm
Are you sure you want to perform this action?

Performing operation "Remove" on Target "NetRoute -DestinationPrefix 0.0.0.0/0 -InterfaceIndex 17 -NextHop 192.168.2.1
-Store Active"
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): Y

Finally, to assign a static IP address to an interface, use the New-NetIpAddress cmdlet.

PS C:\> New-NetIPAddress -InterfaceIndex 17 -IPv4Address 192.168.2.3 `
> -DefaultGateway 192.168.2.1 -AddressFamily IPv4

Store             : Active
IPv4Address       : 192.168.2.3
IPv6Address       :
InterfaceIndex    : 17
InterfaceAlias    : NicTeam
AddressFamily     : IPv4
Type              : Unicast
PrefixLength      : 32
PrefixOrigin      : Manual
SuffixOrigin      : Manual
AddressState      : Tentative
ValidLifetime     : Infinite ([TimeSpan]::MaxValue)
PreferredLifetime : Infinite ([TimeSpan]::MaxValue)
SkipAsSource      : False

Store             : Persistent
IPv4Address       : 192.168.2.3
IPv6Address       :
InterfaceIndex    : 17
InterfaceAlias    : NicTeam
AddressFamily     : IPv4
Type              : Unicast
PrefixLength      : 32
PrefixOrigin      : Manual
SuffixOrigin      : Manual
AddressState      : Invalid
ValidLifetime     : Infinite ([TimeSpan]::MaxValue)
PreferredLifetime : Infinite ([TimeSpan]::MaxValue)
SkipAsSource      : False

When you assign a static IP address to an interface and set the default gateway, it also inserts a default route into the routing table (as it should). (This is why I removed the default route earlier; to show this behavior.)

PS C:\> Get-NetRoute -InterfaceIndex 17 

ifIndex    RouteMetric     DestinationPrefix      NextHop         Store
-------    -----------     -----------------      -------         -----
17         256             0.0.0.0/0              192.168.2.1     Persistent
17         256             255.255.255.255/32     0.0.0.0         Active
17         256             224.0.0.0/4            0.0.0.0         Active
17         256             192.168.2.3/32         0.0.0.0         Active
17         256             0.0.0.0/0              192.168.2.1     Active
[...]

Have a look a the new NetLbfo module:

PS C:\Users\Administrator> Get-Command -Module NetLbfo

Capability  Name                       ModuleName
----------  ----                       ----------
CIM         Add-NetLbfoTeamMember      NetLbfo
CIM         Add-NetLbfoTeamNic         NetLbfo
CIM         Get-NetLbfoTeam            NetLbfo
CIM         Get-NetLbfoTeamMember      NetLbfo
CIM         Get-NetLbfoTeamNic         NetLbfo
CIM         New-NetLbfoTeam            NetLbfo
CIM         Remove-NetLbfoTeam         NetLbfo
CIM         Remove-NetLbfoTeamMember   NetLbfo
CIM         Remove-NetLbfoTeamNic      NetLbfo
CIM         Rename-NetLbfoTeam         NetLbfo
CIM         Set-NetLbfoTeam            NetLbfo
CIM         Set-NetLbfoTeamMember      NetLbfo
CIM         Set-NetLbfoTeamNic         NetLbfo

Using the (also-new) Get-NetIPInterface cmdlet, find the interfaces that you wan to team…

PS C:\Users\Administrator> Get-NetIPInterface

ifIndex ifAlias                        AddressFamily ConnectionState NlMtu(Bytes)   InterfaceMetric Dhcp     Store
------- -------                        ------------- --------------- ------------   --------------- ----     -----
24      Teredo Tunneling Pseudo-Int... IPv6          Disconnected    1280           50              Enabled  Persistent
23      isatap.crosse.org              IPv6          Disconnected    1280           50              Enabled  Persistent
13      Wired Ethernet Connection 2    IPv6          Disconnected    1500           10              Enabled  Persistent
12      Wired Ethernet Connection      IPv6          Disconnected    1500           10              Enabled  Persistent
10      Local Area Connection* 9       IPv6          Disconnected    0              0               Enabled  Persistent
13      Wired Ethernet Connection 2    IPv6          Connected       1500           10              Enabled  Active
12      Wired Ethernet Connection      IPv6          Connected       1500           10              Enabled  Active
24      Teredo Tunneling Pseudo-Int... IPv6          Connected       1280           50              Disabled Active
23      isatap.crosse.org              IPv6          Disconnected    1280           50              Disabled Active
1       Loopback Pseudo-Interface 1    IPv6          Connected       4294967295     50              Disabled Active
13      Wired Ethernet Connection 2    IPv4          Disconnected    1500           10              Enabled  Persistent
12      Wired Ethernet Connection      IPv4          Disconnected    1500           10              Enabled  Persistent
10      Local Area Connection* 9       IPv4          Disconnected    0              0               Enabled  Persistent
13      Wired Ethernet Connection 2    IPv4          Connected       1500           10              Enabled  Active
12      Wired Ethernet Connection      IPv4          Connected       1500           10              Enabled  Active
1       Loopback Pseudo-Interface 1    IPv4          Connected       4294967295     50              Disabled Active

…and then use the New-NetLbfoTeam cmdlet to create the team. I’m using this server for Hyper-V, hence choosing that for the load-balancing algorithm.

PS C:\Users\Administrator> New-NetLbfoTeam -Name "NicTeam" -TeamMembers `
> "Wired Ethernet*" -TeamNicName "NicTeam" -TeamingMode SwitchIndependent `
> -LoadBalancingAlgorithm HyperVPort

Confirm
Are you sure you want to perform this action?

Creates Team:'NicTeam' with TeamNic:'NicTeam'; Members:'Wired Ethernet Connection 2'; 'Wired Ethernet Connection';
TeamingMode:'SwitchIndependent'; LoadBalancingAlgorithm:'HyperVPort'
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): Y

Name                   : NicTeam
Members                : {Wired Ethernet Connection 2, Wired Ethernet Connection}
TeamNics               : NicTeam
TeamingMode            : SwitchIndependent
LoadBalancingAlgorithm : HyperVPort
Status                 : Down

When I ran Get-NetLbfoTeam immediately after creating the team, it took a minute or so before the Status went from Down to Up:

PS C:\Users\Administrator> Get-NetLbfoTeam NicTeam

Name                   : NicTeam
Members                : {Wired Ethernet Connection 2, Wired Ethernet Connection}
TeamNics               : NicTeam
TeamingMode            : SwitchIndependent
LoadBalancingAlgorithm : HyperVPort
Status                 : Degraded

[time passes]

PS C:\Users\Administrator> Get-NetLbfoTeam

Name                   : NicTeam
Members                : {Wired Ethernet Connection 2, Wired Ethernet Connection}
TeamNics               : NicTeam
TeamingMode            : SwitchIndependent
LoadBalancingAlgorithm : HyperVPort
Status                 : Up

And that’s pretty much it!

Then I went trolling on Google.

It turns out that thecrosseroads.net doesn’t turn up in the first page of search results for pretty much any of the search terms that brought people to the site (which leads me to believe that the users who are finding my site are some pretty persistent people!).  And when you do those searches, a lot better people than me have lent their pens to the topic of Lion.  Don’t mistake me, though; I’m glad people have found my posts useful, if only so that they know someone else feels the same way they do, notices the same things, and holds the same ideas about how things “should work.”

Anyway, enough about me.  Hit the break for a couple of resources that may help you make more sense of Lion.

• Mac OS X 10.7 Lion: the Ars Technica review – 19 pages of Lion.  I haven’t even made it through this one yet.
• Mac OS X Lion: in-depth review with pictures (Guardian) I haven’t read this one, but by the size of the scroll-bar it looks to be a rather detailed review.
• Egg Freckles - a site one of my coworkers sent me.  Don’t like the new look of iCal or Address Book?  He shows you how to re-skin them.
• Wikipedia’s Lion article – just the facts, ma’am.
• Using Spaces on OS X Lion – a nice article that covers how to work with Mission Control.  Whereas I assumed readers knew how it all worked and so was only pointing out what I believed are its flaws, he actually shows you how to use it.
• Network Link Conditioner in Lion – a neat utility that comes with Lion’s Developer Tools that allows you to simulate various network types.

I’ll add more links as I come across them.  The Ars article should keep you tied up for a while, at least…

Miscellaneous Apps

You know, I really thought I had more to write in the “miscellaneous apps” category. It turns out I only have a few things written down, and one of them is really just a product of App Resume that goes away when disabled.

• Preview–the sidebar opens on the left now, instead of the right. I have no idea why you would change this, but it’s not that big of a deal. One of my coworkers mentioned that it looks a lot more like Adobe Reader now, which I guess it does.
• Terminal–previous scrollback history should not persist when Quitting and restarting the app. You guessed it, this was actually because of App Resume. After disabling that, Terminal no longer exhibited that behavior.
• TextEdit refuses to abide by my App Resume setting for one very important case. There are times when all I want to do is open TextEdit, throw some text in there for about five seconds (say, to remove formatting or use it as a scratchpad), then quit the app without saving. With the new TextEdit in Lion, quitting the application without first closing the window (using Cmd-W) will just save whatever text was in the window and display it again the next time I open TextEdit. If I left App Resume enabled, I could see this being correct behavior. However, I disabled App Resume in System Preferences. So why is it saving this data between sessions? It’s getting very annoying.

App/System Resume

App/System Resume is one of those features that sounds great on paper, but ends up being less-than-useful in practice. The idea of being able to start an application—or your Mac—and immediately start where you left off is pretty cool. The problem lies in the reason why I restart applications: I actually want a clean slate. Turns out this is the same reason I reboot. (Well, okay, mainly that’s to patch the OS…or Safari, but don’t get me started on why a browser upgrade should ever need a full system restart.)

So, I like the idea of being able to resume an application right where I left off, but I really don’t want it to be the default behavior. What I’ve found (through spelunking the web) is that you can now use Cmd-Q and Cmd-Opt-Q to quit apps. Governing their behavior is whether Resume is enabled or not in System Preferences. When Resume is enabled, Cmd-Q will quit the app and save state, while Cmd-Opt-Q will quit the app cleanly. When Resume is disabled, however, the two shortcuts are reversed. This means that I can disable Resume by default, but if I ever want to save the application’s state, I can quit using Cmd-Opt-Q. I could see being this very handy for those marathon Wikipedia sessions where I look up after five hours and realize that a) I have four hundred tabs open to Wikipedia articles in Safari; and b) OS X would like to patch itself. With Resume, I can just Cmd-Opt-Q quit Safari, patch OS X, reboot, and reopen Safari to continue “learning”.

Of course, System Resume is pretty much the same thing but on a grander scale. When you log off or shut down / restart, you’re asked whether or not you want to resume your apps when you reboot. What I haven’t found is a way to default that little check box to disabled (to not save state), which seems to frustrate one of my coworkers a bit. I haven’t decided if I mind yet, having only rebooted a total of one time after the upgrade.

Auto Save and Versions

This early in the game I really do not have that much to say about these two features. I was actually afraid that Apple had taken the ability away to arbitrarily save in apps that support Auto Save, but I realize now that that is not the case. What I find interesting is that (at least in TextEdit) the Lock, Duplicate, and Browse All Versions commands are nowhere in any menu: you have to click on the title of the document in the actual window to get to those features. How very un-Mac-like. I was also apprehensive about what the auto-save / versioning thing would do to the size of files, but (having read nothing yet about how these two features work) it looks like version data is stored somewhere outside the document. (What I was really apprehensive about was what a plaintext document created in TextEdit would look like with the command-line utility cat(1). It looks fine.) One thing that does bother me is that when I quit TextEdit, it does not ask me whether I want to save my changes, it just does it. Many times I’ll modify a document knowing full well that I don’t want to keep the changes. Perhaps I just need to build a string out of text already in the document. (Yes, this is probably a “dangerous” practice, but I’ve done it since something like 1990 without any major repercussions.) With Auto Save, it seems like I’ll be forced to change the way I work. I don’t view this as a plus. I do not like it when my tools force me to work a different way.

Summary

I’ve now had Lion installed for three days. My world has neither stopped nor really sped into the future with this latest release from Apple. I have identified a few things in Lion that I do not care for at all, yet have also stumbled upon a few other things that may make using a computer just a little nicer. At the end of the day, I have to remind myself that…well, that I probably need to get out more. :–) It’s been kind of fun writing these posts up. Hopefully they will prove useful to someone other than me.

Finder

I haven’t found many changes in Finder, so I don’t have too many things to say about it (yet?).

The Negative

• For some reason, the upgrade unset my “Snap to Grid” preference on the Desktop.  I just realized it apparently also reset my grid spacing. Just an annoyance, and easily fixed.
• The default view when opening a new Finder window is something called “All My Files”.  Really? What a useless view. It shows you six or seven files of various formats in the window, and if you scroll down there is a “More” icon. Hardly all my files. Maybe I’m now just one of the few people left in the world who actually remembers where I put my files for whom this new view is worthless, but I doubt it. Besides, what was wrong with Spotlight? Or search? Whatever. At least you can change the default back to opening your home folder–or any other folder for that matter.
• The status bar at the bottom of Finder windows is not shown by default.  I can only think that perhaps Apple took a page out of Microsoft’s book by hiding this by default. Again, whatever—it’s easy to un-hide it.

The Positive

• You can change the default search behavior from “search my entire friggin’ Mac” to “just search the folder I’m in and its subfolders”. Somehow I missed that in previous iterations of OS X. That would have been a handy option to change.

Spelling Auto-Correction

If I had left auto-correct enabled, it probably would have been the death of me–or at least a contributing factor. If you’ve ever used an iDevice, it’s the same sort of cutesy little pop-up window-thing as in iOS. And for iPhones and iPads it seems to work well enough, because typically most people could probably race a snail trying to type out a sentence on an iDevice…and lose. But it does give the user time to realize that the auto-correct box has popped up.

Contrast this with a real computer. I’m not a super-fast typist or anything, but I can probably roll at about 70-80 words per minute when I get going. On the downside, I do make a decent amount of mistakes while typing. The “problem” is that when I’m typing and make a mistake or misspell something, I don’t wait before hitting the space bar to see if Lion would like to suggest an alternate spelling.  No, I just cruise right along like I’ve done since that typing class I took in the 7th grade, and therein lies the problem: instead of only marking words as misspelled, by default Lion will just auto-correct the word for you (because you did after all press that convenient space bar to accept whatever inane word Lion suggested).

The example I wrote down for reference was a reply to an email I was trying to type dealing with the website www.vascan.org. Got help me, but I almost punched my iMac trying to get that thing written. Every time I tried to type “vascan.org”, as soon as I hit the period separating the domain from the TLD, Lion would helpfully change it to “va scan.org” (adding a space between “va” and “scan”). That is not useful, it’s detrimental.

Fortunately disabling auto-correct is as easy as opening System Preferences, clicking on the “Language & Text” icon, choosing the “Text” tab, and unchecking the box next to “correct spelling automatically”. Pro-tip: be sure you close and reopen whatever applications you have open in order for the autocorrect changes to take effect.  I had issues with this and restarting the application seemed to help.

Miscellaneous Preferences

• The new “natural” scroll direction is anything but natural.  Let me explain this one. If you haven’t read about it, Lion reverses the direction you’ve been scrolling on a PC since 1993.  When I use a scroll wheel–or the two-finger swipe on a trackpad–my brain has been conditioned to believe that I am manipulating the scroll bar, not the window contents. When I’m reading a web page and I get to the bottom of the window, I know I need to move the scroll bar towards the bottom to view the rest of the page. Contrast this to how a tablet works: when I am reading a web page in Safari on my iPad, it’s supposed to feel like I’m reading a book or real page, and thus I put my finger on the screen and “push” the document in the direction I want it to go, just like I would a piece of paper on my desk. This is not how I interact with my iMac, or any other real computer.  Fortunately this is easy to disable by unchecking the “Scroll direction: natural” on the “Scroll & Zoom” tab of the Trackpad preference pane. (I believe it’s the same for mice, except under the Mouse preference pane. I don’t have a mouse connected to my laptop to verify this, though.) This even affects scrolling left and right, such as going backwards or forwards through browser history. When I want to go “back,” I swipe to the left because that’s the direction “back” has always been. Apparently Apple would like you to believe that “back” is now somewhere off to the right side of your Mac.
• The new mouse and trackpad gestures seem mostly useful, but are almost overdone.  You owe it to yourself to take at least a cursory look at all the gestures under the Mouse and/or Trackpad preference panes, so that when you accidentally trigger something, you’ll have a good idea what just happened. Also, the gestures feel weird on a Magic Mouse, but I blame that on the hardware and not the software. For a company that used to specialize in human interface design, their peripherals sure do destroy my wrists and hands after eight hours of non-stop use.
• Speaking of gestures, the new “Smart Zoom” gesture is magnificent.  One of my complaints lately is that the size of text on the screen seems to go down as pixel density goes up. You’d think OS developers would be able to compensate for this automatically and make rendered text more pixel-dense but still be the same height as before, instead of making users jack up their font sizes to compensate. Anyway, the point here is that two-finger double-tapping will zoom a window to where it thinks the content is, just like on an iDevice. It makes reading web pages with tiny fonts so much easier.
• There is an “Advanced Options” pane by right-clicking on a user in the “Users & Groups” preference pane.  From here you can change the user’s uidNumber, gidNumber, loginShell, and various other things. I haven’t verified whether this existed before or not, and it wouldn’t be useful 99% of the time, but for that 1% of the time where you really have to change your uidNumber, you can do it from here.
• The “About This Mac” / “More Info…” button opens a pared-down version of the System Information application.  It shows the following tabs: Overview, Displays, Storage, and Memory. The Memory tab will even tell you how many slots you have, which ones are filled, and has a link at the bottom for “Memory Upgrade Instructions” that takes you to an Apple KB article on upgrading memory for whichever type of Mac you’re using. That’s kind of nice. And of course you can still get to the full System Information application as well.
• LaunchPad doesn’t need to exist.  Another one of those “Top New Features” with Lion, you can read about it here. I have no idea why the Dock, Spotlight, and the friggin’ Applications folder weren’t good enough for finding and displaying applications. I will not acknowledge its presence any further than to say that my MBP and iMac are not iPads!
• Suspending my MacBook Pro with a  full-screen application in the foreground will not resume to the full-screened app.  This is something I’ve noticed while typing up these notes. I’m using Safari in full-screen mode, which I guess means that it gets its own desktop(-ish). Anyway, when I close the lid of the MacBook Pro to read over my notes, then open it back up, it always wants to switch away from Safari to another application on the original desktop Safari was on before I full-screened it. It’s a little annoying–probably a bug–but nothing I can’t cope with.
• Scroll bars are hidden most of the time.  To tell the truth, I haven’t noticed the scroll bars being absent that much. I purposely left the setting at the default to see how much I actually look at them for feedback. It turns out I use the scroll bars for two very important things. First, it gives me feedback on document length. Second, it shows me exactly how far I’ve gotten in that document, and how much farther I have to go to hit the end. So far it hasn’t been a big deal to have them only show up when I scroll, but I confess I did re-enable them on the iMac at work.
• What’s the point of rubber-band scrolling?  It’s cute on an iDevice, but it’s distracting on a real computer and slows down real work.
• I would like for Apple to show me that DFS support actually exists in Finder.  This feature excited me when I first read about it. Apple says, “Lion supports DFS URLs, drill-down, failover, and reconnects when connecting to Windows file servers.” Sweet! So I click on the desktop, Cmd-K to connect to a server, type cifs://server/dfsshare, wait for a while, get a list of top-level folders. Awesome! Wait…we use access-based enumeration, so I really shouldn’t see all these folders. Oh well, I guess that still doesn’t work. Click on my department’s top-level share, and get…nothing. An empty folder, a.k.a. the DFS root folder that should have triggered a DFS referral. #@$&%!

Summary

It may seem like I have a lot of negative things to say about Lion–and guess I do–but by and large I haven’t found too many things that I cannot disable, reset, or otherwise ignore to make the Lion experience a useful one. Coming up tomorrow I plan to finish this series with a post about changes to a couple of miscellaneous applications and weigh in with my thoughts on Auto Save and App/System Resume.

Mail

I should start by saying that we use Exchange at the university as our central email system, so my account in Mail is an Exchange 2010 mailbox (as are my iCal and Address Book accounts). However, I think most of the following points would apply to any account type.

After opening Mail for the first time in Lion, my initial reaction was something like, “holy crap, what did they do?” Apple’s changes to the Mail application are so extensive that it’s one of the “Top New Features” of the OS. Ever used Mail on an iDevice? Yep, that’s pretty much what your initial view is. The layout works on a tablet or small device, but I think it’s terrible on a full-fledged computer. So, step one of my “Mail remediation program” was to show my folder structure on the left-hand side again, and step two was to find the “use classic layout” option in Preferences to put the message list back on top of the preview pane–you know, where it should be. (Apple, you do not have to follow Microsoft Outlook on this stupid side-by-side view. It’s cluttered. It is in Outlook, and it is with Mail, too.) I think I also turned off the conversation view on my Inbox, but that’s neither here nor there, really. I leave conversation view disabled on the Inbox, but enable it for folders of listserv mail.

On to the pros and cons.

The Negative

• The application still doesn’t retrieve the user’s server-side rules from an Exchange 2007/2010 server. I know EWS exposes this. It was actually surprised this functionality wasn’t included. Guess I’ll have to continue to use Outlook or OWA to manage my inbox rules.
• Initially, header details in the preview pane are limited to From, Subject, and Date. No “To:” line. “CC:” isn’t there either. That’s just way too limited for me. Fortunately it’s as simple as clicking “Details” on the right-hand side of the preview pane to get a more useful view, and thank heavens that preference is sticky between messages.
• Viewing “Raw Source” of a message opens up a new window instead of changing the view in the preview pane.  Okay, this is probably personal preference and me being way too nit-picky, but I liked how Mail used to just change the view in the preview pane. I think it was cleaner than having to deal with a pop-up window.
• Replying or forwarding a message makes the preview pane “hop out” into a new window.  What is this I don’t even… It makes the app feel childish. Apple should have resisted the urge to animate every little thing about Lion.
• The Send button is now just an icon of a paper airplane.  Because clearly, that’s the sort of icon you’d think to click to send an email. (Yes, that stupid icon was in previous versions of Mail, and I tolerated it then only because the word “Send” was right below it.) Again, this is a personal thing. Using a paper airplane for an icon neither enhances nor degrades the functionality of the application. But it also makes no sense.
• The folder list font is bigger, so fewer folders fit in the view.  Another personal preference. I expect this is actually a positive for many people. Honestly, I debated whether to put this in the list of positives or negatives, and only decided to put it here because I lost a coin-toss with myself.
• Viewing PDFs with Quick Look seems to want to “snap” to pages instead of the previous “continuous page flow” view.  By this I mean that you can’t make Quick Look span the bottom-half of one page and the top-half of the next page. If you scroll down it will just snap the view to the next page instead. This is just downright annoying. I haven’t tried it with other documents to see if it behaves the same way. I know Quick Look is pervasive throughout OS X, but I have no clue where I would look for configuration options.
• The keyboard shortcut for the Activity Viewer window was changed from Cmd-0 to Cmd-Option-0.  Apple is taking a page out of Microsoft’s book here, by invalidating muscle memory and making me wonder if I’ve gone mad. The weird thing is that Cmd-0 (that’s a zero, by the way) is actually bound to another command (“Message Viewer”) that resides under the same Window menu , which will really mess with your head. “Why isn’t the Activity Viewer showing? I typed the shortcut! I even saw the Window menu light up, so I know the key combo registered!” Sigh.
• Mail in Lion seems to be worse at discovering conversations than in Snow Leopard.  I subscribe to a few listservs, and I like to enable conversation view in those folders. In Snow Leopard, Mail was very good about figuring out which emails went with which thread. In Lion, however, I have one listserv that Mail just cannot figure out how to thread at all. It shows a few of the emails in threads, but by and large most emails in that folder are now unthreaded. This seems like a genuine regression to me.

The Positive

• You can set a custom header detail view and include headers relevant to you.  Part of spelunking through a new release like this is finding things you never knew existed (or saw but quickly forgot because you weren’t actively looking for that particular feature). I have no idea if this was an option previously, but it’s there in Lion. Cool.
• There is a “Get Account Info” option that shows folder size, Out-Of-Office settings, and some other summary data.  Again, I don’t know if this was present in previous versions, but I think it’s pretty neat. I’m fairly certain the OOF section didn’t exist prior to Lion, even if the others did. What surprised me was that it pulled my OOF settings from the Exchange server, so Apple didn’t just create a one-off client-side autoresponder setting. Of course, having this makes the absence of server-side rules in Mail completely baffling.
• When in conversation view, clicking on the rolled-up conversation will show you a linear view of all messages in that thread in the preview pane.  Previously it would just show you a list of all messages in the thread: who sent them, when they were sent, and the subject line.

iCal

I use iCal to view my Exchange 2010 calendar as well as my personal Google calendar. I also typically have a couple of Exchange delegate calendars listed as well. I’m not really a heavy calendar user at all.

The Negative

• The new interface looks like a desk calendar.  I guess it looks okay, but it seems less professional somehow.
• The list of calendars is now hidden behind a “Calendars” button.  I really liked seeing at a glance which calendars were shown. This isn’t terrible in and of itself, but without the calendar list you have no legend to remind you of which appointment color goes with which calendar. Is red my Exchange calendar or my personal calendar? Which calendar is this green appointment on? (Of course, the subject of the appointment typically helps with that, but it’s still slightly confusing; especially if I have my coworkers’ calendars listed as delegate calendars, since we all go to a lot–but not all–of the same meetings.)

The Positive

• Theoretically it supports Exchange 2010.  Of course, you can still typically use Exchange 2007 EWS calls against an Exchange 2010 client access server, which was how iCal in Snow Leopard was working with my calendar before now. Of course, iCal seemed to crash about once every half hour before, too, leading me to my next point…
• At least it hasn’t crashed yet.  It was getting comical just how often iCal crashed on Snow Leopard on my iMac at work. The day before I upgraded to Lion was the worst it had ever been. I got into a fight with it: I’d start it, it’d immediately crash, I’d click “Reopen”, it’d crash, I’d click “Reopen”, it’d crash again, I’d click “OK” and open it from the Dock, it’d crash…I wish I was making that up.

Otherwise, I can’t find much that has really changed. It looks like iCal on iOS. Whoop-dee-do.

Address Book

Upon starting Address Book for the first time, I had the same initial reaction to it as I did to Mail: “oh no, what did they DO?”

The Negative

• It looks like a book.  What was wrong with the old interface? Is there a particular reason that Apple decided to turn it into something I’d expect from Fisher Price? Come on, guys, people do use Macs in the corporate world, and that…thing…is just a joke. It’s awful. The old user interface was functional and didn’t look bad, dated, or otherwise in need of improvement. Ugh.

The Positive

• At least it’s still there.  Honestly, that’s about all I can think of.

“Mail, Contacts, & Calendars” Preference Pane

This is an interesting enhancement. Instead of managing your various accounts in Mail, iCal, and Address Book, you can now manage them from a central preference pane. It also seems to handle instant messaging accounts that iChat understands. They lifted this straight from iOS, and I will say that it seems like it might be handy.

Summary

I really should have kept one of my Macs on Snow Leopard so that I could do comparisons to check whether what I thought was a new feature in Lion didn’t already exist in Snow Leopard.

Mail, iCal, and Address Book are still as functional as their predecessors, and some of the changes Apple made are welcome. By and large, most changes seem to be to the user interface, and mostly make the applications look like something you’d see on a Hasbro “My First Computer” toy. I’m a professional: please give me professional-looking applications.

Stay tuned for part III of this little series. If you missed part I, you can view it here.

In typing up my list I realized it would work better as a multi-part series instead of one long description of everything I noted. This first part will deal with Mission Control. (Parts II, III, and IV follow this.)

Mission Control (née Spaces)

Spaces is gone, and in its place is the new “Mission Control”. Apple has this to say about it:

Mission Control brings together Exposé, Dashboard, Spaces, and
full-screen apps to give you one place to see and navigate everything
running on your Mac.

Sure, whatever. I like this guy’s description better:

Mission Control suggests to me that Spaces and Exposé had a
child and found out that they were cousins when it was already too late
to terminate the poor, unfortunate bastard.

I’m going to assume you’ve worked with Spaces before and have at least read about Mission Control’s new features, and as such and not going to reproduce them here. With that said, let’s jump in.

The Negative

• There is no way to tell which desktop you’re on. With Spaces, I could always look on the menu bar at the Spaces icon and see the number of the Space I was currently on. This is turning out to be less of an issue than I originally thought, though, since I have very specific app pinnings (more on that in a bit). It’d still be nice to know at a glance where I was in the desktop list–and no, opening Mission Control is not “at a glance”.
• Spaces used to have an overview that showed all of the Spaces and what was on them. Yes, you can view all your desktops in Mission Control, but they’re tiny compared to the Spaces preview. I didn’t use this feature often, but I think it was more useful when I needed it than Mission Control is going to be. At least you can still drag applications between desktops in Mission Control, as well as use the “left-click window, Cmd-NumKey” dance to move windows between desktops without invoking Mission Control. (Geez, could they have thought of a longer name? I’m already tired of typing it out.)
• Desktops move around in the desktop list by default.  I don’t know the full ramifications of this since I disabled it almost immediately after realizing what it was doing, but instead of keeping all desktops in a line by desktop number, the desktops seem to behave more like the application MRU list (alt-tab). I assume that using number keys will still take you directly to a specific desktop, but it seems like this “feature” would play havoc if you’re used to using arrow keys to cycle through desktops. I really don’t want to have to guess at where my desktops will be in the desktop list at any given time, thankyouverymuch. Disabled. Speaking of arrow keys…
• Using the arrow keys to navigate between desktops is sloooow.  Apple CoreAnimate’d the tar out of the desktop-to-desktop transition, and while it is nice and pretty, it probably takes a full second or more between the time that you switch from the first desktop until you can do anything on the second desktop. (Oddly, using the number keys to move between desktops is still very quick.) I know what you’re thinking: “a full second? My, however will you cope?!?” Yeah, well, when you flip back-and-forth between desktops as often as I do, it gets very annoying to have to wait. Of course, maybe it doesn’t matter anymore because…
• You can no longer organize desktops into rows and columns.  With Mission Control, you get one long row of desktops, which I guess looks nice up there at the top of the Mission Control window, but if that was the only reason for getting rid of the ability to organize desktops into a grid, those Apple devs should have thought a bit longer. Here’s the scenario: with Snow Leopard I had six Spaces organized in two rows of three Spaces each. The top row–spaces one through three–consisted of (1) Safari; (2) Mail/Outlook, iCal, Address Book; and (3) VMware with Windows 7 desktop. The bottom row–spaces four through six–were (4) IM/Twitter; and Spaces 5 and 6 were “scratch” spaces, typically used for Terminal windows and Word documents and other applications I didn’t care about pinning to a specific desktop. A nice thing about upgrading instead of reinstalling from scratch was that the number of desktops and all my app “pinnings” were preserved, so Adium is still on desktop 4, for instance. However, now I either have to arrow left and right (and endure the delay) to move through all six desktops or use the number keys to bounce directly to a desktop. Unfortunately, since desktop four is no longer logically “under” desktop one, to get there from desktop one it’s either three arrow-lefts or involves taking my eyes off the screen to hunt down the “4” key. With Spaces, that would have been an “arrow-down”–much easier! Adium was “below” Safari, VMware was to the right of Mail and “above” a scratch space, etc. It made sense.
• Lastly, desktop movement is not circular.  You cannot arrow-left on the first desktop to get to the last desktop or vice-versa. I have no idea why that got removed.

The Positive

• At least you can still have multiple desktops.  Snarky, yes, but sadly it’s almost all I could come up with.
• Performing an upgrade from Snow Leopard preserved my desktops and application desktop assignments.  At least I didn’t have to go through and reset assignments for all of my frequently used applications. For what it’s worth, the way to assign an application to a specific desktop is to right-click the application’s icon in the Dock, then choose Options—>Assign To.

Summary

Mission Control is nice, I guess, but in creating this new hybrid Spaces/Exposé thing they removed functionality that I’ve come to rely on (and indeed, has probably been in UNIX-like windows managers for 15 years or more). In short, I want Spaces back.

Things I have learned, after the break.

Building my Own

I’ve been thinking / whiteboarding out my own sort of file system based on some of the concepts of the filesystems listed below, plus others like the new Btrfs. It’s been an interesting experience so far.

The reason I started down this path instead of implementing one of the existing ones is because I’m at that stage in the project where I have to to read the kernel bootstrap file from the filesystem.  That part really doesn’t mean I couldn’t use something already out there, though.  The problem is that I’m using a Mac to develop this thing (at least, so far), and it seems that OSX only knows how to create FAT and Mac-type file systems (HFS+, etc.).  At least, I haven’t found out how to make it create FFS or ext2, which if I were going to re-implement something, it’d be one of those.  So, if I can’t create and mount the filesystem to put the kernel onto it….

I guess I could just implement something temporarily and get back onto the build-a-kernel track, but for some reason it bothers me to do something that I know I’ll have to rip out later.  Plus, this is part of the learning process, so why not learn it now?  One site I read said something like “just implement one of the easy ones for now so you can get back to the fun stuff like kernel dev.”  Well, who said this part wasn’t the fun part as well?

What follows is what I’ve learned so far.  I just need a place to put this, really, so that it stops leaking out of my brain.

FAT

FAT places its file allocation tables (there are two) at the beginning of the disk, just after the boot sector and any “reserved” sectors.  Each “cluster” (just a block of space on disk) has an entry in the FAT that describes whether the cluster is free, used, bad, or a couple of other things.  Thus, the FAT is essentially a free/used bitmap.  For a “used” entry, the value stored is the next cluster in the file or directory chain, or the special “End of Chain” cluster to denote, well, the end of the file or directory chain.  This means that each file is described as essentially a singly-linked list of clusters.

After the FATs is the Root Directory Entry, which is just a special “directory table” describing the root directory of a volume.  It is of the same format as entries in the Data Region, which contains entries that describe files and directories; things such as filename, creation date, and the first cluster in the file or directory are stored here.  The Data Region follows the Root Directory entry, and contains all other directories and all files.

So, all of the free/used information is stored at the beginning of the disk, and all other information is interspersed throughout the rest of the disk.  This differs from other filesystems like ext{2,3,4} and UFS/FFS, all of which break the disk into smaller groups of discrete blocks (“block groups” in ext2+; “cylinder groups” in UFS/FFS).

FAT is supposedly one of the easiest filesystems to implement because it is so simplistic.  However, that simplicity doesn’t come without drawbacks:

• FAT can’t handle UNIX permissions;
• FAT fragments easily;
• For larger disks, FAT’s method of storing file chains as singly-linked lists becomes inefficient and contributes to less-than-stellar performance;
• Implementing FAT may or may not require a license be purchased from Microsoft (at least, for some of the FAT implementations, especially concerning long file names).

ext2

The Second Extended Filesystem was introduced in 1993 and replaced the original “ext” filesystem in Linux, which itself replaced the Minix filesystem.  It uses a bitmap for free space tracking.  The ext2 “superblock” is analogous to (I think) FAT’s BIOS Parameter Block / Extended BPB, and there are copies of the superblock stored in each “block group”.  A block group is just a contiguous number of blocks, each block encompassing one or multiple disk sectors.  A block group contains the superblock copy, inode information, and a data region.  Each block group has the same amount of inodes in it.  By dispersing the inode data into block groups, I think this allows ext2 to locate similar data (files in the same directory, etc.) close together (see “UFS” below).  If they just started allocating space at the start of the data region, files and directories could be spread out all over the disk (I guess they still could be) instead of closer together.  The theory is that if you access a directory, you’re probably also going to access one or more files in that same directory, and by locating the data close together you can reduce read times.

File block data is represented as a bunch of pointers to the various blocks used by the file.  There is enough room in the inode structure to store the first 12 blocks.  Then there is a pointer to what they call an “indirect block”, which stores more pointers.  There is also a pointer to a doubly-indirect block and a trebly-indirect block.  Perhaps you can make more sense of Wikipedia’s diagram than I can, but I don’t fully understand the double- and triple-indirect blocks yet.  That being said, I haven’t started reading the ext2 Internal Layout Guide by David Poirier yet, mostly because it’s a 58-page guide describing the guts of ext2 in excruciating detail.

FFS/UFS

The Unix File System / Fast File System was the original filesystem used on the *BSDs, and still in use today.  The Berkeley Fast File System was written by Dr. Marshall Kirk McKusick while still at Berkeley.  He also added “soft updates” to FFS (a alternative to journalling) and then revised FFS into FFS2.

Many of the ideas built into ext2 came from FFS, so things might look a little similar here.  FFS has the idea of “cylinder groups”, each of which is a group of inodes and the associated data.

Straight from Wikipedia:

Early versions of Unix filesystems were referred to simply as *FS*. FS
only included the boot block, superblock, a clump of inodes, and the
data blocks. This worked well for the small disks early Unixes were
designed for, but as technology advanced and disks got larger, moving
the head back and forth between the clump of inodes and the data blocks
they referred to caused thrashing. Marshall Kirk McKusick, then
a Berkeley graduate student, optimized this for  4.2BSD’s FFS (Fast File
System) by inventing cylinder groups. This breaks the disk up into
smaller chunks, each with its own inode clump and data blocks.

The intent of BSD FFS is to try to localize associated data blocks and
metadata in the same cylinder group; and, ideally, all of the contents
of a directory (both data and metadata for all the files) in the same or
nearby cylinder group, thus reducing fragmentation caused by scattering
a directory’s contents over a whole disk.

I guess that answers my question as to why cylinder/block groups are used.

Fast forward to today.  In the intervening years I’ve had the “pleasure” of using all of the following distros:  Fedora, Debian, Mandrake/Mandriva, Gentoo, Ubuntu, Red Hat Enterprise Linux, CentOS, openSUSE, KNOPPIX, and possibly others; I’ve also worked with many of the various *BSDs (usage level anything from “installed it once” to “daily driver”), [Open] Solaris (ugh), Nexenta (odd variant of OpenSolaris), and a few other even more random or esoteric UNIX/UNIX-like systems.

As my pastor would say, I say all that to say this:  I feel like I know my way around this “Linux” thing—not because I’ve looked at a ton of distributions, but because I’ve used them.  I’m certainly no Linux Jedi, and I definitely know where my weaknesses are when it comes to certain areas of Linux administration, but as a desktop OS, I can make it “go” fairly well.

So why is it so hard for me to find a decent distribution of Linux anymore?

I threw a status update out on Facebook last night noting my frustration in the matter:

“Can someone suggest a Linux distro that doesn’t suck? Fedora, openSUSE,
Ubuntu (any flavor, or anything built on it), and Gentoo need not
apply.”

Apparently my “friends” had the audacity to ask me why I didn’t like any of the distros I mentioned, which meant I had to actually figure that out in order to answer them.  :–)  It has been a good exercise, and I’m glad they questioned me about it, because it made me sit down and write a list of what I like and don’t like about some of the distributions I’ve tried lately.  At some point I may even sit down and write a list of things I do want out of a distribution, and see if I can find one to match what I want.

(Please note that this list does not cover anything related to the specific desktop manager that the distribution uses by default.  I have my own gripe list about KDE vs. GNOME, etc.  Also, these are only those things I could think of today between doing real work.  I can probably add more to this list—and will try to—later on, when my mind is less befuddled by work.)

Fedora

Advantages:

• yum is a pretty decent pkg mgr
• distro seems to have mostly-sane defaults

Disadvantages:

• yum is not apt (but then, I haven’t had to do any of those “totally-crazy-things-you-can-only-do-with-apt” things, so this not really a negative)
• /etc/sysconfig for configs? What was wrong with just /etc?

openSUSE

Advantages:

• none yet

Disadvantages:

• package management interfaces aren’t consistent between the GUI and the command-line tools
• system configuration is…odd, to say the least.  On-par with Red Hat’s /etc/sysconfig weirdness
• disables consoles when X is running (seriously…wtf?)
• only distro to barf on my ~/.xsession, which isn’t that exotic

Ubuntu

Advantages:

• apt pkg mgr is great

Disadvantages:

• Canonical.
• too many metapackages with too many depencies for stuff I don’t want.  Last time I tried to remove whatever CD-burning GUI utility they helpfully installed for me, it wanted me to uninstall the entire GNOME desktop metapackage. Not helpful.

• Using /etc/alternatives to handle multiple utility providers.  This is just absurd:

    root@www:~# which mail
    /usr/bin/mail
    root@www:~# file /usr/bin/mail
    /usr/bin/mail: symbolic link to `/etc/alternatives/mail'
    root@www:~# file /etc/alternatives/mail
    /etc/alternatives/mail: symbolic link to `/usr/bin/mail.mailutils'
  

  I won’t even go into how long it took me to figure out which package I needed to install to even get the mail program, but just a word of advice: don’t run apt-file search mail unless you have some time on your hands. Other searches are equally useless, like apt-file search mail | grep "mail$", since (as seen above) /usr/bin/mail is actually a symlink.

Gentoo

Advantages:

• emerge pkg mgr is decent
• I like having such fine-grained control over everything in the system.  By this I do not mean that I like tweaking the ever-living tar out of MAKEOPTS, but that I like that there is so much choice in what I can install.

Disadvantages:

• emerge is not apt, and at times can be just down-right scary
• source-based—not necessarily a bad thing, until you consider that…
• compiling updates for three days is not useful

That’s all I have for now.  If I think of anything else, I’ll add it here.

EDIT (4/1/2011): Added /etc/alternatives gripe to Ubuntu disadvantages. This also goes for Debian.

• Validate that the second stage bootloader has the correct signature (0xAA55) at the end, and bail if it doesn’t;
• Take into account BIOSes that don’t support reading via LBA for fixed disks and booting off of floppies by falling-back to CHS INT 13h calls;
• Reduce the bloat by streamlining boot and error messages, etc.

I finally got around to implementing these three things, so the MBR is done (at least, for now).

(Note:  the repository revision that goes with this post is afc34693. I’m going to start including the corresponding revision hash in posts for posterity’s sake, and so that posts are still relevant even after the code evolves.)

Validate the Boot Signature

This one was easy:  after reading (what we hope is) the volume boot record into memory (at 0000:7c00, if you remember), we just check the word at 0000:7dfe and see if it equals 0xAA55.  Since I have room in the MBR code, before reading in the VBR sector I set the word at 0000:7dfe to 0x0000.  The reason for this is because, even though the MBR has been relocated to 0000:0600, the “old” code is still in memory at 0000:7c00.  Thus, the word at 0000:7dfe is already set to the magic value 0xAA55 because it was also present in the MBR at the same location; so if there was some sort of problem loading the VBR (a.k.a., “bug”) that wasn’t detected, the MBR will bail instead of jumping back into the MBR again, creating a loop.

LBA-to-CHS Conversion

I have no illusions that writing this bit was the hardest thing I’ll do, but for someone pretty much learning assembly while writing it, writing the LBA-sector-to Cylinder/Head/Sector conversion code was a pain.  However, I can now say that, instead of just ripping off a conversion formula from a wiki somewhere, I actually understand what’s going on now.  I will not get into how to convert an LBA value to its CHS equivalent here;  if you really need to know how to do it, there are various places to find that information, as well as an online conversion utility you can use to check your work.

Reduce the Bloat!

Sadly, most of the code I axed—mainly consisting of some strings used for debugging and a “function” to print a value in hex—was replaced by the CHS conversion code.  (I don’t need them anymore, because I have since discovered how to debug a VMware virtual machine using remote gdb…crazy!) At this point, the actual code in the MBR takes up 394 of 436 usable bytes.  Still…at least I’ve got another 40 bytes to play with if I need to.

So that means that my master boot record does everything it’s supposed to do right now, and I can begin to focus on the volume boot record.  Speaking of…

Choices to be Made for the Second Stage Loader

I’ve got some choices I need to make about what all this “volume boot loader” is going to do versus what the kernel (or a kernel bootstrap binary) is going to do.  For instance:

• When do I jump to protected mode?
• If I need anything from the BIOS it has to be done in real mode; for instance, memory maps, video modes, etc.
• Speaking of, what do I need from the BIOS?
• The only way to load a kernel somewhere other than the first 1MB of memory (I believe) is to jump to protected- or unreal mode, load the kernel wherever you want, and then call kmain() (or whatever).  However, this could also be done with a kernel bootstrap binary.
• How do I load the kernel?
  • OpenBSD patches static values describing where the “/boot” file (their kernel bootstrap) resides into the VBR whenever you run installboot(8)
  • Another option is to use a filesystem simple enough to enable writing code to dynamically find and load the kernel.  I don’t like this.

Actually, I guess that’s about it, at least until I figure out I need to do other stuff.  I kind of thought there was more to that.

Anyway, back to the code…

• Find and read the disk’s partition table;
• Parse each partition entry looking for an “active” one;
• Ensure that only one entry is marked as active;
• Discover where that particular partition begins, and load the first sector of it into memory at 0x7C00;
• JMP to 0x7C00 and transfer control to (what is hopefully) the second stage bootloader.

These steps have (finally) been completed!

So, the Master Boot Record format has been around in the same form since about 1982, I think (don’t quote me on that, though).  The MBR developed for use by the FAT filesystem (and MS-DOS) by Bill Gates way-back-when pretty much laid down the minimum criteria for “things that an MBR should do”, as well as laid down the layout of the MBR.  For instance, the partition table for the drive is embedded inside the MBR, starting at offset 0x01be. (Incidentally, this means that instead of having a “full” 512 bytes of space for code like I thought, it means you actually get 440 bytes of usable space for code.)  Each partition table entry is 16 bytes long, and there are four entries.  If any of the entries are not used (for instance, on a disk with only one partition), then the unused entries are usually filled with all zeroes.

The good thing about this is that in order to find a bootable partition, all you have to do is examine the byte at 0x01be, see if it’s set to 0x80, increment 16 bytes, and do the same thing three more times.  The rules are thus:

• Partitions can be marked as active (0x80) or not active (0x00);
• If no partitions are marked as active, then die.
• If more than one entry is marked as active, the partition table is invalid—die.
• If any entry’s “active” byte is set to anything other than 0x80 or 0x00, the partition table is invalid—die.

Pretty simple, once you get all the kinks worked out.

Once you find the active partition, the next step is to read the partition entry’s data to find out where the partition starts, and then load the partition’s first sector from disk (some resources say reading just one sector is a waste of a good interrupt, and that multiple sectors should be read—it doesn’t harm anything) into memory at address 0000:07C0.  (This, incidentally, is why the first thing an MBR has to do is relocate itself somewhere else, because it too is initially loaded at 0x7C00.)

This is where it gets a little tricky.  Anyone who has been around Linux for a while can remember back to when best practice was to always, always, always make sure your kernel was located somewhere below the first 8GiB of the disk (I hate using the “proper” terms for binary powers of bytes—it just seems weird, but I guess it is also correct. If I flip-flop between the two, it’s probably not intentional).  The reason for this restriction was because there are two ways to read from a disk: using CHS (Cylinder / Head / Sector) or using LBA (Logical Block Addressing), and not all BIOSes supported using LBA.  When using the CHS method, the BIOS is limited to reading just about 8GiB of the disk (well, using “logical” CHS, not “physical” CHS, which was limited to ~504MB).  At some point, Western Digital and Phoenix Technologies came up with the “BIOS Enhanced Disk Services” (EDD) standard, which added some extensions to allow the BIOS to read a disk using LBA instead of CHS.  This allows for quite a bit larger drives to be read (128GiB using 28-bit addressing; 128PiB for 48-bit; and 8ZiB for 64-bit LBA, assuming 512-byte sectors).

The EDD standard has been around since the mid-90s (I believe), so in theory it’s a very rare occurrence nowadays to find a BIOS that doesn’t support reading using LBA.  However, good practice is to test for its availability and fall-back to using CHS if the extensions aren’t supported.  So far my MBR practices half of that—the “checking” part. If the extensions aren’t present, it just bails instead of falling back to CHS.  (Note:  these will have to work their way in at some point, because you can’t use LBA extensions to boot from a floppy.  Yes, it’s going to support floppies.)  By the way, the interrupt used to read data from a disk is INT 13h, in case you have the need to read a disk in real mode anytime soon.

So, at this point my bootloader does all of this.  There are still a few things I want to build in, but it’s essentially done:  I can read the partition table, find the active partition, read that partition’s first sector into memory, and pass control to (what is hopefully) the partition’s volume boot record.  Things that I still want to do in the MBR code:

• Validate that the second stage bootloader has the correct signature (0xAA55) at the end, and bail if it doesn’t;
• Take into account BIOSes that don’t support reading via LBA for fixed disks and booting off of floppies by falling-back to CHS INT13h calls;
• Reduce the bloat (never thought I’d say that about code with a total length of 415 BYTES) by streamlining boot and error messages, etc.

I have a stub of a volume boot record in my tree at the moment that just prints out “Hello World!” just to make sure that I can make the jump from MBR to VBR.  The VBR also contains the BIOS Parameter Block (BPB) and the “Extended BPB” data structures. These structures are supposed to “[describe] the physical layout of a data storage volume” (from the Wikipedia article for the BPB) and are mostly used for the FAT and NTFS file systems.  However, that structure is also present, e.g., in OpenBSD’s biosboot.S boot record with the following comment:

/*
* BIOS Parameter Block.  Read by many disk utilities.
*
* We would have liked biosboot to go from the superblock to
* the root directory to the inode for /boot, thence to read
* its blocks into memory.
*
* As code and data space is quite tight in the 512-byte
* partition boot sector, we instead get installboot to pass
* us some pre-processed fields.
*
* We would have liked to put these in the BIOS parameter block,
* as that seems to be the right place to put them (it's really
* the equivalent of the superblock for FAT filesystems), but
* caution prevents us.
*
* For now, these fields are either directly in the code (when they
* are used once only) or at the end of this sector.
*
/

If the OpenBSD guys are hesitant to touch it, then it’s probably a good idea to leave it be.  Also, since rev. 1 of this blessed operating system will probably run on some flavor of FAT (since I am led to believe that it’s probably the easiest filesystem still in active use to implement), and since FAT sort of relies on the data in that structure, it’s probably a good idea to keep it in there.

So that’s where I’m at now, and it pretty much takes care of everything in the “What’s Next” section of the previous post.  Aside from the small list of things I want to implement and/or fix in the MBR, I’m well on my way to learning how to do fun things like write a filesystem driver in assembly in order to load a kernel file from disk.  Actually, I haven’t quite figured out how I’m going to work this.  I kind of like how OpenBSD (and I think MS-DOS) handle kernel bootstrapping.  In OpenBSD, I think the bootloader loads a file (by getting passed the location of the file on-disk via the installboot utility) that does the heavy-lifting.  In MS-DOS, the bootloader loads IO.SYS (the on-disk location of which I believe is hard-coded into the boot sector code by the SYS.COM utility) which then bootstraps things.  So, I’ll either have to parse a file system in assembly to find the kernel, or have the values handed to me.  No wonder everyone seems to choose the latter.

(EDIT:  Turns out an “aside” looks dumb, so this is now a “standard” post.  Whatever.)

I’m keeping my code in a Git repository, so I can track changes and such.  The changelog from my commit the other night reads:

seth@darwin ~/code/os $ git log -1 8544dcc
 commit 8544dccc0269b02de59ed608fe7d6083ac568afb
 Author: Seth Wright <seth@crosse.org>
 Date:   Mon Mar 14 02:51:05 2011 -0400

     working "prototype" bootloader.

     The code in mbr.s copies itself to another location in memory,
     jumps to that location, then starts executing there.  Right now
     all it does is print a little banner and the current IP, albeit
     backwards.  That was mainly to test whether the code-jump
     actually worked (it does).

You can view the file, if you care to see ugly x86 assembly. (Note that “IP” above means “instruction pointer”, not “internet protocol”.  Just in case you were wondering.)

So what exactly does that get me?  This:

Background

When a computer starts (at least, a “PC-compatible” computer), the BIOS begins executing.  The last thing it does is look for the first drive where the boot sector (first 512 bytes of a disk) ends with 0xAA55.  This is a magic number that tells the BIOS that this disk has a valid “boot sector”, or Master Boot Record.  What it does next is copy the disk’s boot sector to a specific place in memory (0000:7C00, in segment:offset notation), and then “jump” to it and start executing whatever is there.

That’s where I am now.  The BIOS hands control to the compiled code in my mbr.s file, and the result of it running is what you see up above.  Not very shiny or exciting to look at, but let me tell you: after spending multiple hours

• writing code;
• testing;
• seeing nothing on the screen;
• rewriting code;
• testing;
• seeing ten thousand “Þ” characters echoed onto the screen;
• re-rewriting code;
• etc.;

when you actually see what you told it to print, it’s a pretty nice feeling.

What It Does

When the BIOS jumps to the boot loader, the first thing it does is copy itself to another location in memory.  For simplicity’s sake (and because I’m not totally aware of the consequences of picking another location yet), I chose to have it copy itself to the same location that one of Microsoft’s early MBRs used.  (By the way, using that page is fairly difficult, since I want to see how they did things but also don’t want to rip off their code, obviously.  I have to take quick glances to get the gist of what’s going on, then try to do it myself.)

After that, it “jumps” down to where it copied itself and resumes executing. The rest of the code is to make it print the banner, then get and print the instruction pointer to verify that it actually did jump correctly; had it not, instead of displaying “426” above—which is the string-reversed memory location 0x0624—it would have shown “42C7”, denoting memory location 0x07C24.  Once it’s done there, it jumps into a never-ending loop.

What’s Next

Next up on the agenda is to have the MBR code read the disk’s partition table, searching for an active partition.  If it doesn’t find one, it should bail.  If it does, it will load that partition’s first sector (the Volume Boot Record; or more likely, the first sector of the VBR) into the memory location 0x7C00 (the one we just vacated), and jump there.  If you’ve ever heard of chainloading, that’s what this is. Load a boot sector, relocate, find another boot sector, relocate, etc.

After that, work on the second stage bootloader begins, which will be what actually loads the (currently non-existent) kernel.

Closing Remarks

This is actually more fun than I thought it would be, and I think part of the reason for that is because I’m writing about it as it happens.  I get to explain what is going on, why it’s going on, and where it’s going, which I think helps me understand all three of those points better.  Plus, I find a lot of the arcane knowledge about the early days of computing to be quite interesting.  (Case in point:  the blog referenced at the bottom of Wikipedia’s article on a CPU triple-fault.  Very clever idea!)

That’s all for now; hopefully I’ll have more to report in the next day or two.

• How will this thing boot (i.e, how much will the bootloader do)?
  • MBR —> VBR —> kernel?
  • MBR straight to kernel?
  • When to switch to protected mode—in the bootloader or let the kernel handle it?
• What kind of memory model should I use?
  • Segmentation—Apparently not very portable
  • Paging—Flat memory model, neater, more portable
• Where will the kernel get loaded in memory?
• Does each process get its own address space?  (sounds like a no-brainer)
• Virtual memory?
  • ???
• Multi-tasking/Threading?
  • At this point I don’t think there’s a reason to even consider not doing multi-tasking; so, yes, please.  However, as if the rest of this didn’t scare me enough, for some reason this bullet point frightens me.
• Build in locking and synchronization from the start
• What sort of process model will I use?
  • I don’t even know where to start on this one
• How will I handle system calls?
  • Linux uses software interrupts (or did in 2003…ah, the joys of 8-year-old articles)
  • No idea how Windows handles system calls
• How should IPC be done?
  • From the article:  “Message ports? Named pipes? Queues? Local sockets? All of the above?”
• Networking?
  • Probably not immediately important, but should be considered fairly early-on anyway
• Which file system should I use?
  • Probably use FAT32 in the beginning, since the FATs seem to be some of the easier file systems to support
  • FFS?  ext2/¾?  Probably waaaay down the road.
  • Write my own?  Even farther down the road, if at all
• Security
  • I doubt that #include <securemysystem.h> would work
  • Everything should be built with security in mind—whatever the heck that actually means

List number next is the short-list of things that need to happen, and a crude outline of when they should happen:

• Get my development environment set up
  • A GCC cross-compiler is apparently the way to go
    • Why do I need a Cross Compiler?
    • GCC Cross-Compiler
    • GCC Cross-Compiler for x86_64
• Bootstrap this bad boy.  Write a bootloader.  Probably a two-parter:
  • MBR that the BIOS will jump to, which will look for an active boot partition, and then jump to the…
  • VBR that does some basic setup, then finds and loads the kernel.
  • No, I don’t want to use GRUB.  That would be cheating if I want to learn how things work.
• Write some kernel library functions to do things that the C library would normally handle for userland applications (printf(), malloc(), str*(), assert(), panic(), etc.)
• Paraphrasing something I read recently:  “when writing a kernel, if you #include anything that you didn’t write yourself (like stdlib.h), you’re already doing it wrong.”
• Write a rudimentary console driver.
• Write what will become the idle thread.
• Get trap handling working
  • Article suggests that dumping state, then panicking the kernel is a good place to start
• Get interrupt handling working
• Write a handler for the timer interrupt.

Wow, those are pretty lengthy lists.

Not having an “office” at home is really not working out for me. I’d love to have a whiteboard where I can sketch out things, or put little reminders, or thoughts that I have. It’d also be great to have a desk again, with a real work area, instead of just sitting on my couch. Anyway, perhaps jotting down my progress on projects here will make up for this deficiency (at least a little).

So, I have some projects. Well, “projects” may be too strong of a word to use for some of them, but the point still stands:

• I have an Arduino and various parts to do nifty electronical things;
• I have a ton of books to read;
• I have three or four video games that need to be started and/or finished;
• I have had the idea to build an SNPP server application for a while (with hopes of it being able one day to replace the absolutely terrible application we use at work);
• I want to learn Ruby on Rails;
• I want to learn how to program in Objective-C;
• I want to build an ASP.NET front-end to some PowerShell scripts we use at work for Exchange administration;
• I want to learn more about how operating systems function by writing my own.

That last one is the one that is at the forefront of my mind at the moment, mainly because it’s the last project idea that got pushed onto my brain’s stack.  I love learning new things, especially about computers and how they work—it’s why I’m in the field I’m in. Yes, I’m aware that writing an operating system is a monumental undertaking. Yes, I know that most projects to write an OS never come to fruition. I’m not looking for this to be something anyone else uses; its sole purpose would be for me to learn how things work under the hood by doing it myself. I can read existing code all day until I’m bleary-eyed, but (as stated last in the last post) I tend to skim things nowadays and not fully grasp whatever I’m reading. By doing it myself I hope to gain a deeper understanding of what exactly is going on.

Of course, this desire may only last another week; who knows. But at least it gives me something to write about.

The problem is, I don’t ever think I have time (or set aside time) to just sit down and write. I always feel like I could be doing other things, more productive things. I’m the same way with reading articles online, too. I feel like I’m wasting time by reading because I could be doing such-and-such or working on this problem or whatnot. So what has happened is I’ve learned to skim articles, albeit very badly, and I never remember enough of any one thing for it to be useful to me unless I have an internet connection to look up “the rest of the story.”

I would really like to rectify this situation, but I am unsure of how to start. I see this sort of “don’t have time for reading/writing” mentality growing in my life, and I don’t like it. Way back when I was still in school, I loved reading. LOVED it. And I made time for it. I didn’t necessarily love writing, and I guess I never have, but I’ve always wanted to keep a journal or something similar. Perhaps it’s time for me to change some things, shuffle some priorities.

On a related note, I seem to be racking up project after project without finishing them—much less starting them, half the time. I have a bunch of parts for an Arduino that I got last year because I wanted to fiddle with electronics. I have a patch sitting on my Desktop for the OpenBSD C library. I have a bunch of video games that are half-played, if at all. I have upwards of 20 or 30 books that are staring at me, pleading “read me?” And at the end of the day, I wonder just what I did to accomplish so little. Perhaps if I start jotting down my thoughts every so often here I can have something to look back on later, to sort of keep me accountable for the things I want to do but don’t. I don’t want to be a workaholic; I want to have my own hobbies, even if they closely resemble the things I do at my job. The difference is that these projects and hobbies are for ME, and no one else. I need things like that.

So, let’s see: I need to learn to read with understanding again; I need to start writing more; I need to learn how to have a hobby again; I need relearn (learn?) time management. Piece of cake. Maybe if I approach the blog thing as something for me, and me alone (while still being public, so don’t expect me to plunge the depths of my heart here) I’ll be more apt to write. Plus, writing is therapeutic, right?

That’s all for now. Seth, when you read this next, don’t roll your eyes and say, “well THAT was stupid.” You need this, you know you do.

When I started this experiment, it was solely going to be used for techy things and not for cataloguing the minutiae of my day. I still want to maintain that to a large degree—at least I don’t want this to become my dumping ground for any rant or rave that travels through my head.

The moral of the story: look for more posts from me in the future. Between working as an Exchange administrator by day and playing with OpenBSD after hours, I can probably whip up a few more articles about…well, something-or-other.

Seth

The following process assumes that you are following the “OpenBSD Upgrade Guide 4.5”. If you get lost, refer back to that document for more information. I will be detailing the process for “Upgrading without install kernel” on that page.

Place install files in a “good” location

The first order of business is to Place install files in a “good” location. For me, this meant downloading the install45.iso from my mirror of choice (purchase of the CD set is forthcoming), mounting it on my PowerBook, and copying all of the *.tgz files and the kernel (bsd) to the ALIX:

seth@gandalf /Volumes/OpenBSD:i386    4.5 Install CD/4.5/i386 $ scp *.tgz root@fw:/usr/rel
root@fw's password:
base45.tgz                                                        100%   46MB   5.7MB/s   00:08
comp45.tgz                                                        100%   86MB   6.1MB/s   00:14
etc45.tgz                                                         100%  501KB 501.0KB/s   00:00
game45.tgz                                                        100% 2556KB   2.5MB/s   00:01
man45.tgz                                                         100% 8032KB   7.8MB/s   00:01
misc45.tgz                                                        100% 2866KB   2.8MB/s   00:00
xbase45.tgz                                                       100% 9762KB   9.5MB/s   00:01
xetc45.tgz                                                        100%   73KB  73.5KB/s   00:00
xfont45.tgz                                                       100%   34MB   5.7MB/s   00:06
xserv45.tgz                                                       100%   19MB   6.3MB/s   00:03
xshare45.tgz                                                      100% 2698KB   2.6MB/s   00:00
seth@gandalf /Volumes/OpenBSD:i386    4.5 Install CD/4.5/i386 $ scp bsd root@fw:/usr/rel
root@fw's password:
bsd                                                               100% 6539KB   6.4MB/s   00:01
seth@gandalf /Volumes/OpenBSD:i386    4.5 Install CD/4.5/i386 $ scp bsd.rd root@fw:/usr/rel
root@fw's password:
bsd.rd                                                            100% 5462KB   5.3MB/s   00:01    

(Note that I’m following the guide’s convention of putting all the release files in /usr/rel.) Now, on to step two:

Stop any appropriate applications

For me, this included editing /etc/rc.conf/local to disable the few services running on the box:

# cat /etc/rc.conf.local
#ntpd_flags=            # enabled during install
#pf=YES                 # enable pf
#rtadvd_flags="vr1"     # IPv6 Router Advertisement Daemon
#ftpproxy_flags=""      # for ftp-proxy rules in pf

These will be re-enabled later on.

Check the kernel

The third step was something that I did not have to worry about, since I had not made any changes to the kernel. However, if you have made any kernel changes (either via config(8) or otherwise), make sure you read this particular section of the guide.

Install new kernel(s)

This step is easy; just cut and paste the lines from the guide into your SSH session:

# rm /obsd
rm: /obsd: No such file or directory
# ln /bsd /obsd
# cp bsd /nbsd
# mv /nbsd /bsd

Remove old X modules

Another easy one:

# rm -rf /usr/X11R6/lib/modules/*

Save yourself a copy of the old reboot(1) command

For an explanation why you’d want to do this, see the guide:

# cp /sbin/reboot /sbin/oreboot

Install new userland applications

This will update all (most?) of your userland. Obviously any packages you installed outside of the base system will need to be upgraded as well (see below).

# tar -C / -xzphf comp45.tgz
# tar -C / -xzphf game45.tgz
# tar -C / -xzphf man45.tgz
# tar -C / -xzphf misc45.tgz
# tar -C / -xzphf xbase45.tgz
# tar -C / -xzphf xfont45.tgz
# tar -C / -xzphf xserv45.tgz
# tar -C / -xzphf xshare45.tgz
# tar -C / -xzphf base45.tgz
# /sbin/oreboot
Connection to fw closed by remote host.
Connection to fw closed.

At this point, wait for the device to reboot (hopefully if you’ve done everything correct you won’t be crossing your fingers…).

seth@gandalf ~ $ ssh fw
seth@fw's password:
Last login: Sun May  3 14:43:41 2009 from [somewhere]
OpenBSD 4.5 (GENERIC) #1749: Sat Feb 28 14:51:18 MST 2009

Welcome to OpenBSD: The proactively secure Unix-like operating system.

Please use the sendbug(1) utility to report bugs in the system.
Before reporting a bug, please try to reproduce it with the latest
version of the code.  With bug reports, please try to ensure that
enough information to reproduce the problem is enclosed, and if a
known fix for it exists, include that as well.

$ su -
Password:
Terminal type? [xterm-color]
#

Sweet. On to the next step.

Upgrade /dev

The installation of base45.tgz copied over the latest version of the MAKEDEV script, so run that now:

# cd /dev
# ./MAKEDEV all

This concludes the section of the guide on how to upgrade without the install kernel. The rest of this post covers the “Final Steps” section of the upgrade guide. As such, it should be fairly straight-forward and therefore I won’t comment on everything like I did above.

New Users and Groups

Add the Bluetooth user:

# useradd -u94 -g=uid -c"Bluetooth Daemon" -d/var/empty -s/sbin/nologin _btd

Upgrading /etc

# export RELEASEPATH=/usr/rel
# tar -C /tmp -xzphf ${RELEASEPATH}/etc45.tgz
# cd /tmp/etc
# cp netstart rc rc.conf services /etc
# cp afs/CellServDB /etc/afs
# cp mtree/* /etc/mtree
# cp mail/README mail/submit.cf /etc/mail
# cp ../var/named/etc/root.hint ../var/named/etc/named-*.conf /var/named/etc
# cp ../var/named/etc/named.conf /var/named/etc/
# cd /

Merging locally changed files via a patch file

# pfctl -f /etc/pf.conf -e
pf enabled
# ftp http://www.openbsd.org/faq/upgrade45.patch
Trying 129.128.5.191...
Requesting http://www.openbsd.org/faq/upgrade45.patch
100% |**********************************************************************|  2694       00:00
Successfully retrieved file.
# patch -C -p0 < upgrade45.patch
[snip lots of successful patches]

# newaliases
/etc/mail/aliases: 49 aliases, longest 15 bytes, 709 bytes total
# mtree -qdef /etc/mtree/4.4BSD.dist -p / -u

Merging locally changed files via sysmerge(8)

# sysmerge -as $RELEASEPATH/etc45.tgz -x $RELEASEPATH/xetc45.tgz
===> Creating and populating temporary root under
    /var/tmp/sysmerge.GWPAg/temproot
===> Starting comparison
[stuff happened]
===> Comparison complete
===> Making sure your directory hierarchy has correct perms, running mtree...
===> Automatically installed file(s) listed in
    /var/tmp/sysmerge.GWPAg/auto_installed_files
===> Backup of replaced file(s) can be found under
    /var/tmp/sysmerge.GWPAg/backups
===> When done, /var/tmp/sysmerge.GWPAg and its subdirectories should be removed

Upgrading packages

# export PKG_PATH=http://carroll.cac.psu.edu/pub/OpenBSD/4.5/packages/i386/
# pkg_add -ui -F update -F updatedepends
Candidates for updating gettext-0.17 -> gettext-0.17p0
Candidates for updating libiconv-1.12 -> libiconv-1.12
Candidates for updating vim-7.1.315-no_x11 -> vim-7.2.77-no_x11
Candidates for updating wget-1.11.3 -> wget-1.11.4
Looking for updates: complete
Running the equivalent of pkg_add -r gettext-0.17p0 libiconv-1.12 vim-7.2.77-no_x11 wget-1.11.4
libiconv-1.12 (extracting): complete
libiconv-1.12 (deleting): complete
libiconv-1.12 (installing): complete
gettext-0.17p0 (extracting): complete
gettext-0.17 (deleting): complete
gettext-0.17p0 (installing): complete
vim-7.2.77-no_x11 (extracting): complete
vim-7.1.315-no_x11 (deleting): complete
vim-7.2.77-no_x11 (installing): complete
wget-1.11.4 (extracting): complete
wget-1.11.3 (deleting): complete
wget-1.11.4 (installing): complete
Clean shared items: complete

At this point, you should be able to re-enable any disabled services, and reboot. The upgrade is finished!